Posted:
12/4/2024, 7:23:51 AM
Location(s):
Arizona, United States
Experience Level(s):
Mid Level ⋅ Senior
Field(s):
IT & Security ⋅ Software Engineering
Workplace Type:
Remote
Primary City/State:
Arizona, ArizonaDepartment Name:
IT Identity Access Mgmt-CorpWork Shift:
DayJob Category:
Information TechnologyHelp lead health care IT into the future. Our Information Technology professionals play a key role in excellent patient care. If you like the idea of making a positive change in people’s lives – apply today.
As a Cybersecurity Engineer I, you will be part of an Enterprise-wide Cybersecurity Engineering team responsible for Identity and Access Management (IAM), tasked with supporting and enhancing the Enterprise IAM Platform. Expertise should include Feature Development and Deployment, Access Certifications, Provisioning, Modeling, Workflows, RBAC Implementation & Automation.
This impactful position will be responsible for the design, deployment, configuration, and maintenance of an IAM platform in a multi-state enterprise environment. Candidates should have experience with various programming and development platforms including Git, Java, JavaScript, PowerShell, SQL, and Agile project management methodologies. They should also have a solid understanding of Identity Access Management and Identity Governance tools, preferably with SailPoint’s IdentityIQ, IdentityNow, or similar. Candidates should also understand IAM best practices that will drive maturity and adoption of the platform across the enterprise.
In addition, a candidate with experience in developing strategies, implementing IAM technologies, integrating IAM technologies with business systems, planning and deploying platform upgrades. Implementation of IAM automation tools is highly desired. The successful individual will be a self-motivated, detail-oriented team player who enjoys working against aggressive delivery goals in a fast-paced, dynamic and technically complex environment. They will also have a passion for building and maintaining cross-organization relationships, drive process simplification, and end-user satisfaction.
Your pay and benefits (Total Rewards) are important components of your Journey at Banner Health. Banner Health offers a variety of benefit plans to help you and your family. We provide health and financial security options so you can focus on being the best at what you do and enjoying your life
Within Banner Health Corporate, you will have the opportunity to apply your unique experience and expertise in support of a nationally-recognized healthcare leader. We offer stimulating and rewarding careers in a wide array of disciplines. Whether your background is in Human Resources, Finance, Information Technology, Legal, Managed Care Programs or Public Relations, you'll find many options for contributing to our award-winning patient care.POSITION SUMMARY
This position designs, develops, configures, implements, tunes, maintains solutions, resolve technical and business issues related to cybersecurity threat & vulnerability management, identity management, security operations center, forensics, and data protection. Cybersecurity Engineers work with Cybersecurity Architects to execute strategic cyber initiatives, evaluate security components of the network, applications and end-user devices, and provides guidance to ensure new systems meet regulatory and technical standards. Cybersecurity Engineers participate in root-cause analysis efforts to determine improvement opportunities when failures occur. Manage Cyber systems, ensures they are tuned, on the current release and manages appropriate change management across the IT organization and the business.
CORE FUNCTIONS
1. Participates in the design and implementation of cybersecurity solutions.
2. Participates in providing technical expertise and support for cybersecurity solutions, including operational aspects of the software.
3. Participates in the design, implementation, and compliance of secure baseline configurations for applications and infrastructure components.
4. Performs technical assessments of systems and applications to ensure compliance with policy, standards and regulations.
5. Participates in the ongoing evaluation and development of security policies and procedures. Leads the revision of policies and procedures, as needed.
6. Update, sustain, and administer a high level of security for in-house security infrastructures and services.
7. Participates in cybersecurity projects, including the development of project scope requirements, budgeting, work breakdown.
8. Under general direction, this position is responsible for cybersecurity across multiple departments system-wide and requires interaction at all levels of staff and management.
MINIMUM QUALIFICATIONS
Must possess strong knowledge of business, information security and/or computer science as normally obtained through the completion of a bachelor's degree in Computer Science, Information Security, Information Systems, or a related field.
0-3 years of experience of enterprise-scale information security engineering, preferably in healthcare. Experience with IT operations and or Security operations is also highly desirable. Experience with automation of security processes, coding and scripting languages. Ability to perform acquisition process, including vendor selection, define requirements, contractual documentation development. Ability to document security processes as well as Use case development. Proficient understanding of regulatory and compliance mandates, including but not limited to HIPAA, HITECH, PCI, Sarbanes-Oxley. Experienced assessing and reaching out to vendors for needed features via enhancement requests. Experienced in planning, designing and implementing cybersecurity solutions. Experienced in operating, maintaining and the lifecycle of cybersecurity solutions. Knowledge of Security Engineering Principles, including risk management, resilience, vulnerability management, Information Security, and security operations. Requires independent judgment, critical decision making, excellent analytical skills, with excellent verbal and written communications. Ability to think quickly under difficult or complex conditions and clearly communicate to appropriate staff; ability to balance project workloads with customer support and on-call demands. Must demonstrate general knowledge of information technology and information security principles and practices. Requires communication and presentation skills to engage technical and non-technical audiences. Requires ability to communicate and interact across facilities and at various levels. As is typical in this industry, variable shifts and hours and responding to after-hours notifications may be required.
PREFERRED QUALIFICATIONS
Certification in one(1)of the following areas Systems Security Certified Practitioner (SSCP), HealthCare Information Security & Privacy Practitioner, (HCISPP), CompTIA Security+, Certified Information Systems Security Professional (CISSP) – Engineering (ISSEP), Certified Ethical Hacker (CEH), SANS GIAC, or Certified Information Systems Auditor (CISA). Two years as a System Administrator, Security operations or in IT Operations. Or two years risk management or GRC experience in the healthcare/medical environment.
Additional related education and/or experience preferred.
EEO Statement:
EEO/Female/Minority/Disability/Veterans
Our organization supports a drug-free work environment.
Privacy Policy:
Website: https://bannerhealth.com/
Headquarter Location: Phoenix, Arizona, United States
Employee Count: 10001+
Year Founded: 1999
IPO Status: Private
Industries: Health Care ⋅ Insurance ⋅ Non Profit