IT Security Engineer II - Identity and Access Management

Nevada System of Higher Education•Skokie, IL

4d•$47 - $72•Hybrid

About The Position

As the Security Engineer II at Endeavor Health, you will be responsible for enhancements and continuous improvement of the cybersecurity posture of the organization while maintaining a high-level of vigilance to safeguard the organization’s data, systems, and resources. This role involves participating in the development and execution of the enterprise security strategy; managing and communicating security policies, procedures, and standards to application and business owners; conducting system reviews to ensure compliance with security requirements; execution of risk management and governance tasks; and leading complex security incident investigation and response activities. The Security Engineer II will also design and implement security controls for various applications, devices, and systems; oversee security for internal and external systems; and mentor junior staff. Individuals should be proficient in using advanced security tooling. Responsibilities extend to conducting compliance audits; delivering cybersecurity projects; and ensuring alignment with HIPAA, PCI, and other applicable laws, regulations, and standards. This hybrid role, which may include a 24/7 on-call support rotation, requires excellent leadership, project management, and communication skills. To be successful in this role, you will be expected to stay up to date on the latest solutions and technologies and advocate for the adoption of security and architecture best practices for the enterprise

Requirements

Bachelor’s Degree, or equivalent, in a technical discipline, or a corresponding educational background with professional-level security certifications relevant to the role.
One advanced, professional, or expert-level security certification
Minimum three (3) years of mid-level Cybersecurity experience at an analyst or engineer level.
Previous experience leading, supporting, managing, and administering at least one application.
Previous experience leading security projects and initiatives

Responsibilities

Conduct complex security incident reviews and investigations.
Lead security incident response and recovery processes and activities.
Design and implement security technologies and process as directed by leadership.
Manage, administer, monitor, and support 2-3 security applications.
Troubleshoot and resolve problems related to cybersecurity technologies.
Measure and report on enterprise security capabilities using automated and manual tools.
Develop and maintain security policies, standards and standard operating procedures.
Socialize security strategies, standards, policies, procedures, communications, and awareness efforts with IT and business partners.
Participate in reviews of new or existing systems to ensure security requirements are satisfied, including performing various types of risk and impact assessments.
Develop, maintain, audit, and enhance enterprise security controls.
Develop security awareness training and communications collateral.
Respond to and assist with audits, assessments and compliance requests.
Assist with system-wide compliance of the HIPAA Security and Privacy rules, Payment Card Industry (PCI) standards, and other appropriate standards and audit requirements.
Participate in an on-call rotation with peers to address any incidents as they are assigned.
Execute all other duties as assigned.