Information Security Engineer

Please forward resume to Michael Poston [email protected] for consideration. Information Security EngineerAkron, OHW2 candidates onlyEnsure the confidentiality, integrity and availability of Summa Health System information systems and assets. Participates in ongoing enforcement and monitoring activities related to security and privacy in compliance with organizational policy, regulatory requirements, federal and state laws, accreditation and industry standards.Formal Education Required:

• Bachelor's degree in Computer Science or Information Systems or equivalent combination of education and/or experience

• Five (5) years professional experience in Information Systems and/or Information Security
• One or more Certification preferred: ((ISC2 CISSP, CISM, CISA, CRISC, CGEIT, ISSAP, ISSEP, Cisco CCIE Security)

• At this level, incumbents perform the full range of assigned tasks, independently, while exercising discretion and independent judgment within established guidelines.
• Assist with planning, implementation, and maintenance of comprehensive enterprise-wide Information Security policies, strategies, and systems that protect the organization information systems in accordance with applicable laws, regulatory requirements, and industry standards.
• Plan, implement, troubleshoot, and maintain the necessary technical systems, controls, policies, or procedures to protect information systems assets and data from intentional or inadvertent disruption, modification, disclosure, or destruction.
• Awareness training of the workforce on information security standards, policies and best practices
• Installation and use of firewalls, data encryption and other security products and procedures
• Conduct periodic network scans to find any vulnerability
• Conduct penetration testing, simulating an attack on the system to find exploitable weaknesses
• Monitor networks and systems for security breaches, through the use of software that detects intrusions and anomalous system behavior
• Investigate security breaches
• Lead incident response, including steps to minimize the impact and then conducting a technical and forensic investigation into how the breach happened and the extent of the damage
• Implement enterprise-class security systems for a production environment
• Align standards, frameworks and security with overall business and technology strategy
• Identify and communicate current and emerging security threats
• Implement security architecture elements to mitigate threats as they emerge
• Maintain relevant knowledge and skills of the following:
• All systems required to implement, support, or maintain.
• Regulatory and legal compliance requirements applicable by federal, state, and local law.
• Advancements in information security, information systems technologies, and standards.
• Adheres to Summa policies and procedures and demonstrates business practices and personal actions that are ethical and adhere to corporate compliance and integrity guidelines maintaining utmost level of confidentiality at all times.
• Communicate or collaborate with external technology representatives, vendors, and support staff.
• Communicate or collaborate with hospital staff, managers, and administration.
• Performs other related work assignments as required.