Information Security Engineer

Information Technology
in Miami Gardens
, FL
Reference: 19-01729

Job Description:

The Information Security Engineer under general direction will perform all necessary tasks to ensure the security of information assets and protect systems from unauthorized access or destruction. Assist with the creation of information security standards and procedures. Enforce information security standards and procedures based on business and regulatory requirements including HIPAA. Create and present appropriate security training material for the Information Security team and other technology staff. Significantly contribute to overall improvement of business security posture and HIPAA compliance.

Primary Duties and Responsibilities:

  • Actively monitor security event logs for threats and vulnerabilities to network and systems
  • Optimize security systems and controls to meet ongoing business requirements for data protection and compliance
  • Assist in evangelizing security across IT, developing awareness and making security meaningful, effective, fun and engaging
  • Assure to have an understanding of the business objectives
  • Support IT to develop, obtain support for and maintain a joint enterprise security and infrastructure roadmap aimed at enabling enterprise business within a secure, flexible environment
  • Actively participate in IT wide architecture discussions
  • Assist in responses to external audits, penetration tests and vulnerability assessments
  • Research emerging technologies in support of security enhancement and development efforts
  • Proactively assess potential items of risk and opportunities of vulnerability in the network
  • Work with IT to enable the detection and forensics of security incidents through better capture of logs and accurate documentation of all environments
  • Suggest solutions for the critical risk problems
  • Implement all suggested solutions for critical risk problems
  • Collaborate with all IT teams and corporate business units to ensure that security is a paramount consideration in all IT related initiatives
  • Drive the overall effort to identify security gaps and vulnerabilities within IT and drives projects to address gaps
  • Ownership of various security services including antivirus, application whitelisting, access management, password management, encryption, and more
  • Submit reports on critical risk and risk priority
  • Other duties as assigned and modified at manager’s discretion

Desired Skills and Experience:

  • Solid knowledge of information security principles and practices
  • Experience working with compliance and regulatory program requirements
  • Experience analyzing network, event and security logs, and/or IDS alert logs
  • Excellent analytical, problem solving and decision making skills, applied with a solution-focused attitude
  • Excellent written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy
  • Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism
  • Agile, proactive, comfortable working with ambiguous specifications and can prioritize on the fly
  • Knowledge of and experience with enterprise infrastructure architecture, service design, business practices, and industry trends
  • Knowledge of enterprise security relevant legal/regulatory requirements and industry trends
  • Excellent interpersonal and relationship skills that will help to build
  • Security standards development
  • Incident handling and response

Education/Knowledge Requirements:

  • Bachelor’s degree in Computer Science, Electrical/Computer Engineering or related field; or equivalent work related experience
  • Three (3) or more years in a system administration (LINUX, Network, Windows) role
  • Five or more years of experience in IT security and risk management
  • CCNA Security certification
  • Firewall Vendor certification(s)