Job Description SummaryThe Cyber Security Engineer is responsible for the ongoing management of information security policies, procedures, and technical systems in order to maintain the confidentiality, integrity, and availability of information. The individual is responsible for implementing, managing, and enforcing information security directives as mandated by the South Shore Health System's Information Security framework. The individual manages daily security operations and assists in the development of architecture designs, changes, and configuration management in support of information technology security initiatives; conduct technical evaluations, and make recommendations to the Information Technology group. All duties to be performed in a manner that promotes a team concept and is consistent with the culture and mission of the Health System.Job DescriptionESSENTIAL FUNCTIONSEssential functions are those tasks, duties and responsibilities that comprise the means of accomplishing the job's purpose and objectives. Essential functions are critical or fundamental to the performance of the job. They are the major functions that the person in the job is held accountable for. Following are the essential functions of the job.* Use this to denote if a function does not provide opportunity to perform beyond "Meets Expectations"1. Coordinate and perform information security risk assessments and audits to ensure that information systems are adequately protected and meet the Health Systems' security framework and standards.2. Ensure implementation of best practices configuration and administration of information security controls and tools; e.g. access controls, endpoint protection, anti-virus/malware, data loss prevention, e-mail security, encryption, patching, vulnerability, web application gateways, perimeter firewalls and security log management and monitoring tools, used in governance, risk management, and compliance of protected data3. Collaborate on information security related incidents and resolution with technical staff, and provide security expertise/knowledge to cross functional information management teams.4. Conducts audits of the security levels, security practices and provides updated status reports.5. Participates in security incident response team, including performing forensics analysis, documentation, interviews and investigations.6. Responsible for virus/malware removal, and identify and implement preventative controls and measures to mitigate future vulnerabilities.7. Mitigate security event alerts and vulnerabilities through security incident event management (SIEM) tools or other external sources.8. Develop and maintain technical documentation used for information security operations procedures, which outline decision support (e.g., security control administration, best practices, events of interest and incident handling, and escalation).9. Participate in information security awareness and training initiatives to educate workforce about information risks.10. Collaborate with external vendors, consultants, and other third parties to improve information security within the organization.11. Identifies attacks to the Health System network and systems and escalates security issues to facilitate prompt remediation.12. Identifies, tracks, and monitors information security threats to support service continuity and security management.13. Contributes on implementation of and testing of disaster recovery plan.14. Participates in performing risk assessments for new business relationships/partnerships, software, and protected data/assets.15. Lead information security projects such as, security architecture, endpoint protection, anti-virus/anti-malware, server hardening, encryption, patching, firewall configurations and log management.16. Keep current with security threats, new privacy and security legislation, and security technologies.17. Perform other duties as assigned.ESSENTIAL FUNCTIONS (Cont.)I. Technology and Learninga. Participates in continued learning and possess a willingness and ability to learn and utilize new technology and procedures that continue to develop in their role and throughout the organization.b. Embraces technological advances that allow us to communicate information effectively and efficiently based on role.c. Strong technical skills with significant hands on experience in application and operating system hardening, end point protection, anti-virus/malware systems, vulnerability assessments, security audits, intrusion detection systems, etc.d. Must have proven experience managing multiple, complex, enterprise security projects.e. Experience with securing virtual environments and cloud-based solutions.f. Experience with risk analysis and the implementation of vulnerability management programs and related tools and systems.g. Experience with developing and providing an information security awareness and training program.h. Experience with developing and maintaining information security policies and standards.i. Experience with information security related issues involving identity and access management, intrusion detection, forensics, incident management, risk management and auditing.j. Technical experience in network administration, system administration, application development, database administration, and/or data center operations.Knowledge of hospital clinical and operational procedures.Must possess a high degree of integrity and trust along with the ability to work independently.Strong communications skills including the ability to build relationships and effectively communicate with project teams and key clinical stakeholders, including business services, nurses and physicians.Flexible team player with strong project management and organizational skills with ability to establish and achieve goals and maintain timelines.UNIT / DEPARTMENT SPECIFIC JOB FUNCTIONSUnit Specific functions are those tasks, duties and responsibilities that are specific to the performance of the job within a certain unit(s). Following are unit specific functions of the job, along with the corresponding performance standards.1. Personal transportation for local travel between SSHS sites.2. Participate in emergency and on-call coverage as assigned.Knowledge of compliance areas and security frameworks, to include HIPAA, MA 201 CMR 17, NIST, HITRUST CSF, COBIT, SOC 2, ISO 27002, FISMA 800-53/MARS-E. Hands-on experience with day-to-day operational support of various security tools and controls; e.g., security frameworks and standards, access control systems, endpoint protection, anti-virus/malware, encryption, patching, firewall and security log management and monitoring tools.