The Sr Enterprise Info Security Specialist serves as a subject matter expert for information security elements of the FISMA (Federal Information Security Management Act of 2002) and one of more IT compliance regulatory schemes (e.g. Health Insurance Portability and Accountability Act of 1996 (HIPAA), Health Information Technology for Economic and Clinical Health (HITECH) Act, Payment Card Industry Data Security Standard (PCI DSS), Gramm-Leach-Bliley Act (GLBA). Assumes additional technical and thought-leadership responsibilities spanning multiple IT security, risk management, regulatory compliance, and security operations. Establishes good working relationships with the Office of Grants and Contracts. Drafts and reviews information security policies and procedures. Determines and documents information security requirements and controls necessary for the protection of information based on NIST 800-53 and NIST 800-171. Prepares information security awareness and education materials, compliance reports, and other documentation. Stays informed about the latest security threats and vulnerabilities. Oversees FISMA related risk assessment, audit readiness, risk management, and vulnerability management activities spanning across multiple business units. Creates and maintains certification and accreditation related documentation artifacts (e.g. system security plans, risk assessments, plans of action and milestones, etc.)
Consumes and analyzes cyber threat intelligence to maintain situational awareness of the threat, vulnerability, and compliance landscape. Leverages this information to appropriately assess and mitigate cyber risk to the enterprise IT systems.
Ensures that appropriate operational, technical and managerial controls are implemented and operating appropriately to sustain the required security posture of Emory IT systems. Conducts vulnerability scans and coordinates remediation of discovered vulnerabilities. Implements and administers plans, processes, and procedures necessary to ensure compliance.
Provides guidance and assistance regarding information security and compliance matters, such as the interpretation of information security policies and requirements and/or their applicability to particular situations.
Represents Information Security to other organizations on IT risk and compliance related matters. Publishes regular status reports and submits to management. Prepares information security, compliance reports, and other documentation. Performs related responsibilities as required.
A bachelor's degree and five years of related IT experience including demonstrated technical expertise in multiple information security domains, project management skills, or an equivalent combination of education, training and experience. Excellent project management and team participation skills. Excellent written and verbal communication skills. Experience conducting large scale enterprise risk management and/or compliance efforts in a complex and/or highly distributed environment (preferably within a large healthcare provider or academic medical center environment).
•Expert level knowledge of FISMA, NIST 800-53 and NIST 800-171 requirements
•Experience conducting FISMA risk assessment and remediation efforts or equivalent audit experience
•Experience using enterprise IT governance, risk, and compliance tools (Archer, Lockpath, RSAM, etc.)
•Experience managing projects/initiatives within a large distributed environment
•Excellent organization, attention to detail, and documentation skills
•Experience conducting end user training
•Excellent written communication skills are critical to the success of this position
•Experience establishing interdepartmental relationships
Security certifications that are most relevant for this position include:
•GSEC – GIAC Security Essentials Certification
•GSNA – GIAC Systems and Network Auditor
•CISA – Certified Information Systems Auditor
•CISSP – Certified Information Systems Security Professional
•HCISSP – Healthcare Information Security and Privacy Practitioner
•CHPSE – Certified HIPAA Privacy and Security Expert
•CISM – Certified Information Security Manager
JOB DESCRIPTION: Technical and thought-leadership responsibilities for multiple information security disciplines such as incident response, vulnerability management, intrusion detection and prevention, threat hunting, security operations, security policy, and awareness/education. Oversees information security incident response activities, risk assessment and risk management activities, and vulnerability assessment and vulnerability management activities spanning University and Healthcare business units. Manages detailed network, operating system, database, and application vulnerability assessments and security configuration audits. Manages information security initiatives. Oversees operational tasks supporting information security functions such as intrusion detection and prevention, security event log analysis, management reporting, malware prevention and remediation, encryption, network segmentation, remote access, cloud security, and authentication. Supports, maintains, monitors, troubleshoots and enhances security infrastructure tools, methodologies, software, and hardware. Drafts and reviews information security policies, processes, and procedures. Prepares information security awareness and education materials and other documentation. Determines and documents information security requirements and controls necessary for the protection of information resources. Provides guidance and assistance regarding information security matters such as the interpretation of information security policies and requirements or their applicability to particular situations. Independently develops automated tools and methodologies in support of Information Security functions. Analyzes data from Information Security functions and provides reports and recommended response actions to Information Security management. Represents Information Security to other organizations on information security related matters, as assigned. Publishes regular status reports and submits to management. Performs related responsibilities as required.
MINIMUM QUALIFICATIONS: A bachelor's degree and five years of related IT experience including demonstrated technical expertise in multiple information security domains, or an equivalent combination of education, training and experience. Excellent team participation skills, as well as good written and verbal communication skills. Strongly preferred qualifications include knowledge of information security technologies, methodologies, and best practices in the domains of: security incident response, vulnerability assessment and management, intrusion detection and prevention, system administration (Windows, OS X, Linux, etc.), security administration of networks, operating systems, databases and applications, access control, encryption, firewalls and proxies, networking, security event log analysis, malware prevention and remediation, cloud technologies, programming/scripting, and risk assessment and management. Security certifications are a plus (e.g. SANS/GIAC, CISSP, CISA, CISM).