- Full Time
The Senior IS Security Engineer (Risk and Awareness) role is the third level of a three level career path. The Senior IS Security Engineer, under limited supervision, is responsible for developing and conducting comprehensive risk based technical security and compliance audits within, or across technical corridors. This position is responsible for giving risk guidance and remediation suggestions to MaineHealth leadership and staff. This position is also responsible for contributing to the security awareness program. This senior level position requires both a strategic and tactical focus, with strong technical and compliance knowledge including, but not limited to, network, platform, and application security technologies as well as, HIPAA, Security/Privacy, Business Continuity/Disaster Recovery, NIST based security and risk management standards, and industry best practice security standards. Other activities may include developing, implementing and managing security policies, procedures and standards.
Bachelor’s degree in a related field of study or equivalent experience.
CISA, CISM, or equivalent GIAC certification preferred.
Three to five (3-5) years of experience with conducting risk assessments and planning remediation/mitigation activities. Experience working in a regulated environment preferred. Experience working in a GRC tool a plus.
Excellent working knowledge of information, cybersecurity, and technology risk concepts with the ability to articulate the risks in business terms.
Strong written/verbal interpersonal communication skills with the ability to build consensus and interact effectively with diverse internal and external audiences, including peers, stakeholders, management, sponsors, and vendors.
Strong technical acumen to understand technology and the opportunities and risks it presents.
Demonstrated knowledge of cybersecurity awareness programs.
Demonstrated analytical and problem-solving skills.
Demonstrated collaboration and mentoring skills.
Demonstrated team player.
Required Minimum Knowledge, Skills, and Abilities (KSAs) Education : Bachelor’s degree in a related field of study or equivalent experience.
License/Certifications : Professional certification in technical security or within a relevant networking or platform technology.
Experience : 5 years of IT experience in complex environments with extensive knowledge of computer networking and platforms, including (but not limited to) network operating systems; firewalls; intrusion detection/prevention systems; wireless security including wireless intrusion prevention systems; web proxies; vulnerability scanning technologies; VPN’s; Windows and Unix-based platforms; identity management; IT incident response; and network architecture.
Strong working knowledge of application security concepts from a secure coding, secure design, and ongoing change management and monitoring perspective.
Demonstrated level of organizational skills necessary to support business and process analysis, project planning and definition, and process implementation in moderate to complex environments.
Able to lead others to complete project and/or team goals.
Strong collaboration and negotiation skills.
Strong business acumen.
Ability to overcome obstacles across technology and process boundaries.
Articulate effectively both in written and oral form, and collaborate with multiple teams regarding security and privacy obligations and duties.
With a career at any of the MaineHealth locations across Maine and New Hampshire, you’ll be working with health care professionals that truly value the people around them – both within the walls of the organization and the communities that surround it.
We offer benefits that support an individual’s needs for today and flexibility to plan for tomorrow – programs such as paid parental leave, a flexible work policy, student loan assistance, training and education, along with well-being resources for you and your family.
MaineHealth remains focused on investing in our care team and developing an inclusive environment where you can thrive and feel supported to realize your full potential. If you’re looking to build a career in a place where people help one another deliver best-in-class care, apply today.