Embed Size (px)
Citation preview
Fidelis Care New York
Security Engineer I
Department: Information
Technology
Reports to: Manager,
Security Band:
Division: Information
Technology
Job Code: XXX Salary/wage Grade:
None Status: Exempt
Labor Type: Full Time
Position Summary:
The Security Engineer I ensures that applications and infrastructure are designed and
implemented in a secure manner. Performs analysis of technical products and services.
Reviews account activity for administrators and privileged accounts. Recommends,
reviews, and approves proposed changes to system baseline configuration. Defines and
enforces standard security configurations and system management practices.
Technical/Functional Expectations:
1. Security
Architecture:
Formulate security architecture recommendations and design
security services.
2. Audit Responses: Assist in responses to external audits and external security
assessments.
3. Risk Assessments: Participates in risk assessments, penetration tests and helps to
diagnose internet/extranet security, and intrusion attempts.
4. System Fixes: Recommend and coordinate the application of fixes and/or
patches to improve the operational security of systems.
5. Disaster
Recovery:
Recommend and coordinate disaster recovery procedures in the
event of a security breach.
6. Technology
Research:
Research emerging technologies in support of security
enhancement and development efforts.
7. Project
Participation:
Acts as contributor on select security projects.
8. Application and
Network Security:
Solid familiarity with application and network security.
9. Hands-On Support
for Security
Technologies:
Must be able to perform hands-on support for a wide range of
security technologies including, but not limited to: SEIM,
IDS/IPS, HIDS, malware analysis and protection, content
filtering, logical access controls, identity and access management,
and data loss prevention, content filtering technologies,
application firewalls, vulnerability scanners, LDAP, forensics
software, security incident response, Identity Management.
10. Other duties as
required:
Perform other incidental and related duties as required or
assigned.
Behavioral Competencies:
1. Attention to
Detail:
Able to be thorough and complete when working with assembling,
processing, or providing detailed information; track details even
when under pressure.
2. Integrity: Able to demonstrate consistency of words and actions; protect
confidential information; do what is right even when no one is
watching; demonstrate sound business ethics; consistently comply
with organizational values.
3. Versatility: Able to take on new or multiple roles and responsibilities and do
them well; be flexible when considering options or opinions; be open
to new ideas and change.
4. Deal with
Ambiguity:
Able to maintain composure and handle frequent job changes or
unexpected disruptions; work with conflicting, delayed, or unclear
information; remain effective when faced with change and
uncertainty.
5. Customer
Service:
Able to anticipate and respond to customer's needs, concerns, or
questions in order to meet or exceed their expectations; help evaluate
needs and options; show care and concern to demonstrate customer
importance and value.
6. Develop
Relationships:
Able to relate with others while building credibility and rapport; give
personal support and reassurance; put others at ease; build
cooperative relationships.
7. Diligence: Able to persevere in accomplishing tasks or objectives; commit to
long hours of work; do everything possible to reach goals; have a
sense of urgency about getting results.
Business Experience:
1. Industry Experience: 0 - 3 years progressive experience in information
security, preferably in a health care environment. Relies
on pre-established procedures and guidelines.
2. Scripting skills: E.G., PERL, shell scripting
3. Excellent communication
skills:
4. Excellent analytical, project
mgt and organizational
skills.:
5. Change management skills.:
Educational and Experience Requirements:
1. BA/BS - Bachelors Degree or equivalent required.
2. 0 - 3 years required.
Physical Requirements:
