At Cleveland Clinic Health System, we believe in a better future for healthcare. And each of us is responsible for honoring our commitment to excellence, pushing the boundaries and transforming the patient experience, every day.

                        

We all have the power to help, heal and change lives — beginning with our own. That’s the power of the Cleveland Clinic Health System team, and The Power of Every One.

                                    

Job Title

Cybersecurity Specialist - Insider Threat

                        

Location

Cleveland

                    

Facility

Remote Location

                     

Department

Cybersecurity Intelligence-Information Tech Div

                      

Job Code

T98512

                     

Shift

Days + Call

                       

Schedule

8:00am-5:00pm

                       

Job Summary

                         

Job Details

Join the Cleveland Clinic team, where you will work alongside passionate caregivers and provide patient-first healthcare. Cleveland Clinic is recognized as one of the top hospitals in the nation. At Cleveland Clinic, you will receive endless support and appreciation and build a rewarding career with one of the most respected healthcare organizations in the world.   

As a Cybersecurity Specialist, you will perform essential duties to safeguard digital assets and protect systems from intentional or inadvertent access. Under the supervision of the Manager of Cybersecurity Intelligence and support of your teammates, you will lead efforts to identify, investigate, and mitigate potential insider risks to protect Cleveland Clinic’s patients, assets, data, and reputation.

This is a remote position, with caregivers working days + on-call shifts from 8:00 a.m. – 5:00 p.m.

A caregiver who excels in this role will:

• Independently conduct end-to-end insider risk investigations while working closely with Legal, Human Resources, Cybersecurity Operations, and other cross-functional teams.

• Use monitoring and detection platforms to investigate anomalous activity for potential insider risk.

• Conduct interviews with potential insiders.

• Serve as the subject matter expert for insider risk and provide training to team members as needed.

• Leverage AI tools to accelerate investigation workflows and data analysis.

• Prepare investigation metrics, reports, and briefings.

• Develop and maintain playbooks, standard operating procedures, and guideline documentation.

• Support education and awareness programs to foster a strong security culture.

Minimum qualifications for the ideal future caregiver include:

• High School diploma/GED and seven years of Information, Clinical or Financial Systems experience required, including directing, planning and scheduling a major information system project, with three years of Cyber Security experience

• OR Bachelor’s Degree and five years of Information, Clinical or Financial Systems experience required, including directing, planning and scheduling a major information system project, with three years of Cyber Security experience

• Demonstrated ability to communicate technical concepts to non-technical stakeholders.

• Experience leveraging DLP, UEBA, SIEM, EDR/XDR and SOAR platforms for complex investigations.

• Familiarity with MITRE ATT&CK, NIST, HIPAA, GDPR, and ISO 27001.

• Hands on scripting experience (Python, PowerShell, KQL, etc.) to collect artifacts, enrich detections and automate investigate workflows.

• For Information Technology Division caregivers, ITIL Foundations certification is required within 6 months of position start date

Preferred qualifications for the ideal future caregiver include:  

• Experience coordinating with internal and external counsel and eDiscovery providers.

• Experience conducting OSINT investigations.

• Industry certifications such as GCIH, GCFR, GCFA, GNFA, CEH, CFE, CCE, CFCE, CHFI, or equivalent advanced certifications.

Physical Requirements:

• Ability to perform work in a stationary position for extended periods.

• Ability to travel throughout the hospital system.

• Ability to operate a computer and other office equipment. 

• Ability to communicate and exchange accurate information.

Personal Protective Equipment:

• Follows standard precautions using personal protective equipment as required.

                       

The policy of Cleveland Clinic Health System and its system hospitals (Cleveland Clinic Health System) is to provide equal opportunity to all of our caregivers and applicants for employment in our drug free environment. All offers of employment are followed by testing for controlled substances.

Cleveland Clinic Health System administers an influenza prevention program. You will be required to comply with this program, which will include obtaining an influenza vaccination on an annual basis or obtaining an approved exemption.

Decisions concerning employment, transfers and promotions are made upon the basis of the best qualified candidate without regard to color, race, religion, national origin, age, sex, sexual orientation, marital status, ancestry, status as a disabled or Vietnam era veteran or any other characteristic protected by law. Information provided on this application may be shared with any Cleveland Clinic Health System facility. 

If applying for a Florida position, please see the following website for more information on the background screening requirements required by the Agency of Health Care Administration: https://info.flclearinghouse.com/

Please review the Equal Employment Opportunity poster. 

                  

Cleveland Clinic is pleased to be an equal employment opportunity employer.