Job Description General Summary Responsible for developing, implementing, and maintaining security protocols and procedures to safeguard the medical system's digital assets and infrastructure while overseeing all aspects of information security within the organization. Coordinate tasks and risks to remediate with other departments, and stay abreast of emerging threats and technologies to ensure the organization's security posture remains robust. Work is performed under limited supervision. Direct report to the Director Information Security. Principal Responsibilities and Tasks The following statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all job duties performed by personnel so classified.
- Oversee the Security Operations Center and manage a team of Security Analysts responsible for reviewing, assessing, and triaging security events.
- Lead security incident response procedures and escalate incidents to appropriate stakeholders.
- Partner and share data with Risk Management and Engineering teams to improve UMMS Cybersecurity posture.
- Assure completion of remediation tasks associated with Threat Intelligence, Vulnerability Management, and Incident Response alerts.
- Coordinate team initiatives and projects and ensure completion of tasks.
- Review and update the Incident Response Plan and Standard Operation Procedure (SOP) on a continuing basis while seeking opportunities to create new SOPs.
- Develop and implement process for tracking key operational metrics.
- Establish comprehensive metrics and reporting to evaluate team performance to ensure goals and objectives are being met.
- Identify and resolve operational and performance gaps and obstacles; recommend/implement changes and improvements.
- Provide forward thinking technical expertise in current and emerging technologies, trends, and best practices.
- Mentor team members in the areas of Incident Response, Vulnerability Management, Threat Intel, Threat Hunting, and Forensics.
- Foster a culture of collaboration, problem solving, innovation, continuous learning, and a one team mindset.
- Mentor staff in both technical and soft skills to craft a team of highly competent, consistent, thoughtful, and customer-centric information security experts.
- Evaluate personnel effectiveness and develop/implement training programs to improve performance.
- Perform managerial functions including hiring, discipline, training and development, and prepare performance reviews in accordance with UMMS policies and procedures.
- Perform other duties as assigned.
Company Description Renowned as the academic flagship of the University of Maryland Medical System, our Magnet(r)-designated facility is a nationally recognized, academic medical center with opportunities across the continuum of care. Come join UMMC and discover the atmosphere where talents and ideas come together to enhance patient care and advance the science of nursing. Located in downtown Baltimore near the Inner Harbor and Camden Yards, you won't find a more vibrant place to work! Qualifications Education and Experience - Bachelor's degree in Computer Science, Information Technology, Information Security, or related field, or the equivalent combination of education, training, and experience. Master's degree preferred.
- Minimum 3 years' progressively responsible experience managing a Security Operations team.
- Minimum 5 years' experience working with a MSSP.
- Five 5 years' experience in managing enterprise projects and multi-disciplinary resources required.
- Experience with common information security management frameworks and best practices.
- Experience working in a healthcare environment preferred.
- Cybersecurity certifications such as CISSP, CISA, CISM, CEH, OSCP, or CHFI preferred.
Knowledge, Skills, and Abilities - Advanced knowledge of networks, operating systems, cryptography, preventive, detective, and offensive security solutions.
- Advanced knowledge and understanding of information security concepts, principles, protocols, tools, industry best practices and strategies.
- Demonstrated ability to successfully motivate and inspire team members to high performance levels.
- Proven ability to lead teams effectively, prioritizing requests, workload and establishing a goal-oriented work environment with clear and concise work procedures and productivity metrics.
- Effective skill presenting findings, conclusions, alternatives, and information clearly and concisely at all levels within the organization.
- Advanced analytical, conceptual thinking, planning, organizational, and problem-solving skills.
- Effective skill developing and maintaining collaborative working relationships with all levels of leadership, staff, and vendors.
- Keen sense of personal responsibility and accountability for delivering high quality work.
- Proven ability to respond to alerts and incidents after hours.
- Demonstrated ability to maintain professional growth and business affiliations to keep abreast of technical advances, vulnerabilities, and threats.
- Flexible, enthusiastic approach to work including a fervent desire to learn with the ability to adapt quickly to new systems and learning, understanding, and applying new technologies.
- Advanced verbal, written and interpersonal communication skills.
|