Senior Operations Engineer Information Security

Senior Operations Engineer Information Security

Position Summary

The Senior Security Operations Engineer operates and maintains the InfoSec team’s portfolio of vulnerability management, automation, and other authentication tools. Additional tasks include forensic recovery/support, event management, spam investigation, incident response, threat feed management, penetration testing, proactive defense, and security event management.  This role will focus heavily on operational and strategic level tasks, provide counsel and guidance to the junior level security engineers in the department, and guide other departments in the improvement of their security posture.  The Senior engineer also serves in an architectural capacity, providing the appropriate information and planning required for new technology and policy deployments.

Essential Job Duties

• Responsible for the daily duties associated with NYP’s Security Operations team including the extension of services provided to all of NYP’s campus and regional affiliates.
• Implements and supports the SIEM tool, to include the inclusion of data sources and any applicable monitoring agents.
• Implements and supports the scanning platform, vulnerability attack platform, privileged account management solution and other discovery tools as required.
• Performs penetration testing on all NYP managed systems and generates reports in order to help remediate any security findings.
• Implements and supports the Security event management platform to include all correlation and automation capabilities for security functions.
• Implements and supports web security platforms, the threat prevention system, and other network based sensors as required.
• Reviews daily threat feeds, host alarms, cloud based reporting, and similar information in order to proactively mitigate threats.
• Engages in threat hunting to actively search for and identify cyber threats that may have gone undetected
• Collects and disseminates reports, metrics, and other indicators of vulnerability management functions.
• Detonation of malware in test lab and interacting with EDR platform
• Password testing and cracking using various tools like Ophcrack
• Data Loss Prevention configuration and rule tuning for EDM
• Partners with the Security Engineering, Risk Management, and Security Operations Center teams in order to provide critical development and automation tasks in support of the groups mission.
• Partners with the Event and Incident Management team in order to take security event intelligence and produce actionable alarming for the purpose of proactive management of security incidents.
• Develops test plans, test data and testing schedules. Conducts unit and system tests to verify results of software solutions.
• Installs/performs in-house and vendor updates, in a timely and efficient manner in accordance with IS change control standards and procedures.
• May work in multiple phases of systems and applications analysis, and considers the business implications of the application of technology to the current business environment.

“May require occasional on-site presence; therefore, should live within a commutable distance.  No relocation assistance available.”

Required Qualifications 

• Bachelor’s degree in a technical or engineering discipline; or equivalent experience
• At least 6 years of technical experience in an IT related field
• Exposure to SIEM tools such as Splunk
• Knowledge of Data Loss Prevention systems and safeguarding sensitive data
• Extensive systems and network engineering experience related to Windows OS’s, MacOS, and Linux/Unix OS’s
• Extensive experience using the Kali Linux platform and toolsets
• Knowledge and experience with vulnerability management platforms such as Nexpose, Tenable, Qualys, etc
• Knowledge and experience with network security platforms including SIEM, firewalls, intrusion detection and prevention, web proxies and internet content filtering, and EDR/XDR.
• Knowledge of cryptography and encryption products, data loss prevention, mobile device management.
• Strong organization skills to prioritize work/life balance, and lead complex projects.
• Strong interpersonal skills and ability to interact with customers, senior level personnel, subordinates, and team members.
• Strong leadership skills to explain and guide peer business partners with vulnerability remediation.

Preferred Qualifications 

• CISSP
• CEH
• OSCP
• Functional and practical experience with scripting and automation techniques

Join a healthcare system where employee engagement is at an all-time high. Here we foster a culture of respect, diversity, and inclusion. Enjoy comprehensive and competitive benefits that support you and your family in every aspect of life. Start your life-changing journey today.

Please note that all roles require on-site presence (variable by role). Therefore, all employees should live within a commutable distance to NYP.

NYP will not reimburse for travel expenses.

__________________

• 2024 “Great Place To Work Certified”
• 2024 “America’s Best Large Employers” – Forbes
• 2024 “Best Places to Work in IT” – Computerworld
• 2023 “Best Employers for Women” – Forbes
• 2023 “Workplace Well-being Platinum Winner” – Aetna
• 2023 “America’s Best-In-State Employers” – Forbes
• “Silver HCM Excellence Award for Learning & Development” – Brandon Hall Group

NewYork-Presbyterian Hospital is an equal opportunity employer.

Salary Range:

It all begins with you. Our amazing compensation packages start with competitive base pay and include recognition for your experience, education, and licensure. Then we add our amazing benefits, countless opportunities for personal and professional growth and a dynamic environment that embraces every person. Join our team and discover where amazing works.

Salary : $133,000 - $188,000