Cyber Security Engineer

The Cyber Security engineer position will support multiple security initiatives involving design and implementation of different cyber security initiatives. This position will frequently collaborate with Cybersecurity Management and provide guidance and direction for the Cybersecurity program. Provides best solutions to identified needs, meeting specific operational and business objectives, technology capabilities, and human resource requirements. Responsible for interactions with business users, vendors, project managers, design architects and technology managers to assess, remediate, and deploy information security, DMZ security, and networking technology throughout the UH enterprise network. Maintains and fosters the ongoing service relationships throughout the organization

What You Will Do

• Collaborates with the Cybersecurity, network, server & data center teams to assess the current infrastructure and formulate a plan to manage all information security DMZ and network technologies.
• Reviews the firewall designs and configurations, Network Design document, validates its implementation, and produces an as-built enterprise network diagram.
• Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases, and Web-based security.
• Assess potential systems and process vulnerabilities to determine security infrastructure requirements.
• Identify security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives by attempting to breach system security.
• Perform penetration testing and source code review. Document and report system vulnerabilities to internal information security department in order to resolve or patch the weakness.
• Test strength of information security processes, firewalls, and encryption of data.
• Research security trends and new methods and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach.
• Recommend changes to enhance systems security and prevent unauthorized access.
• Schedules upgrades and collaborates with security, server, and network architects on security and network optimization.
• Recommends, reviews, tests, schedules and implements upgrades (i.e. IOS upgrades, patches).
• May identify risks for internal or external security systems (e.g., cloud services).
• Recommend and implement changes to enhance systems security and prevent unauthorized access. Research security trends, new methods, and techniques used in unauthorized access of data to preemptively eliminate the possibility of system breach.
• Provide guidance and direction on best practices for the protection of information. May oversee internal or external systems security (e.g., cloud services).
• Interacts with business users and vendors to identify and define requirements and expectations of new and existing network systems.
• Collaborate frequently with the Cybersecurity Architect to meet design requirements
• Performs on-call service rotation; provides 24 x 7 production support on a rotating basis.
• Performs occasional night/weekend work as required due to environmental constraints.

Additional Responsibilities

• Performs other duties as assigned.
• Complies with all policies and standards.
• For specific duties and responsibilities, refer to documentation provided by the department during orientation.
• Must abide by all requirements to safely and securely maintain Protected Health Information (PHI) for our patients. Annual training, the UH Code of Conduct and UH policies and procedures are in place to address appropriate use of PHI in the workplace.