|Preferred GIAC Certifications||GSEC|
Analyzes, reports, and responds to detected cyber incidents. Maintains system cybersecurity monitoring operations. Uses cybersecurity tools to proactively search for threats to systems or networks. Conducts network defense analysis and provides recommendations for improvements. Develops and maintains thorough, up-to-date knowledge of cybersecurity threats and incident response best practices.
Defines and develops security requirements using risk assessments, threat modeling, testing, and analysis of existing systems. Plans and designs security solutions and capabilities that enable the organization to identify, protect, detect, respond, and recover from cyber threats and vulnerabilities. Designs action plans for policy creation and governance, system hardening, monitoring, incident response, disaster recovery, and emerging cybersecurity threats. Develops security integration plans to protect existing infrastructure and to incorporate future solutions. Utilizes a variety of security information and event management (SEIM), data loss prevention (DLP), intrusion prevention systems (IPS), and other tools in designs.
Identifies and tests potential information and network or internet security vulnerabilities.
Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks. Supports and maintains security defense architecture.
Ability to identify, analyze and resolve moderately complex to complex problems / issues
ability to learn new skills quickly
Keen attention to detail
Can get to the "root cause" of problem quickly and begin problem resolution
Thinks logically with the flow of processes
Performs duties collaboratively, engendering cooperation rather that competition among fellow colleagues
Proactively research hardware / software market place trends in healthcare industry
Independently manages individual work efforts and assists with work efforts of others.
Demonstrates self-direction to manage single-person projects ((enhancement requests)) from inception through completion including developing, executing and monitoring work plan.
Contributes to the development of team goals and understands dept strategies.
Identifies process and performance improvement opportunities; contributes ideas and solutions to enhance team and departmental functions.
Actively promotes collaboration and strives to achieve team and organizational goals while assisting and coaching peers and seeking to learn from others.
Demonstrates ability and willingness to assume greater responsibilities. Embraces change, innovation sets an example for others.
Stays informed on current market trends and emerging technology developments that impact the team.
Understands complex/varied processes and multiple department needs.
Demonstrates commitment to learning by actively participating in department meetings and organizational forums, improvement efforts, training opportunities and career development goals.
Accepts responsibility for own actions and decisions. Does not make excuses for errors. Acknowledges and corrects own mistakes, following the Just Culture Model.
Demonstrates a commitment to service excellence, following IS Standards of Behavior, governance and performance management processes and coaching team members to do the same.
Pays attention to details. Completes work, which is thorough, complete and does not require assignment to be redone. Work is completed in a manner that accomplishes the desired results and exceeds standards of acceptability.
Remains aware of how processes and systems affect the organization, what is or isn't working as they perform work and deliver services.
Doesn't make assumptions. Asks questions about the processes even if (especially if) they've been in place forever. Examines data and metrics to truly define the problem.
Considers multiple alternatives to resolve work problems. Recognizes sources of available information and obtains and documents detailed facts.
Determines solutions with minimal assistance and makes effective decisions within scope of authority.
Seeks to understand data and trends and brings ideas forward to prevent issues from occurring in the future.
Understands the importance of and complies with incident and service request responsiveness and adherence to Service Level Agreement (SLA) requirements to minimize business disruptions and safety risks. Coordinates activities within and across teams.
Understands the risks and consequences that errors could have on patient care and/or organizational finances, participates in plans to mitigate risk.
Interacts with team members and customers in a courteous, respectful and reciprocal manner.
Develops effective working relationships with others.
Practices attentive and active listening.
Expresses thoughts and feelings openly with intent of making positive contributions to help the team/dept and customers.
Can identify and manage difficult situations with minimal support.
Demonstrates effective verbal and written communication.
Applies communication skills to facilitate mutual understanding in small and medium group settings (team meetings, presentations, project discussions).
Matches communication style to the message and audience.
Communicates proactively with customers, peers and management, with minimal assistance.
Understands and helps communicate shared vision, goals, objectives and values of team.
Promotes cooperation and commitment within the team by assisting and working collaboratively with others. Communicates strengths, shares expertise and draws upon other members skills to improve team performance.
Recognizes, values and supports other team member contributions.
Helps develop, respects and reinforces team processes.
Contributes to team decisions. Respects and actively supports team decisions once they are made.
Holds self personally accountable to meet or exceed team expectations.
Acknowledges and celebrates the achievements of team and teammates.
Bachelor's degree or equivalent work training and experience required
Major intermediate cyber security certification such as: CEH, CSIH, GCFA, GCIH, CAP, CISM, SSCP is required or must be obtained within one year of hire.
3 - 5 years' technical experience in cyber security
3 - 5 years' experience in a LAN / WAN environment, server engineering, security administration, or security risk analysis required.
Experience working with project teams to design and implement new solutions
Experience working in team-oriented, collaborative environment
Independently motivated to seek knowledge in areas pertaining to their current position
Self-educates and seeks knowledge from management of Vidant, Information Services environment and Vidant operations relevant to their position
Must be able to read a packet capture