The Information Security Engineer 2 position requires an information security professional who is results oriented, multi-disciplined, and comfortable in implementing system security solutions in multi-vendor complex healthcare environment. This position is responsible for the research, technical analysis, recommendation, configuration, and administration of systems and procedures to ensure the protection of information processed, stored, or transmitted in Atlantic Health Systems computing environments. This position provides security design, consultation, and technology governance oversight for various projects and initiatives. The incumbent also assists system users relative to information security matters and undertakes complex projects requiring additional specialized technical knowledge. This position acts as information security liaison to various business units and other corporate entities as well as the Information Services & Support department.
Working knowledge of industry standard security technologies and encryption/cryptography protocols and best practices, routing protocols and routing table configuration assignment, authentication, authorization and directory services. Ability to develop specific proactive procedures for detection of security breaches and identifying security risks via architecture and design review as well as baseline accepted security standards. Demonstrated experience in operating system, application, and network penetration testing and vulnerability assessment. Should have experience in liaising with system and network administrators to help remediate the impact of the identified risks and vulnerabilities at the platform level. Demonstrated conceptual, analytical and innovative problem-solving and evaluative skills, an ability to conduct independent research and analysis in the event of a security breach, identifying issues, formulating options, proactively closing the security loop-holes, and making conclusions and recommendations. Demonstrated knowledge of security controls for network, application and operating systems. Strong knowledge and work experience with logical access controls to ensure confidentiality, integrity and assurance of proprietary information. Knowledge and understanding of business processes and information systems of a healthcare institution. Demonstrated interpersonal skills; including the ability to work effectively in a team environment. Proven ability to work with staff and management in the Information Security and Information Services & Support divisions. Capacity to work independently and willingness to seek advice/assistance. Excellent time management and organizational skills. Willingness to work outside of regular business hours as required which may include evenings, nights, weekends, holidays.