Ensemble Health Partners is a leading provider of technology-enabled revenue cycle management solutions for health systems. The Engineer, Cybersecurity will design, develop, manage, and maintain secure platforms to protect data, analyze existing cloud structures, and implement security measures to mitigate risks.
Responsibilities:
- Participate in IT projects providing security architecture and security controls integration requirements
- Respond to crises or urgent situations to mitigate immediate and potential threats or IT issues. Track and document steps taken from initial detection through final resolution
- Assist with investigations of suspected cases of improper activity, coordinates reporting and recommends corrective steps
- Respond to security-related incident and service requests within allotted service level agreement time
- Manage and maintain, tune, and optimize the Security platforms
- Participate in IT projects providing Cybersecurity Engineering and security controls integration requirements
- Follow Change Management processes and represent change details in Change Advisory Board (CAB) meetings as necessary. Work with the CAB to establish pre-approved changes as required
- Assure technology is following standard security practices and achieves CIS compliance
- Improves process efficiency by crafting and implementing creative and balanced changes to existing deployment methodologies
- Experience with the analysis of underlying technologies that form the solution vital for the application of threat identification, analysis, and thread model design
- The threat model depicts trust boundary, threat agent(s), threat vector(s), and safeguard(s) vital to protect person, asset, data, and the Ensemble brand
- Work closely with functional-area architects, engineering, and Cybersecurity analysts throughout the company to ensure adequate security solutions and controls are in place throughout all IT systems, cloud systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements
Requirements:
- 3 to 5 years of related experience as a cybersecurity engineer
- Associates Degree or Equivalent Experience
- Respond to crises or urgent situations to mitigate immediate and potential threats or IT issues. Track and document steps taken from initial detection through final resolution
- Assist with investigations of suspected cases of improper activity, coordinates reporting and recommends corrective steps
- Respond to security-related incident and service requests within allotted service level agreement time
- Manage and maintain, tune, and optimize the Security platforms
- Participate in IT projects providing Cybersecurity Engineering and security controls integration requirements
- Follow Change Management processes and represent change details in Change Advisory Board (CAB) meetings as necessary. Work with the CAB to establish pre-approved changes as required
- Assure technology is following standard security practices and achieves CIS compliance
- Improves process efficiency by crafting and implementing creative and balanced changes to existing deployment methodologies
- Experience with the analysis of underlying technologies that form the solution vital for the application of threat identification, analysis, and thread model design
- The threat model depicts trust boundary, threat agent(s), threat vector(s), and safeguard(s) vital to protect person, asset, data, and the Ensemble brand
- Work closely with functional-area architects, engineering, and Cybersecurity analysts throughout the company to ensure adequate security solutions and controls are in place throughout all IT systems, cloud systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements
- Must be inquisitive and demonstrate openness to innovation including AI to explore better processes and ways to alleviate friction and improve patient and client experiences
- This is a remote position; however, candidates must be willing and able to travel to and work onsite at client, temporary, or corporate office locations as business needs require
- Preferred certification of CompTIA Security+, CySA+, CASP+, or willingness to obtain