Information Security Architect - ENT - (T228715)
Compensation:
Pay Range: $126,470 - $205,515/year
Job Highlights:
A team of more than 400 professionals, Health System Information Services (HSIS) works to keep UAB Medicine’s IT systems and infrastructure running smoothly to deliver quality care to our patients. Join our nationally ranked team at UAB Medicine, the No. 1 Best Large Employer in 2021 as ranked by Forbes magazine.
Work with the Best at UAB Medicine:
UAB Medicine is Alabama’s largest single-site employer and operates over 1,200 beds and over 200 clinics in Birmingham, Alabama. When you become part of UAB Medicine, you join a nationally ranked academic medical center committed to education and advancing medical science through research.
Our success in patient care, innovation, and education is a direct result of our supportive and inclusive culture. Whether you are looking to start your career, fast-track your development, or diversify your skills, UAB Medicine offers avenues for advancement that other employers cannot match.
Duties
To independently employ a broad knowledge of principles, practices, and procedures in a particular field of specialization to plan, design, develop and support systems and projects. To conduct research and analysis and presents findings for review. To carry out complex assignments requiring the development of new or improved techniques and procedures. This position will commit to fostering an environment of heightened security following Information Technology Security Policies and participating in security training, such as Health Insurance Portability & Accountability Act (HIPAA) and Family Education Rights and Privacy Act (FERPA), on an annual basis.
Qualifications
Bachelor's degree in Information Systems or a related field and six (6) years of related experience required. Work experience may substitute for education requirement. Certified Information Systems Security Professional (CISSP) certification preferred.
PREFERRED SKILLS:
One of the following certifications preferred:
Experience with 1 or more of the items outlined below in a Healthcare setting preferred:
o Working knowledge of TCP/IP, HTTP, SSL, SSH and other networking protocols
o Managing network security tools such as IPS, Firewall, SASE, etc….
o Reviewing firewall requests to determine risk to organization
o Managing network configuration tools such as
o Data protection policies
o CASB Administration
o Baseline Configuration (Conditional Access policies, NIST, CIS Benchmarks, Vendor best practices)
o Support the development and execution of enterprise-wide Cloud security program
o Managing application security scanners (DAST, SAST)
o Familiarity with software security frameworks (OWASP, NIST, BSIMM, OpenSAMM, etc…)
o Experience performing application security assessments that involve threat modeling and security testing
o Performing technical risk assessments on new and existing systems in the environment
o Providing security configuration recommendations to network and infrastructure architects
o Developing security policies for cloud infrastructure
o Assisting with the implementation of a cybersecurity framework (NIST Cyber Security Framework, CIS top 20, etc.)
o Maintaining passive scanners to discover IoT and biomedical devices on the network
o Referencing MDS2 documents from vendors to determine risk
o Providing remediation plans for biomedical device vulnerabilities
: UAB Health System
: Information Technology
: 702150000 Health System Information Services
: Regular
Shift: Day/1st Shift
Read Full Description