The Sr. Endpoint Security Engineer develops, engineers, and maintains the Endpoint Security Program for the Cybersecurity Risk Management Department. This role is expected to have Senior level knowledge of endpoint security technologies. The senior engineer will be responsible for identifying and remediating security gaps, the continued improvement of existing controls, mentoring and collaborating with other Cyber Security and Information Technology team members to secure the many information technology assets and data of Community Health Systems. The senior engineer will collaborate with architects to design and implement solutions that better protect CHS systems and data.
Essential Duties and Responsibilities:
-
Design, engineer, manage, review, and recommend improvements for new and existing endpoint security solutions, configurations and technologies. Develop and maintain security standards based on National Institute of Standards and Technology (NIST) recommendations, specifically NIST 800-53.
-
Enhance preventative and automated endpoint security controls aligned with business requirements along with common threats.
-
Develop and improve policies, standards, and processes for the identification and prioritization of threat remediation as well as processes and methodologies for metrics and KPIs related to endpoint protections, security and compliance.
-
Provide technical guidance to enterprise Cyber Security and Information Technology teams regarding the impact of endpoint security controls in order to drive issues to remediation and develop systemically secure configurations.
-
Assist in developing and documenting an overall endpoint protection strategy including defining control standards and enhancement opportunities.
-
Other duties and responsibilities as assigned by cybersecurity leadership.
Qualifications:
-
Required Education: High school diploma
-
Preferred Education: Bachelor’s or Master’s Degree in Cyber Security, Computer Science, Information Systems (or other related field), or equivalent work experience.
-
Required Experience:
-
Duration:
-
3+ years of IT or information security, and
-
2+ years of endpoint security
-
Activities:
-
Managed EPP/NGAV, EDR, HIPS, FIM, Application Control and other endpoint security technologies
-
Served as senior thought leader for endpoint security technology and influenced the strategy to address internal or external business and regulatory issues.
-
Worked in process-driven structured environments, and participated in process optimization activities.
-
Competencies:
-
Advanced knowledge of security principles, issues, techniques and implementations across endpoint security platforms.
-
Proactive identification and solving of complex problems
-
Strong understanding of systems development lifecycle to provide technical leadership for multifunctional projects or initiatives.
-
Strong ability to work on and prioritize multiple, concurrent projects while meeting aggressive deadlines in a fast-paced environment.
-
Willingness to participate in cross-functional training and support
-
Effective communication of technical concepts to a non-technical audience.
-
Excellent written and verbal communication skills
-
Preferred Experience:
-
5+ years of IT or information security
-
3+ years of endpoint security
-
Scripting and Automation
-
Required License/Registration/Certification: None
-
Preferred License/Registration/Certification: CISSP, GIAC, OSCP, and other Industry Standard Certifications.
-
Computer Skills Required: Office/GSuite, Linux, Windows, and various other cybersecurity tools and technologies as necessary.
Equal Employment Opportunity
This organization does not discriminate in any way to deprive any person of employment opportunities or otherwise adversely affect the status of any employee because of race, color, religion, sex, sexual orientation, genetic information, gender identity, national origin, age, disability, citizenship, veteran status, or military or uniformed services, in accordance with all applicable governmental laws and regulations. In addition, the facility complies with all applicable federal, state and local laws governing nondiscrimination in employment. This applies to all terms and conditions of employment including, but not limited to: hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. If you are an applicant with a mental or physical disability who needs a reasonable accommodation for any part of the application or hiring process, contact the director of Human Resources at the facility to which you are seeking employment; Simply go to http://www.chs.net/serving-communities/locations/ to obtain the main telephone number of the facility and ask for Human Resources.
