Company Name: Hudson

Job Details

Location:

Job Description

The security engineer is responsible for the overall development, implementation and oversight of the security of my client’s business intelligence offerings. This position will work closely with all levels of the organization to ensure the maximum level of security consistent with organizational risk, information access requirements and business strategies. Evaluates existing systems and procedures, and makes recommendations for improvements as required. Specific responsibilities include: • Achieves system security operational objectives by contributing information and recommendations to strategic plans and reviews; preparing and completing action plans; implementing security standards in a customer-centric environment; executing periodic audits to determine system improvements; and implementing approved changes • Protects online assets by developing security strategies; directing system control development and access management, monitoring, control, and periodic evaluation • Prepares regular reports concerning the current state of security measures and makes recommendations for risk-reduction solutions and improvements as required • Ensures organization compliance with the security sections of Federal and State regulations including HIPAA, and privacy compliance • Works with internal and external auditors to response to needed requests, suggestions and security related findings • Works with senior operations management, risk managers, corporate compliance and in-house legal counsel to perform and maintain risk assessment concerning system down time, unwarranted system access and general risk levels • Determines and designs appropriate tests for all aspects of information security and disaster recovery. Activities include attempted “cracking” of system security, review of audit trails, and simulations of disaster recovery situations. Evaluates system effectiveness and makes change recommendations as necessary • Support the Technology teams comprising of Operations, Product development, Project Management, and Quality Assurance teams who are responsible for enhancing and supporting the Compass platform. Provides stewardship for development and implementation of security controls for Compass platform and related BI applications • Oversees user support issues regarding user access to all applications. Provide security staff counseling and oversight Required Skills and Experience: • Requires bachelor’s degree in computer science or related technology field • Requires 5 to 7 years of relevant computer systems experience, preferably in a healthcare setting • Required CISSP or CISA certification • Experience should include at least five years of experience in an information security position and three or more years in a customer support role with high customer satisfaction goals • Prior hands on experience in performing security event monitoring, correlation and investigations • Thorough knowledge of local area and wide area network architectures (LAN/WAN), and in-depth and current knowledge of data processing and programming concepts • Thorough knowledge of formal project management techniques and tools through training and direct experience (MS Project or other project scheduling tools) • Familiarity with current common paradigms for violating system integrity • Must have excellent interpersonal skills to effectively communicate with all levels of client personnel, vendors and IT personnel • Must possess the ability to deliver clear, concise communications and presentations. Must be able to train others quickly and thoroughly on key security concepts Preferred Background: • Work experience with a hosted application environment or supporting an ASP environment is a plus • Experience in a data warehousing environment • Working knowledge of the technologies like HTTPS session persistence, SSL, servlets/JSP’s, databases, SQL, JSP, JDBC, and XML parsing tools • GSEC certification from SANS/GIAC certifications are a plus • Experience with best practices frameworks such as ITIL, COBIT, etc. greg.mastel@hudson.com