IT Security Engineer I in Miami Beach, FL at Mount Sinai Medical Center of Florida, Inc.

Date Posted: 7/28/2020

Job Snapshot

Job Description

IT Security Engineer

As Mount Sinai continues to grow, so does our legacy of caring.

Mount Sinai Medical Center is proud to be South Florida's hospital of choice for great medicine. With more than 4000 employees, 500 volunteers, 670 beds, 26 operating suites and more than 650 physicians and 950 nurses. Mount Sinai is South Florida's largest private independent not-for-profit teaching hospital. It takes the contribution of many individuals to make Mount Sinai the world-class institution it is today. As a team we have focused our efforts on assuring that our patients receive high quality medical care.

Our IT department's mission is to provide technology leadership that advances Mount Sinai’s mission, by delivering reliable, secure, and effective solutions with high quality customer service.

  • The IT Security Engineer will be reporting to the Chief Information Security Officer (CISO); the IT Security Engineer is responsible for supporting MSMC’s IT Security Program.
  • Maintain, upgrade and support enterprise security solutions.
  • Performs ongoing security events monitoring and remediation.
  • Strong expertise in network security, system hardening, and industry standards.
  • Serve as main point of contact for coordinating, investigating, documenting, and reporting security incidents.
  • Coordinate response activities to information security incidents.
  • Responsible for the deployment and management of IT security solutions.
  • Support all IT Security awareness activities, including the creation of Phishing campaigns, monitoring and reporting.
  • Responsible for coordinating all activities related with network vulnerability assessments, network penetration tests, application vulnerability assessment scans and risk assessment reviews.
  • Monitor and advice on information security issues related to the systems and core applications to ensure the internal security controls are appropriate and operating as intended.
  • In charge of network monitoring, including log sources, creation of alerts, and documentation.   
  • Represent the IT security team for the coordination and execution of IT related projects, providing guidance, requirements, and support.
  • Support the development of Information Security policies, procedures, standards and guidelines based on knowledge of best practices and compliance requirements.
  • Leads the development and maintenance of a complete network audit program.
  • Leads the vulnerability assessment task, including documentation and remediation of action plans.
  • With the guidance of the CISO, collaborate with IT management, the legal department, safety and security, and law enforcement agencies (as needed) to manage security vulnerabilities.
  • Conduct security research in keeping abreast of latest security issues.
  • Responsible for IT security documentation, including but not limited to security connectivity diagrams.
  • Actively participate in security community working groups, such as Infragard, ISACA, ISSA, and others.

Expectations and accountability                                                                            

  • Demonstrates great teamwork, shares information with others, responsive with all communications/deliverables, collaborates with the team to resolve open issues, and anticipates the needs of colleagues in a consistent manner.
  • Takes personal ownership of issues, ensures a high degree of accuracy with all communications/deliverables, completes tasks according to committed timelines, demonstrates excellent service recovery, and communicates with customers in a consistent manner.
  • Actively monitors assigned tickets, documents activities thoroughly, and resolves issues within the established service levels in a consistent manner.
  • Lead and mentor others and helps develop skills for other team members.              

Qualifications

  • Bachelor’s degree from an accredited institution, with degree in Computer Science, Information Technology, or Cybersecurity; or a related field or an equivalent combination of education and experience. Master’s degree preferred.
  • Minimum 2 years of experience as a security engineer.
  • Minimum 2 years of experience in Healthcare with demonstrated experience complying with HIPAA compliance, and NIST frameworks.
  • Industry certifications desired: Certified Information Systems Security professional (CISSP), CISA, Certified Ethical Hacker (CEH), Security+, SANS GSEC, Certified Cloud Security Professional (CCSP) or other security and cloud computing security certification.
  • Project Management experience.

We offer:

  • An excellent, team focused work environment with opportunity for professional growth
  • Competitive salary with bonus potential
  • Savings plan with company match
  • A variety of health, dental and vision plans
  • On-site childcare, tuition reimbursement, and much more!

#cb19