Cyber Security Engineer - Support Services

Job Summary 

The Cyber Security Engineer, as a member of the Cyber Security department, will design, develop, configure, and implement solutions and processes to address both technical and business issues related to cybersecurity. The Cyber Security Engineer will assess cybersecurity risks, identify vulnerabilities, and recommend mitigations to ensure the protection of critical systems and data. They will provide support across various Cyber Security functions of intermediate complexity, working independently and collaboratively to enhance the organization's security posture. This role involves reviewing and consulting on the security of technology solutions to ensure they meet organizational standards. Additionally, the Cyber Security Engineer will assist in the design, development, and integration of new solutions within the existing architecture, resolving issues and improving security processes and operations. Strong problem-solving, communication, and collaboration skills are essential for success in this role. 

Essential Functions

• Cyber Controls and Monitoring:
  • Participates in the design, configuration, implementation, and troubleshooting of intermediate cyber domain technologies and processes.
  • Monitors various cyber platforms, responds to intermediate-level events, and provides appropriate insights and actions.
  • Supports the development of strategies for expanding Cyber Security controls and detection methods.
  • Maintains security standards based on NIST recommendations and assists in compliance with NIST 800-53.
• Process Improvement & Documentation:
  • Identifies inefficiencies in intermediate processes and suggests modifications to enhance security effectiveness.
  • Develops and maintains documentation for processes, technologies, and solutions, contributing to process improvement initiatives.
  • Participates in the documentation of security strategies to support broader organizational goals.
• Collaboration & Stakeholder Management:
  • Works with departments and stakeholders to maintain and improve security solutions.
  • Collaborates with Technology, Business, and Audit partners to address compliance risks and contribute to audit remediation efforts.
  • Provides technical guidance to associate-level engineers and collaborates with teams to improve Cyber Security knowledge and processes.
• Problem Solving & Incident Response:
  • Participates in problem-solving efforts, root cause analysis, and solution development for intermediate issues.
  • Prioritizes tasks and helps ensure timely resolution of intermediate incidents in fast-paced environments.
  • Supports scheduled engineering events and incident response as part of a 24x7 support structure.
• Strategic & Leadership Responsibilities:
  • Participates in the development of Product/Capability Roadmaps, supporting intermediate security strategies and initiatives.
  • Contributes as a subject matter expert on intermediate-level solutions and configurations.
• Soft Skills & Communication:
  • Communicates technical concepts effectively with team members, management, and non-technical audiences.
  • Maintains confidentiality of sensitive data and ensures proper reporting of initiative developments.
  • Demonstrates strong problem-solving and time management skills.
• Performs other duties as assigned.
• Complies with all policies and standards.

Qualifications

• H.S. Diploma or GED required
• Associate Degree or Bachelor's Degree in Cyber Security, Computer Science, Information Systems (or other related field) or equivalent work experience preferred
• 2-4 years Cyber Security, Technology, or other related experience required
• 4-6 years Cyber Security, Technology, or other related experience preferred

Knowledge, Skills and Abilities

• Technical Expertise & Problem Solving:
  • Proficient in designing and implementing moderately complex technical solutions, with limited oversight.
  • Ability to independently identify, troubleshoot, and resolve intermediate-level technical issues.
  • Solid understanding of security principles and techniques, with practical application across multiple Cyber Security domains.
  • Experience with key technologies such as Endpoint Protection, Logging and Monitoring, and Network and Cloud Security, and the ability to apply them effectively in various contexts.
  • Strong understanding of the systems development lifecycle, with the ability to contribute technical insights and solutions on projects with growing complexity.
• Communication & Collaboration:
  • Ability to effectively communicate technical concepts to both technical and non-technical audiences, adjusting communication style based on the listener's background.
  • Strong written and verbal communication skills, allowing for effective interaction with staff, mid-level management, and external stakeholders.
  • Ability to collaborate across IT teams and business areas, contributing to balancing security measures with operational efficiency.
  • Willingness and aptitude to participate in cross-functional projects, providing technical input and support in alignment with team objectives.
• Work Quality & Professional Development:
  • Solid time management and prioritization skills, with the ability to handle multiple tasks effectively in a fast-paced environment.
  • Demonstrated dedication to continuous growth and self-improvement through training and practical experience, seeking opportunities for professional advancement.
  • Consistently delivers thorough, high-quality work with attention to detail, balancing deadlines and workload independently.
• Regulatory & Industry Knowledge:
  • Basic awareness of laws, regulations, and standards in the healthcare industry or other regulated sectors, with the ability to follow established compliance guidelines.
  • Exposure to working in structured, process-driven environments, with eagerness to participate in process optimization activities under supervision.
  • Willingness to learn about industry-specific compliance and regulatory frameworks, actively seeking to improve knowledge through training and mentorship.

Licenses and Certifications

• Industry certifications such as:
  Security+, GSEC, SSCP, CISM, CISSP, GIAC, OSCP, or ITIL Certifications preferred