IS Security Engineer III

posted on May 3, 2022

Job Description

Location: Philadelphia, PA

Duration: 6 months

Responsibilities:

  • Licenses/Certifications: Industry security certification required such as HealthCare Information Security and Privacy Practitioner (HCISPP), Certified Internal Auditor (CIA), Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in the Governance of Enterprise IT (CGEIT), Certified in Risk and Information Systems Control (CRISC) or other industry related certification a plus
  • 5 – 12 years related work experience; 4+ years of experience with information security, regulatory compliance and risk management concepts
  • 3 years of security architecture/engineering required
  • Comprehensive understanding of InfoSec risk management concepts, security engineering principles & practices, (e.g., COBIT or NIST)
  • Demonstrates a basic knowledge and understanding of Information security principles, System Development Life Cycle (SDLC), general and IT controls, security engineering principles, and related information security policies and procedures
  • Exhibits knowledge of industry regulatory standards and accreditation requirements (HIPAA, PCI, and Joint Commission).”
  • Defines and documents information security principles and processes to assist enterprise solution architects in security decisions for the enterprise, including access control, security information and event monitoring, and data loss prevention, perimeter (e.g., firewalls, IPS, web filtering) and network security (host-based firewalls, anti-virus, disk encryption)
  • Develops, builds, tests deployment strategies for information security solutions for application development as part of the organizations System Development Life Cycle (SDLC) methodologies
  • Defines and documents system security and compliance requirements in support of approved PMO projects, existing operational activities, trace all system security and compliance requirements, validates that requirement are addressed, including validation of the final detailed security design specifications to support PMO life cycle activities
  • Onsite Expectations: Position is 80% remote, 20% onsite

 

More jobs at Mediant Health Resources

Senior Business Analyst

posted on May 3, 2022

Full Stack Developer

posted on April 26, 2022