Job Details

Inspire health. Serve with compassion. Be the difference.

Job Summary

The Information Security Specialist II is responsible for maintaining the security and integrity of organization's data, leveraging an in-depth understanding of cyber security threats, technologies and countermeasures to ensure secure computer systems. Knowdge and experience with technology security issues across all platforms and across all business units to include networking, applications, Identity and Access Management, Operating systems, Cloud services, Email gateway, Privileged Access Management, Vulnerability management, Database Security, Data Loss Prevention, Endpoint Security and Software Devlopment.

Assists in safeguarding information system assets, data and all security risks. Assists in researching security controls, vulnerabilities, enterprise and cloud risks, and develops effective strategies and control measures to mitigate all security risks. Assists in reducing security threats by examining infrastructure, devices, processes, procedures and identifying security flaws, threat vectors, and using control analysis to follow up with a prompt solution. This is an mid-level technology-oriented position protecting the confidentiality, integrity, and availability of information systems and data of employees, partners, and patients.

Essential Functions

• All team members are expected to be knowledgeable and compliant with Prisma Health's values: Inspire health. Serve with compassion. Be the difference

• Administrates security software or systems to prevent attacks, monitor and audit systems and protect against network breaches.

• Utilizes advanced-level acumen in one or more technology disciplines: networking, systems management and cloud services. Works on-call shifts, preforms any and all duties assigned by the supervisor.

• Remediates security risks and exposures, assists in determining the causes of security violations.

• Provides hands-on experience working in cyber security for cloud and hybrid cloud environments. Provide support for vulnerability management program to include system, network, applications and software development.

• Implements solutions for integration/interoperability security issues, that meet current and future business requirements, and apply and/or extend, enhance, optimize existing architecture. Monitor information security trends, standards and practices to assist in identifying areas that lack the appropriate security controls and make the necessary recommendations.

• Responsible for executing processes within all activities within the security incident response lifecycle. These activities include detection, triage, analysis, containment, recovery and reporting.

• Assists in developing techniques and procedures for conducting cyber security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security.

• Assists in reviewing proposed new systems, networks, and software designs for potential security risks; implement mitigation or countermeasures and resolve integration issues related to the implementation of new systems within the existing infrastructure. Review security assessments to compare previous and current risk performance.

• Assists in performing 3rd -Party Security Architectural Assessments, evaluating the security practices and programs for Prisma Health business partners and service providers. Respond to a range of ad-hoc security consulting requests, including at times supporting team members with security-related projects and support services.

• Assists the Information Security Analysts in the evaluation of risks and threats, development, implementation, communication, operation, monitoring and maintenance of the IT security policies and procedures which promote a secure and uninterrupted operation of all IT systems.

• Performs other duties as assigned.

Supervisory/Management Responsibilities

• This is a non-management job that will report to a supervisor, manager, director or executive.

Minimum Requirements

• Education - Bachelor's degree in Computer Science

• Experience - Two (2)years IT experience

In Lieu Of

• In lieu of the education and experience requirements noted above, a combination of technical experience, information security experience, professional certifications and education may be evaluated by information security leadership.

Required Certifications, Registrations, Licenses

• CISSP, CISA, CISM, CEH, AWS, Microsoft, Linux or equivalent certifications.

Knowledge, Skills and Abilities

• Direct experience in Networking technologies, IPS, Firewalls, APT Systems, Directory Services, Risk Management, Cloud Technologies, Vulnerability Management, Splunk, SIEM, Endpoint Security, Web Security Gateways and Email Security.

• Experience withframeworks; NIST 800-53, NIST CSF, ISO 27001 and NIST 800-37 and with regulations; PCI-DSS, HIPAA, High Trust, Privacy and PHI.

Work Shift

Day (United States of America)

Location

Greenville Memorial Med Campus

Facility

7001 Corporate

Department

70019411 Information Security

Share your talent with us! Our vision is simple: to transform healthcare for the benefits of the communities we serve. The transformation of healthcare requires talented individuals in every role here at Prisma Health.