Senior Cyber Security Engineer - Endpoint Security (Remote)

Job Description

Community Health Systems is one of the nation's leading healthcare providers. Developing and operating healthcare delivery systems in 40 distinct markets across 15 states, CHS is committed to helping people get well and live healthier. CHS operates 71 acute-care hospitals and more than 1,000 other sites of care, including physician practices, urgent care centers, freestanding emergency departments, occupational medicine clinics, imaging centers, cancer centers and ambulatory surgery centers.

Summary:

As an Endpoint Security Senior Engineer, this role reports to the Manager of Endpoint Security. This role develops, engineers, and maintains the Endpoint Security Program for the Cybersecurity Risk Management Department. This role is expected to have Senior level knowledge of endpoint security technologies. The senior engineer will be responsible for identifying and remediating security gaps, the continued improvement of existing controls, mentoring and collaborating with other Cyber Security and Information Technology team members to secure the many information technology assets and data of Community Health Systems. The senior engineer will collaborate with architects to design and implement solutions that better protect CHS systems and data.

Essential Duties and Responsibilities:

• Design, engineer, manage, review, and recommend improvements for new and existing endpoint security solutions, configurations and technologies. Develop and maintain security standards based on National Institute of Standards and Technology (NIST) recommendations, specifically NIST 800-53.

• Enhance preventative and automated endpoint security controls aligned with business requirements along with common threats.

• Develop and improve policies, standards, and processes for the identification and prioritization of threat remediation as well as processes and methodologies for metrics and KPIs related to endpoint protections, security and compliance.

• Provide technical guidance to enterprise Cyber Security and Information Technology teams regarding the impact of endpoint security controls in order to drive issues to remediation and develop systemically secure configurations.

• Assist in developing and documenting an overall endpoint protection strategy including defining control standards and enhancement opportunities.

• Other duties and responsibilities as assigned by cybersecurity leadership.

Qualifications:

• Required Education: High school diploma

• Preferred Education: Bachelor's or Master's Degree in Cyber Security, Computer Science, Information Systems (or other related field), or equivalent work experience.

• Required Experience:

• Duration:

• 3+ years of IT or information security, and

• 2+ years of endpoint security

• Activities:

• Managed EPP/NGAV, EDR, HIPS, FIM, Application Control and other endpoint security technologies

• Served as senior thought leader for endpoint security technology and influenced the strategy to address internal or external business and regulatory issues.

• Worked in process-driven structured environments, and participated in process optimization activities.

• Competencies:

• Advanced knowledge of security principles, issues, techniques and implementations across endpoint security platforms.

• Proactive identification and solving of complex problems

• Strong understanding of systems development lifecycle to provide technical leadership for multifunctional projects or initiatives.

• Strong ability to work on and prioritize multiple, concurrent projects while meeting aggressive deadlines in a fast-paced environment.

• Willingness to participate in cross-functional training and support

• Effective communication of technical concepts to a non-technical audience.

• Excellent written and verbal communication skills

• Preferred Experience:

• 5+ years of IT or information security

• 3+ years of endpoint security

• Scripting and Automation

• Required License/Registration/Certification: None

• Preferred License/Registration/Certification: CISSP, GIAC, OSCP, and other Industry Standard Certifications.

• Computer Skills Required: Office/GSuite, Linux, Windows, and various other cybersecurity tools and technologies as necessary.

Physical Demands:

In order to successfully perform this job, with or without a reasonable accommodation, the following are outlined below:

• The Employee is required to read, review, prepare and analyze written data and figures, using a PC or similar, and should possess visual acuity.

• The Employee may be required to occasionally climb, push, stand, walk, reach, grasp, kneel, stoop, and/or perform repetitive motions.

• The Employee is not substantially exposed to adverse environmental conditions and; therefore, job functions are typically performed under conditions such as those found within general office or administrative work.