Security Engineer II
Endeavor Health · Skokie, IL · 7 mo ago
Information Technology$46.64–$72.29/hrFull-time
Job Summary
As the Security Engineer II at Endeavor Health, you will be responsible for enhancing and continuously improving the cybersecurity posture of the organization while maintaining a high level of vigilance to safeguard the organization’s data, systems, and resources. This role involves participating in the development and execution of the enterprise security strategy; managing and communicating security policies, procedures, and standards to application and business owners; conducting system reviews to ensure compliance with security requirements; executing risk management and governance tasks; and leading complex security incident investigation and response activities.
Responsibilities
- Lead security incident response and recovery processes and activities
- Design and implement security technologies and process as directed by leadership
- Manage, administer, monitor, and support 2-3 security applications
- Troubleshoot and resolve problems related to cybersecurity technologies
- Measure and report on enterprise security capabilities using automated and manual tools
- Develop, maintain, audit, and enhance enterprise security controls
- Develop security awareness training and communications collateral
- Respond to and assist with audits, assessments and compliance requests
- Assist with system-wide compliance of the HIPAA Security and Privacy rules, Payment Card Industry (PCI) standards, and other appropriate standards and audit requirements
- Conduct complex security incident reviews and investigations
- Execute all other duties as assigned
Requirements
- Education: Bachelor’s Degree, or equivalent, in a technical discipline, or a corresponding educational background with professional-level security certifications relevant to the role
- Certifications: One advanced, professional, or expert-level security certification
- Experience: Minimum three (3) years of mid-level Cybersecurity experience at an analyst or engineer level
- Previous experience leading, supporting, managing, and administering at least one application
- Previous experience leading security projects and initiatives
- Ability to work independently with minimal oversight on a broad range of security projects and initiatives
- Demonstrated in-depth knowledge of information security principles, practices, solutions, and capabilities
- Demonstrated understanding of advanced security incident investigation techniques
- Intermediate understanding of threats and risks
- Intermediate-level knowledge of network, application, and systems security architecture
- Experience with desktop, server, network, database, and application security controls
- Experience with common security testing methods and tool sets such as email security, data loss prevention (DLP), vulnerability management, IDS/IPS, EDR, anti-malware, and proxy tools
- Leadership and project management skills
- Proven communication, customer service, and organization skills
- Previous experience with HIPAA, NIST, and project management