Key skills
CommunicationNetwork Security
About this role
Prosum is a company specializing in Information Security, and they are seeking an Information Security Engineer II to support their Information Security team. This role involves ensuring the integrity of information system assets and protecting systems from unauthorized access, with responsibilities including implementing security measures, incident response, and collaborating with IT teams.
Responsibilities:
- Implement and monitor security measures to protect computer systems, networks, and organizational data
- Design and maintain cybersecurity processes, including Incident Response, Eradication, Recovery, and Lessons Learned
- Detect, respond to, mitigate, report on, remediate, and recover from security incidents
- Perform technical analysis, installation, maintenance, and modification of security systems and software
- Monitor, analyze, and report on the performance and effectiveness of security systems
- Participate in security solution implementations and incident response efforts
- Assist in developing security policies, standards, procedures, and documentation
- Identify and define system security requirements
- Configure and troubleshoot security infrastructure devices
- Develop technical solutions and security tools to mitigate vulnerabilities and automate repeatable tasks
- Collaborate with other IT and Information Security teams on incidents, remediation, and security initiatives
- Prepare reports documenting security incidents and the impact of breaches
- Recommend security enhancements, strategies, and improvements to management or senior IT staff
- Provide after-hours and weekend support as part of a 24x7 incident response model
- Ensure minimal disruption to business operations during security incidents
- Perform other duties as assigned
Requirements:
- Associate's degree in Computer Science or a related field, or an equivalent combination of education and experience demonstrating the ability to perform the role successfully
- Minimum 5 years of experience in general Information Security
- Experience in a healthcare or regulated environment
- Experience with PCI, HIPAA, and NIST frameworks
- Proven experience as a System Security Engineer or Information Security Engineer
- Hands-on experience working with and maintaining security systems
- Understanding of security control concepts: physical, logical, and administrative
- In-depth technical knowledge of operating system security
- Hands-on experience with security technologies such as: Intrusion detection/prevention systems, Anti-virus and endpoint protection, Authentication systems, Log management and SIEM tools, Content filtering solutions
- Strong knowledge of network security and networking technologies
- Experience configuring, managing, and troubleshooting security tools and infrastructure
- Strong analytical, problem-solving, and communication skills