Prosum

Information Security Engineer

San Diego, CA, US

11 days ago
Save Job

Summary

Information Security Engineer

The information security engineer designs, implements, monitors & evaluates network security, host­ based security, application security & other forms of technical security systems, mechanisms, configurations & procedures for Rady Children's Hospital-San Diego (RCHSD). This position encompasses activities which directly support the confidentiality, integrity & availability of computing systems (servers, network, & workstations) including, design, certification, management, monitoring, auditing & use of such systems. The primary responsibility of this job is to provide expertise in project implementation & production support of the RCHSD System Development Life Cycle (SDLC) that includes information security, design, implementation, assessment, & management of IT systems & compliance with all IT defined processes.


  • School EducationBachelor's Degree (Preferred)


  • Experience3 Years of Experience (Minimum)
  • 5 Years of Experience (Preferred)


  • Licenses and CertificationsCert IS Security Professional (Preferred)


  • OtherOther01 (Minimum)
  • Ability to work actively and collaboratively within a teamOther02 (Minimum)
  • Strong project management, time management and communication (technical and non-technical) skills requiredOther03 (Minimum)
  • Strong analytical problem solving and troubleshooting skillsOther04 (Minimum)
  • Ability to write reports and plansOther05 (Minimum)
  • Ability to conduct security vulnerability assessments against multiple types of information systems Other06 (Minimum)
  • Analyze, troubleshoot, and investigate security related information system anomaliesOther07 (Preferred)
  • Previous experience as a help desk administrator, systems engineer, or other IT related functionsOther08 (Preferred)
  • Experience with network and system security audits; experience with application security auditsOther09 (Preferred)
  • Solid understanding of Federal and State laws pertaining to safeguarding electronic protected health information, personally identified information, and other sensitive data typesOther10 (Preferred)
  • Experience with disaster recovery planning and certification and accreditation processOther11 (Preferred)
  • Security certification such as CISSP or GIACOther12 (Preferred)
  • Systems or network administration or performed ability to acquire required skillsOther13 (Preferred)

Have worked with Healthcare Information Systems


  • QualityQuality 1
  • A. Technical Security Configuration - Designs, monitors, implements & coordinates implementation of technical & security mechanisms for applications, network, & application servers with responsible IT analysts & administrators. Installs, designs & implements intrusion detection systems for RCHSD networks & systems. Responsible for recommending best-practice security solutions to allow scalable security to exist in RCHSD's growing Information Technology infrastructure. Charged with maintenance of various security infrastructure level components of RCHSD's network such as Malicious Code Protection, Encryption, Intrusion Detection System, Web Filtering, & Security Event Monitoring.Quality 2
  • Risk Assessment - Analyzes needs of IT security & makes recommendations dealing with technical security mechanisms & implementation of said mechanisms. Updates IT personnel on various security topics including newest information received through computer security industry contacts regarding time-critical information such as security patches & malicious code information. - Performs penetration tests & risk assessments on various RCHSD servers, workstations & other miscellaneous network devices. - Performs risk assessments on new applications & information system implementations per RCHSD SDLC, including application security testing.Quality 3
  • System Configuration & Testing - Perform routine vulnerability & port scans of various information systems on RCHSD's network. Provide support to the Network Services team regarding technical implementation issues regarding host operating systems & shutting down of unauthorized services. Perform Certification & Accreditation duties as needed to support the SDLC.Quality 4
  • Audits - Performs information system audits including user access of systems & Internet use as requested. Performs review of systems & security infrastructure logs & provides reports of significant events. Quality 5
  • Consulting, Problem Solving & Analysis - Provide information security consulting services as needed to enhance the security of RCHSD's information systems. Gives presentations, writes white papers & performs research on various security topics that may be requested or necessary. Reports back to management regarding the state of RCHSD enterprise security & resources necessary to protect the enterprise.Quality 6
  • Computer Emergency Response Team (CERT) - As a member of the RCHSD CERT, assist in the detection & resolution of incidents that threaten RCHSD Information Systems.Quality 7
  • Disaster Recovery - Assists in the development of Disaster Recovery plans to support the availability of information systems.Quality 8

Training - Trains or provides training for customers in end user departments, as well as, various members of IT, especially analysts & managers on required security best practices for the purposes of HIPAA compliancy, advising on dangerous network practices, gives advice regarding security mechanisms & methodologies to allow for further security on the analysts- respective systems, networks, & applications.

How strong is your resume?

Upload your resume and get feedback from our expert to help land this job

People also searched: