Cyber Defense Infrastructure Engineer - PSH Cyber Security

Penn State Milton S. Hershey Medical Center Hershey , PA 17033

Posted 7 days ago

Penn State Health Shared Services

Location: US:PA:Hershey

Work Type: Full Time

FTE: 1.0

Shift: Day

Hours: 8 hours

WE ARE OPEN TO BOTH INTERMEDIATE AND SENIOR LEVEL APPLICANTS

JOB SUMMARY:

The Cyber Defense Infrastructure Engineer (CDIE) is a critical team member directly contributing to the Penn State Health and College of Medicine Office of Cyber Security's mission to Prevent, Detect, Analyze and Respond to threat activity (internal and external), information system vulnerabilities, and cyber incidents.

The CDIE installs, configures, troubleshoots, and maintains various cyber security capabilities (hardware and software) to ensure their confidentiality, integrity, and availability. Manages accounts, patches, and secure configurations. Capabilities include, but are not limited to, network and host-based anti-virus/anti-malware, host-based firewalls, advanced threat detection agents, net-flow analytics platform, secure email gateway, data loss prevention, full disk encryption, web proxy, password manager, incident response case management, and security orchestrations tools.

Responsible for setting up and maintaining a system or specific components of a system (e.g. for example, installing, configuring, and updating hardware and software; establishing and managing user accounts; overseeing or conducting backup and recovery tasks; implementing operational and technical security controls; and adhering to organizational security policies and procedures).

Tests, implements, deploys, maintains, reviews, and administers the infrastructure hardware and software that are required to effectively manage the cyber defense infrastructure and resources. Monitors assigned cyber defense infrastructure systems to actively remediate unauthorized activities.

MINIMUM QUALIFICATIONS:

Intermediate Level Requirements:

Bachelor's Degree in computer science, cybersecurity, information technology, software engineering, information systems, computer engineering, or equivalent experience AND 4 years' experience in network infrastructure, firewalls, IDS/IPS, application proxies, systems administration, network storage, enterprise authentication, backups and data retention, information assurance.

Senior Level Requirements:

Bachelor's Degree in computer science, cybersecurity, information technology, software engineering, information systems, computer engineering, or equivalent experience AND 8 years' experience in network infrastructure, firewalls, IDS/IPS, application proxies, systems administration, network storage, enterprise authentication, backups and data retention, information assurance.

PREFFERED QUALIFICATIONS:

Certifications addressing system security, network infrastructure, access control, cryptography, assessments and audits, organizational security, information security, information systems, network security, information assurance, troubleshooting, security operations, cryptography

This job description is a general outline of duties performed and is not to be misconstrued as encompassing all duties performed within the position. All individuals (including current employees) selected for a position will undergo a background check appropriate for the position's responsibilities.

Penn State Health is an equal opportunity, affirmative action employer, and is committed to providing employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity or expression, national origin, disability or protected veteran status. If you are unable to use our online application process due to an impairment or disability, please call 717-531-8440 between the hours of 8:30 AM and 4:30 PM, Eastern Standard Time, Monday - Friday, email hrsolutions@pennstatehealth.psu.edu or download our Accommodation Instructions for Job Applicants PDF for more detailed steps for assistance.

#LI-ZW1

IND123


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Policy Planner PSH Cyber Security

Penn State Milton S. Hershey Medical Center

Posted 3 days ago

VIEW JOBS 3/19/2019 12:00:00 AM 2019-06-17T00:00 Penn State Health Shared Services Location: US:PA:Hershey Work Type: Full Time FTE: 1.0 Shift: Day Hours: 8:00a - 4:30p WE ARE OPEN TO BOTH INTERMEDIATE AND SENIOR LEVEL APPLICANTS The Office of Cyber Security ensures that cyber security risks are identified, assessed, and mitigated to acceptable levels to maintain the confidentiality, integrity, and availability of Penn State Health (PSH) and College of Medicine (COM) information and information systems. We are looking for people who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, and are passionate about cyber security. Job Summary: The Cyber Policy Planner (CPP) is responsible for ensuring operational excellence of cyber security policy planning activities, including but not limited to: * Developing and managing cyber security plans, and policy to support and align with organizational cyber security initiatives and regulatory compliance * Ability to apply knowledge of cyber security governance, policy, compliance, risk management and privacy to strengthen the security posture of the enterprise * Effectively collaborating and communicating existing and proposed policies with stake holders and business units and others as needed * Promoting awareness of cyber security policies, and providing guidance to the workforce * Serving as the cyber security policy SME and working with stakeholders to determine policy needs and development of policies to govern cyber activities * Ability to explain the NIST 800-53 security families * Demonstrated ability to manage an enterprise cyber security training program * Participate in assessments to determine the organizations level of compliance against internal policies, external regulations, and other compliance obligations as required * Applying cyber security and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, and non-repudiation) * Creating trending, metrics, and management reports * Understanding compliance requirements that may impact security and effectively collaborating with business areas and project teams to develop security solutions that address these requirements * Life cycle management of governance documents including monitoring for changes to policy and regulatory landscape, periodic reviews, change management, and gap assessments Minimum Qualifications: Senior Level Qualifications: Bachelor's degree in computer science, cybersecurity, information technology or a related field and 8 years of experience OR 12 total years of related experience/education. Intermediate Level Qualifications: Bachelor's degree in computer science, cybersecurity, information technology or a related field and 4 years of experience OR 8 total years of related experience/education. Preferred Qualifications: * Demonstrated experience in cyber security, privacy, and/or an information protection-related functions * Ability to facilitate security governance conversations with diverse security, IT and business stakeholders to help ensure positive and deliberate outcomes * Experience with security policy analysis, metrics capture, and analysis, and security education * Experience with National Institute of Standards and Technology (NIST) security controls, the Governance, Risk and Compliance (GRC) security documentation tools, the Risk Management Framework (RMF), and security compliance processes * Ability to actively participate in developing security governance framework materials (policies, controls, standards, play books, SOPs, procedures) for the enterprise * Strong knowledge of laws, regulations, policies, and ethics as they relate to Cyber Security and privacy * Proven experience with assessment of information and information systems based on NIST 800-53 standards and working with asset custodians on remediation plans or exception processes * Extensive technical knowledge of national security practices, procedures, standards, business continuity, disaster recovery, auditing, risk management, vulnerability assessments, and regulatory compliance * Strong knowledge of computer networking concepts and protocols, and network security methodologies * Strong knowledge of working with industry and regulatory requirements (i.e., HIPAA, PCI, etc.) * Strong knowledge of controls related to the use, processing, storage, and transmission of sensitive data * Skill in administrative planning activities, to include preparation of functional and specific support plans, preparing and managing correspondence, and staffing procedures * Excellent analytical and problem-solving skills * Excellent communication skills, with experience as a writer, technical editor, or communications specialist a plus * Effective Interpersonal skills and ability to thrive in a team environment. * Ability to develop creative and innovative solutions to complex business issues * Proven strong background in cyber security and operational processes * Demonstrated strong organizational skills with attention to detail * Proven ability to achieve results in a fast moving, dynamic environment * Ability to develop strong working relationships * Ability to multi-task and meet deadlines * Excellent communication, problem-solving, and decision-making skills * Certifications: Certified Information Systems Security Professional (CISSP) or equivalent hhh#LI-ZW1 INDIND123 Penn State Milton S. Hershey Medical Center Hershey PA

Cyber Defense Infrastructure Engineer - PSH Cyber Security

Penn State Milton S. Hershey Medical Center