Oracle Info Security Engineer
AtlantiCare Regional Medical Center
Weymouth, NJ, USA
11/28/2024
Full Time
AtlantiCare Regional Medical Center
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
POSITION SHIFT: Days
POSITION STATUS: Full-Time
REQ_NUM: 01-35995
Hours Per Week 40
Holidays Required? No
Job Category: Information Technology
Location: 6725 Delilah Rd
Weekends Required? No
Description
POSITION SUMMARY
The Information Security Engineer is responsible for designing, configuring, implementing, and operating security-related systems and applications with an overall goal of reducing information security risk for the organization and protecting the integrity and confidentiality of company information.
QUALIFICAITONS
EDUCATION: Bachelor's degree in Computer Science, Information Science or related field plus 2-3 years of relevant experience. In lieu of a Bachelor's degree 5 total years of related experience required.
LICENSE/CERTIFICATION: Information security certifications are preferred and recommended. CISSP is preferred, but will consider others. At least one information security certification is required after 18 months of employment.
EXPERIENCE: Experience with information security concepts and features required. Strong technical, analytical, and administrative skills required. This position may require on-call responsibilities.
PERFORMANCE EXPECTATIONS
WORK ENVIRONMENT
Potential for exposure to the hazards and risk of the hospital environment, including exposure to infectious disease, hazardous substances, and potential injury. This position requires repetitive motion, fingering, grasping, hearing, and speaking a majority of the time. This position also requires spending time with such equipment as computer terminal, fax machine, copier and telephone.
REPORTING RELATIONSHIP
This position reports to department leadership.
Essential functions for this position are identified by an asterisk *.
The above statement reflect the general details considered necessary to describe the principle functions of the job as identified and shall not be considered as a detailed description of all work requirements that may be inherent in the position.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
POSITION SHIFT: Days
POSITION STATUS: Full-Time
REQ_NUM: 01-35995
Hours Per Week 40
Holidays Required? No
Job Category: Information Technology
Location: 6725 Delilah Rd
Weekends Required? No
Description
POSITION SUMMARY
The Information Security Engineer is responsible for designing, configuring, implementing, and operating security-related systems and applications with an overall goal of reducing information security risk for the organization and protecting the integrity and confidentiality of company information.
QUALIFICAITONS
EDUCATION: Bachelor's degree in Computer Science, Information Science or related field plus 2-3 years of relevant experience. In lieu of a Bachelor's degree 5 total years of related experience required.
LICENSE/CERTIFICATION: Information security certifications are preferred and recommended. CISSP is preferred, but will consider others. At least one information security certification is required after 18 months of employment.
EXPERIENCE: Experience with information security concepts and features required. Strong technical, analytical, and administrative skills required. This position may require on-call responsibilities.
PERFORMANCE EXPECTATIONS
- Provides security expertise for developing and maintaining standard security configurations for operating systems and applications; configures non-compliant systems to adhere to standard security policies.*
- Knowledgeable in encryption protocols for security & integrity of data at rest and in motion.*
- Remains current on Network security best practices and provides subject matter expertise and guidance for secure network configurations.*
- Remains current on available security/audit functionality for systems and maximizes use.*
- Administers information security applications to bolster compliance with organizational security policies including Next Gen Anti-Virus, Web Filtering, Intrusion Detection and Prevention, Log Management, and other security-related systems and applications.*
- Assists in identifying system security vulnerabilities and makes recommendations for procedures and/or controls to eliminate or reduce risks.*
- Performs routine scanning of systems and application for known vulnerabilities, missing patches, and other security risks and coordinates remediation efforts.*
- Coordinates and executes remediation plans for technical vulnerabilities identified in system, application, and network configurations.*
- Evaluates and reports on vendor issued security patches and advisories and is responsible for tracking, testing, and deploying security patches where appropriate.*
- Assists in the evaluation, implementation, and configuration of cross-platform, third party security products ensuring conformance to established standards.*
- Maintains appropriate technical and project documentation related to security projects, controls, standard security configurations, and procedures.*Identifies and escalates actual and suspected violations of information security policy and system intrusions.*
- Assists with the development and delivery of education materials for security-related topics to bolster security awareness throughout the organization.*
- Responsible for the daily monitoring of security systems and responds appropriately to alerts and events including Next Gen Anti-Virus, Web Filtering, Intrusion Prevention/Detection, Log Management, and other security-related systems and applications.*
- Monitors and investigates applications and systems for potential security violations and exposures and escalates as needed.*
- Monitors and responds to help ticket and ad-hoc requests to the Information Security office via the Information Security mailbox and help ticket system. Escalates to management where appropriate.*
- Administers audit log management systems including configuring systems to connect for centralized audit log management reviewing ad-hoc and scheduled reports, generating and monitoring alerts, and reviewing audit log configurations.*
- Responsible for security incident handling containment, evidence preservation, remediation, investigation, reporting, and documentation of security events.*
- Ability to collaborate and assist the Legal Affairs Department to ensure legal hold notices for electronically stored data (ESI) and eDiscovery requests are processed appropriately.*
- Provides weekly status reports on progress of open projects, issues, work status, and seeks guidance where appropriate.*
- Understands and practices the AtlantiCare Information Technology Values.*
- Adheres to AtlantiCare and AtlantiCare Information Technology Policies and Procedures.*
- Performs other duties as assigned.*
WORK ENVIRONMENT
Potential for exposure to the hazards and risk of the hospital environment, including exposure to infectious disease, hazardous substances, and potential injury. This position requires repetitive motion, fingering, grasping, hearing, and speaking a majority of the time. This position also requires spending time with such equipment as computer terminal, fax machine, copier and telephone.
REPORTING RELATIONSHIP
This position reports to department leadership.
Essential functions for this position are identified by an asterisk *.
The above statement reflect the general details considered necessary to describe the principle functions of the job as identified and shall not be considered as a detailed description of all work requirements that may be inherent in the position.
PI255686558