Cyber Security Incident Respon

Interested in a career with both meaning and growth? Whether your abilities are in direct patient care or one of the many other areas of healthcare administration and support, everyone at Parkland works together to fulfill our mission: the health and well-being of individuals and communities entrusted to our care. By joining Parkland, you become part of a diverse healthcare legacy that's served our community for more than 125 years. Put your skills to work with us, seek opportunities to learn and join a talented team where patient care is more than a job. It's our passion.

Primary Purpose Assists in operational support for continuous monitoring of all designated networks, infrastructure and systems. Supports an Incident Response Framework by ensuring preparation, detection, analysis, containment, eradication, recovery and post-incident activities to prevent threats and mitigate cyber incidents.

Minimum Specifications

Education - Bachelor's degree in Computer Science preferred or related field or the equivalent of education, professional training, or work experience.

Experience - Must have one year of experience in an information systems security domain. Preferred background in intrusion detection monitoring, incident response and mitigation, threat research and cyber intelligence analysis or other cyber security domain.

Equivalent Education and/or Experience - May have an equivalent experience to substitute for the education requirements.

Certification/Registration/Licensure - CompTIA Security+ Certification preferred or equivalent in industry certification, background, and knowledge.

Required Tests for Placement Skills or Special Abilities - Must be able to analyze and correlate security information with other relevant data sources. - Must have the ability to perform research to determine industry standard products and solutions to facilitate creation of security mitigation controls / recommendations. - Prefer experience in Agile Methodologies. - Prefer experience in contributing to audit requirements. - Must have effective writing skills and the ability to communicate clearly regarding technology. - Must have well rounded documentation skills. - Must have a general understanding of the following technologies: Microsoft Active Directory, Data Loss Prevention, Encryption Technologies, Vulnerability Management, Intrusion Detection Systems, Intrusion Prevention Systems, Virtual Private Network, Linux Operating Systems, Windows Operating Systems, Communication Protocols, Multi-factor authentication, Cloud Access Security Broker, Endpoint Detection and Response Technologies, Security Information and Event Management Tools - Must be able to listen and communicate effectively. - Must be willing to work in an on-call situation.

Responsibilities 1. Participates in preparation of incident response actions to ensure security incidents are properly identified and created in a timely manner. 2. Participates in validating indicators of compromise by investigating ambiguous, incomplete, contradictory, or erroneous indicators to confirm actual security incidents. 3. Works under supervision when following containment strategies associated to incident types. 4. Works under supervision in eradication actions to eliminate threat components associated to the incident. 5. Participates in post-incident activity meetings to improve incident response capabilities and prevent the incident from recurring. 6. Works under supervision to provides data and deliver summary reports to peers for presentation to leadership. 7. Works under supervision to utilizes tools for review and monitoring of audit logs, devices, applications, and forensics. 8. Maintains knowledge of applicable rules, regulations, policies, laws and guidelines that impact the Parkland. Participates in the creation of effective security controls designed to promote adherence with applicable laws and accreditation agency requirements. Seeks advice and guidance as needed to ensure proper understanding. 9. Document procedures necessary for the implementation of Information Security Policies and Standards. 10. Identifies ways to improve work processes and improve customer satisfaction. Makes recommendations to supervisor. Works under supervision to implements and monitor results as appropriate in support of the overall goals of the department and Parkland. 11. Stays abreast of the latest developments, advancements, and trends in the field of Cyber Security Incident Response by attending seminars/workshops, reading professional journals, and actively participating in professional organizations. Integrates knowledge gained into current work practices.

Parkland Health and Hospital System prohibits discrimination based on age (40 or over), race, color, religion, sex (including pregnancy), sexual orientation, gender identity, gender expression, genetic information, disability, national origin, marital status, political belief, or veteran status.As part of our commitment to our patients and employees' wellness, Parkland Health is a tobacco and smoke-free campus.