Security Engineer

C

CereCore

Security Engineer

Louisville, KY
Full Time
Paid
  • Responsibilities

    Classification: Contract

    Contract Length: 12 months
    CereCore is a healthcare solutions provider that specializes in offering IT services, workforce management, and operational support to healthcare organizations. They focus on improving the efficiency and effectiveness of healthcare systems through various solutions, including electronic health record (EHR) support, IT staffing, and consulting services.

    Position Summary

    What makes HCA Healthcare Information Technology Group (ITG) unique as a technology company is that our solutions ultimately impact the care of patients. Although our skills are needed many industries, we in ITG apply them specifically to the noble cause of healthcare. We are "Healthcare Inspired." It is this guiding vision that pervades and positively influences every level of our organization. It shapes our mission, defines our values, and brings our leaders and employees together in a shared enthusiasm for their work, setting ITG apart as a uniquely purpose-driven company in the IT industry. As a part of that, we exist to raise the bar, unlock possibilities, and care like family.

    We are on a mission to change the face of the healthcare industry through value driven products. These products will create innovation to all users of healthcare across HCA’s nationwide ecosystem. To do this we are building teams that are curious and quick to adapt to new technologies.

    Responsibilities

    • Position Goal: This position is responsible for day-to-day security support, ticketing, and monitoring of the Galen network, employees and students accounts and email. This position is responsible for discovering security issues and vulnerabilities on a continuous basis. They aggressively look for security issues and track phishing attempts. This position monitors traffic from blocked countries and looks for attempted VPN access from said blocked countries. This position will assist the network team with implementation of network security throughout the Galen environment and monitor notifications and alerts, take action, and report to leadership.
    • Use a variety of methods to discover security issues and vulnerabilities on a continuous basis
    • Keep up with security vulnerabilities related to the applications, software and devices used in the organization
    • Develop remediations plans and research possible solutions for identified security issues
    • Assist in the development and implementation of security best practices, security hardening guidelines and other needed security measures.
    • Review security requests submitted by other teams in the organization and determine if they can be implemented securely and what security controls are needed to reduce the risk to the organization.
    • Assist the network team with implementation of network security throughout the Galen environment.
    • Work with the network team in configuring and on-going maintenance of firewalls.
    • Assist in addressing any security alerts and responding to any security events or incidents
    • Perform some security analyst duties as needed
    • Help conduct risk and security assessments throughout the organization.
    • Perform threat hunting utilizing available security hunting tools and techniques
    • Evaluate new security technology and measures to see if they would reduce risk to the organization and how they might work in furthering a zero-trust environment.
    • Perform basic red teaming and pen testing services within the Galen environment as part of the methodology that will be used in discovering security issues
    • Perform support and consulting services related to security issues within the organization.
    • Assist in the evaluation of dev ops and cloud security.
    • Assist with security awareness activities
    • Other duties as assigned by the Cybersecurity Manager
    • Knowledge and experience of basic security technology and solutions
    • Knowledge of networking and network security
    • Understanding of Windows OS, Windows Servers, and Linux
    • Basic knowledge and understand of Active Directory and Azure AD
    • Experience with security systems
    • Knowledge of zero trust principles.
    • Understanding of security best practices
    • Understanding of web related technologies, web applications and services.
    • Basic coding/scripting skills – bash, PowerShell and/or python
    • Strong problem-solving skills and can work under pressure. Is organized and detail oriented.
    • Good communications skills – verbal and written
    • Can work independently and is self-motivated and loves to learn new things and is lifelong learner
    • Dependable, trustworthy, and work well in a team environment