Why work for Nebraska Methodist Health System?

At Nebraska Methodist Health System, we focus on providing exceptional care to the communities we serve and people we employ. We call it The Meaning of Care – a culture that has and will continue to set us apart. It’s helping families grow by making each delivery special, conveying a difficult diagnosis with a compassionate touch, going above and beyond for a patient’s needs, or giving a high five when a patient beats a disease or conquers a personal health challenge. We offer competitive pay, excellent benefits and a great work environment where all employees are valued! Most importantly, our employees are part of a team that makes a real difference in the communities we live and work in.

Job Summary:

Location: Methodist Corporate Office

Address: 825 S 169th St. - Omaha, NE

Work Schedule: Mon - Fri, 8:00am to 5:00pm

Perform monitoring of the environment and respond to all types of information security events. Provides assistance and support in the development and maintenance of information security protocols for the enterprise.

Responsibilities:

Essential Job Functions

1. Strategy and Planning

• Research and stay informed of potential information security threats, industry trends, emerging technologies, and response alternatives.
• Review security policies, procedures, and guidelines as requested.
• Conduct research and provide insight to identify, assess, and deploy security technology solutions and through vendors, including but not limited to encryption, firewalls, authorization, authentication, intrusion detection, and gateway security controls.
• Complete approval, tracking and reporting any security exceptions as the need arises.
• Prepare status reports on security matters to analyze security risk and response of vendor security controls.
• Monitor and proactively recommend solutions for correcting issues related to security technology performance and capabilities of vendors.
• Collaborate on critical technology projects to ensure that security issues are addressed throughout the project life cycle.
• Provide data to assist with recommendations for security improvements and tool acquisition to Board and Senior Management.

2. Acquisition and Deployment

• Assist in the evaluation and use of security technologies and tools.
• Deployment of security technology solutions, which may include technology for encryption, firewalls, authorization, authentication, intrusion detection, and gateway security controls.
• Understand processes and ensure appropriate levels of access are applied throughout the information and identity lifecycles.
• Participate in planning, selection, and implementation of new systems and technology solutions.
• Participate in system deployment or acquisition projects to assess security requirements and controls to ensure that security controls are implemented as planned.

3. Operational Management

• Assist with maintaining health system compliance with security control frameworks such as HIPAA, PCI and other law/regulations.
• Engage in regular assessment of the current IT security environment to identify weaknesses.
• Serve as a technical subject matter expert for assigned systems and backup on assigned systems.
• Demonstrate advanced knowledge in the security domain and provide technical direction to lead appropriate work on security related projects.
• Participate in the assessment of potential threats and risks to systems and management of those risks.
• Weigh business needs against security concerns to articulate issues and recommend options.
• Participate in the design, development, and delivery of security training programs.
• Proficient in following playbooks and procedures for responding to and reporting on Security Incidents.

4. Incidents and Tasks

• Respond with a sense of urgency.
• Escalate to supervisor any situation outside the employee's control that could adversely impact services.
• Ensure quality resolution and thorough and accurate documentation of incidents and tasks.
• Provide analysis regarding recurring incidents, recommending improvements aimed at reducing future occurrences.
• Provides on-call availability.
• Communicates with the appropriate individuals prior to reassigning an incident or task.
• Technical resource for admins and other IT department personnel to troubleshoot and resolve security incidents.

5. Teamwork and Documentation

• Updates system documentation in designated systems as new issues and fixes are identified.
• Defines and implements support procedures and protocols for Desktop, Service Desk, and other team members.
• Defines, develops, and implements procedures for system maintenance.
• Considered a knowledgeable resource for documenting KB Articles and SharePoint documentation.
• Actively mentors and trains teammates to assure needed support coverage.
• Does not exhibit territorialism toward responsibilities.
• Shares responsibilities and knowledge with any/all team members, and learns from them in return.

Schedule:

Mon - Fri, 8:00am to 5:00pm

Job Description:

Job Requirements

Education

• Associate's Degree in Computer Science, Business Information Systems, Information Technology, Information Security or a related field required.
• Bachelor's Degree preferred.
• Relevant equivalent work experience may be substituted for degree.

Experience

• Minimum 3 years of IT experience (e.g., Security Operations Center, Network Operations Center, System Administrator, Helpdesk support, etc.) required.
• Active Directory experience preferred.
• Windows Desktop and Server administration preferred.
• Experience with enterprise-wide security architecture and/or security procedures preferred.

License/Certifications

• CompTIA Security+ certification or Certified Information Systems Security Professional (CISSP) certification required within 1 year of hire.

Skills/Knowledge/Abilities

• Skill organizing and managing workload.
• Skill troubleshooting technical issues.
• Skill providing customer service to all levels in the organization.
• Fundamental knowledge of information security technologies and best practices.
• Knowledge of network, software, and hardware configuration, maintenance, and performance tuning.
• Knowledge of LAN/WAN and wireless technology.
• Knowledge of network protocols, operating systems and concepts.
• Knowledge of Office 365 Suite.
• Knowledge of endpoint security solutions.
• Knowledge of Identity and Access Management systems.
• Knowledge of Asset Management systems and processes.
• Knowledge of enterprise CCTV cameras and systems.
• Knowledge of enterprise physical access control systems.
• Knowledge of firewall administration, multi factor authentication.
• Ability to capture and analyze log files.
• Ability to effectively communicate verbally and in writing.
• Ability to work in an environment of change.
• Ability to work in the absence of direct supervision.
• Ability to work a call schedule.
• Ability to automate manual functions.

Physical Requirements

Weight Demands

• Light Work - Exerting up to 20 pounds of force.

Physical Activity

• Not necessary for the position (0%):
• Climbing
• Crawling
• Kneeling
• Occasionally Performed (1%-33%):
• Balancing
• Carrying
• Crouching
• Distinguish colors
• Grasping
• Lifting
• Pulling/Pushing
• Speaking/talking
• Standing
• Stooping/bending
• Twisting
• Walking
• Frequently Performed (34%-66%):
• Keyboarding/typing
• Reaching
• Repetitive Motions
• Sitting
• Constantly Performed (67%-100%):
• Hearing
• Seeing/Visual

Job Hazards

• Not Related:
• Chemical agents (Toxic, Corrosive, Flammable, Latex)
• Biological agents (primary air born and blood born viruses) (Jobs with Patient contact) (BBF)
• Physical hazards (noise, temperature, lighting, wet floors, outdoors, sharps) (more than ordinary office environment)
• Equipment/Machinery/Tools
• Explosives (pressurized gas)
• Electrical Shock/Static
• Radiation Alpha, Beta and Gamma (particles such as X-ray, Cat Scan, Gamma Knife, etc)
• Radiation Non-Ionizing (Ultraviolet, visible light, infrared and microwaves that causes injuries to tissue or thermal or photochemical means)
• Mechanical moving parts/vibrations

About Methodist:

Nebraska Methodist Health System is made up of four hospitals in Nebraska and southwest Iowa, more than 30 clinic locations, a nursing and allied health college, and a medical supply distributorship and central laundry facility. From the day Methodist Hospital was chartered in 1891, service to our communities has been a top priority. Financial assistance, health education, outreach to our diverse communities and populations, and other community benefit activities have always been central to our mission.

Nebraska Methodist Health System is an Affirmative Action/Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, sex, age, national origin, disability, veteran status, sexual orientation, gender identity, or any other classification protected by Federal, state or local law.

Read Full Description