Information Security Engineer
Harris Health System, Houston, TX, United States
About Us
Harris Health System is the public healthcare safety-net provider established in 1966 to serve the residents of Harris County, Texas. As an essential healthcare system, Harris Health champions better health for the entire community, with a focus on low-income uninsured and underinsured patients, through acute and primary care, wellness, disease management and population health services. Ben Taub Hospital (Level 1 Trauma Center) and Lyndon B. Johnson Hospital (Level 3 Trauma Center) anchor Harris Healths robust network of 39 clinics, health centers, specialty locations and virtual (telemedicine) technology. Harris Health is among an elite list of health systems in the U.S. achieving Magnet® nursing excellence designation for its hospitals, the prestigious National Committee for Quality Assurance designation for its patient-centered clinics and health centers and its strong partnership with nationally recognized physician faculty, residents and researchers from Baylor College of Medicine; McGovern Medical School at The University of Texas Health Science Center at Houston (UTHealth); The University of Texas MD Anderson Cancer Center; and the Tilman J. Fertitta Family College of Medicine at the University of Houston.
Job Profile
Job Summary
The
Information Security Engineer
assists with the day-to-day information security operations and help with the implementation of the Information Security Strategic Plan to enforce HIPAA and PCI compliance. Responsibilities include the managing, monitoring and maintenance of information security devices such as; encryption technology, Intrusion Prevention System (IPS), Threat Detection tools, SEIM tools and web content filtering technology. Analyze and create reports based on information gathered from security technology and report to CISO on daily basis. Perform detailed information security assessments on Harris Health System information systems to ensure compliance with federal and state regulations. Assist with e-discovery, forensic and internal penetration testing. These information security assessments would include but are not limited to application reviews, access controls, network reviews, and regulatory and other compliance reviews. Other information security duties as assigned.
MINIMUM QUALIFICATIONS:
Education/Specialized Training/Licensure: Four (4) year degree in a technology related field or equivalent work experience. Knowledge of HIPAA Security rule, HITECH, Payment Card Industry (PCI), NIST standards, Sans top 20, ISO27000 series, investigating and documenting incidents, and compliance. (required)
CEH, GIAC certifications, Cisco security certification, or CISSP or CISM highly desirable or must be obtained within 6 months of accepting position. Specific vendor security certification can be considered.
Work Experience :
Five (5) years related industry experience (clinical or business).
Four (4) years in a security and technical roles.
Ability to evaluate and review a range of information systems and applications which may include but not limited to; Encase FireEye, Cisco Firewall/IPS, CheckPoint PointSec, Rapid7 Nexpose, Metasploit, MobileIron, ProofPoint, Imperv DAM/DBF, Qradar, Radware , SEIM, SourceFire, , Websense WSGA/DLP
SPECIAL REQUIREMENTS:
Communication Skills:
Above Average Verbal (Heavy Public Contact) Exceptional Verbal (e.g., Public Speaking)
Languages: Writing /Composing (Correspondence /Reports)
Other Skills:
Analytical, PC and Word Proc.
Work Schedule: Eligible for Telecommute
Benefits & EEOC
Harris Health System's benefits program is designed to provide you with more flexibility and choices in meeting your specific needs. Harris Health System's benefits program allows you to protect your income in case of illness, death and disability, and to help you save for retirement.
It is the policy of Harris Health System to provide equal opportunity for all applicants for employment regardless of political affiliation, race, color, national origin, age, sex, religious creed or disability. Applicants may request any reasonable accommodation(s) to participate in the application process.
Job Category
Information Technology
Harris Health System is the public healthcare safety-net provider established in 1966 to serve the residents of Harris County, Texas. As an essential healthcare system, Harris Health champions better health for the entire community, with a focus on low-income uninsured and underinsured patients, through acute and primary care, wellness, disease management and population health services. Ben Taub Hospital (Level 1 Trauma Center) and Lyndon B. Johnson Hospital (Level 3 Trauma Center) anchor Harris Healths robust network of 39 clinics, health centers, specialty locations and virtual (telemedicine) technology. Harris Health is among an elite list of health systems in the U.S. achieving Magnet® nursing excellence designation for its hospitals, the prestigious National Committee for Quality Assurance designation for its patient-centered clinics and health centers and its strong partnership with nationally recognized physician faculty, residents and researchers from Baylor College of Medicine; McGovern Medical School at The University of Texas Health Science Center at Houston (UTHealth); The University of Texas MD Anderson Cancer Center; and the Tilman J. Fertitta Family College of Medicine at the University of Houston.
Job Profile
Job Summary
The
Information Security Engineer
assists with the day-to-day information security operations and help with the implementation of the Information Security Strategic Plan to enforce HIPAA and PCI compliance. Responsibilities include the managing, monitoring and maintenance of information security devices such as; encryption technology, Intrusion Prevention System (IPS), Threat Detection tools, SEIM tools and web content filtering technology. Analyze and create reports based on information gathered from security technology and report to CISO on daily basis. Perform detailed information security assessments on Harris Health System information systems to ensure compliance with federal and state regulations. Assist with e-discovery, forensic and internal penetration testing. These information security assessments would include but are not limited to application reviews, access controls, network reviews, and regulatory and other compliance reviews. Other information security duties as assigned.
MINIMUM QUALIFICATIONS:
Education/Specialized Training/Licensure: Four (4) year degree in a technology related field or equivalent work experience. Knowledge of HIPAA Security rule, HITECH, Payment Card Industry (PCI), NIST standards, Sans top 20, ISO27000 series, investigating and documenting incidents, and compliance. (required)
CEH, GIAC certifications, Cisco security certification, or CISSP or CISM highly desirable or must be obtained within 6 months of accepting position. Specific vendor security certification can be considered.
Work Experience :
Five (5) years related industry experience (clinical or business).
Four (4) years in a security and technical roles.
Ability to evaluate and review a range of information systems and applications which may include but not limited to; Encase FireEye, Cisco Firewall/IPS, CheckPoint PointSec, Rapid7 Nexpose, Metasploit, MobileIron, ProofPoint, Imperv DAM/DBF, Qradar, Radware , SEIM, SourceFire, , Websense WSGA/DLP
SPECIAL REQUIREMENTS:
Communication Skills:
Above Average Verbal (Heavy Public Contact) Exceptional Verbal (e.g., Public Speaking)
Languages: Writing /Composing (Correspondence /Reports)
Other Skills:
Analytical, PC and Word Proc.
Work Schedule: Eligible for Telecommute
Benefits & EEOC
Harris Health System's benefits program is designed to provide you with more flexibility and choices in meeting your specific needs. Harris Health System's benefits program allows you to protect your income in case of illness, death and disability, and to help you save for retirement.
It is the policy of Harris Health System to provide equal opportunity for all applicants for employment regardless of political affiliation, race, color, national origin, age, sex, religious creed or disability. Applicants may request any reasonable accommodation(s) to participate in the application process.
Job Category
Information Technology