Cyber Security Systems Administrator

Cyber Security Systems AdministratorDay Shift (United States of America)

Summary

The Cybersecurity Administrator will be responsible for overseeing and managing the cybersecurity operations to protect Mary Free Bed's digital infrastructure and sensitive enterprise and patient data. This role involves developing and implementing comprehensive security strategies, ensuring regulatory compliance, leading incident response efforts, and continuously improving the organization's cybersecurity posture. The Cybersecurity Administrator will work closely with various departments to address security challenges and promote a culture of cybersecurity awareness.

Essential Job Responsibilities

Strategic Oversight:

• Develop and implement organization's cybersecurity strategy, policies, and procedures in alignment with healthcare regulations (e.g. HIPAA, etc.) and industry best practices.
• Lead cybersecurity operation initiatives, ensuring effective collaboration and performance.
• Set goals and define performance indicators and track progress towards achieving cybersecurity objectives.

Incident Management:

• Monitor security alerts and logs from various sources (SIEM, firewalls, etc.) to identify potential threats and vulnerabilities. Respond to and manage security incidents with prioritization and collaboration among internal and external teams.
• Oversee the response to security incidents, including detection analysis, containment, eradication, and recovery.
• Ensure that incident response plans are up-to-date and tested regularly, and coordinate with internal and external stakeholders during incidents.
• Conduct post-incident reviews to identify root causes and implement improvements to prevent future occurrences.

Risk Management:

• Identify, assess, and prioritize cybersecurity risks and vulnerabilities within Mary Free Bed's IT infrastructure and healthcare systems.
• Develop and implement risk mitigation strategies and recommend appropriate security measures to protect patient data and organizational assets.
• Collaborate with risk management and compliance teams to ensure adherence to regulatory requirements and standards.
• Conduct regular vulnerability assessments and scans to identify and address security weaknesses. Collaborate with IT teams and clinical staff to remediate vulnerabilities.
• Assist in the development and delivery of cybersecurity training programs for workforce to promote awareness and adherence to security policies.

Security Operations:

• Administer and manage security systems and tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), and security information and event management (SIEM) solutions.
• Configure, deploy, and maintain cybersecurity solutions to protect network and information systems. Ensure that security measures are effective and up to date.
• Ensure continuous monitoring of the security systems and tools to ensure reliability and effectiveness to detect and respond to threats in real-time.
• Monitor the performance of security systems and tools to ensure their reliability and effectiveness. Generate reports and provide recommendations for improvements.
• Manage the vulnerability assessment and patch management process to address security weaknesses.
• Analyze and interpret security events and incidents to identify patterns and potential risks. Use threat intelligence to understand emerging threats and their impact on the healthcare environment.

Development and Collaboration:

• Foster a collaborative and proactive team environment, encouraging knowledge sharing and professional growth.
• Work closely with internal departments to integrate security measures into business processes and address security concerns.
• Communicate effectively with executive leadership and board members about cybersecurity risks, incidents, and strategic initiatives.
• Prepare and present reports, metrics and recommendations to senior leaders and other stakeholders.
• Perform regular system and network hardening to reduce vulnerabilities and improve security posture.

Compliance and Audit:

• Implement and enforce cybersecurity policies and procedures to ensure compliance with healthcare regulations and industry standards.
• Prepare and support internal and external audits, providing documentation and evidence of security controls and practices.
• Stay informed about emerging cybersecurity threats, trends, and regulatory changes, and adapt strategies accordingly.

Embrace Diversity, Equity and Inclusion, by:

Treating everyone with dignity and respect

Opening more doors to opportunities for underrepresented cultures

Growing talent and people

Evaluating and eliminating disparities

Taking action against injustices, bias and racism

Honoring our differences and how to collaborate

Educating staff, patients and the communities we care for

Restoring Hope and Freedom, together

Essential Job Qualifications

• Bachelor's degree in Computer Science, Information Security or a related or relevant experience is preferred.
• Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH) are highly desirable.
• Strong knowledge of healthcare regulations (e.g., HIPAA, etc.) and experience with healthcare-specific security challenges.
• Demonstrated ability to develop and implement security strategies, manage cross functional teams, and communicate effectively with executive leadership.
• Excellent problem-solving skills, with a strategic mindset and the ability to make informed decisions under pressure.

Preferred Job Qualifications

• Experience with healthcare IT systems and electronic health records security
• Knowledge of advanced security technologies and methodologies, including threat intelligence and advanced persistent detection (APT).
• Ability to manage vendor relationships and oversee deployment of third-party security solutions.

Physical Requirements for Essential Job Qualification

Levels:

• None (No specific requirements)
• Occasionally (Less than 1/3)
• Frequently (1/3 to 2/3)
• Majority (More than 2/3)

Remain in a stationary position: Majority

Traverse or move around work location: Occasionally

Use keyboard: Frequently

Operate or use department specific equipment: None

Ascend/Descend equipment or ladder: None

Position self to accomplish the Essential Functions of the role: None

Receive and communicate information and ideas for understanding: None

Transport, position, and/or exert force:

Up to 10 pounds:

Up to 25 pounds:

Up to 50 pounds:

Up to 75 pounds:

More than 100 pounds:

Other weight: Up to __35__ pounds: Occasionally

Other: None

The above statements are intended to describe the general nature and level of work being performed by employees in this classification. If you require a reasonable accommodation to perform the essential functions of this position, you must request accommodation in writing, within 182 days after you know or should know of the need for accommodation.

Mary Free Bed is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, age, genetic information, veteran status, disability or other legally protected characteristic.