$100K — $150K *
At Harris Health System, we champion better health for our patients, their families and our community, by connecting them to an integrated healthcare system that provides high-quality healthcare. Harris Health focuses on the delivery of primary care, wellness and prevention services to the residents of Harris County, Texas, through its extensive network of inpatient and outpatient facilities. Harris Health is a proud recipient of the prestigious National Committee for Quality Assurance designation for its patient-centered medical homes. Harris Health's medical faculty and residents are provided by its nationally recognized medical school partners: Baylor College of Medicine; McGovern Medical School at The University of Texas Health Science Center at Houston (UTHealth); and The University of Texas MD Anderson Cancer Center.
The Information Security Engineer assists with the day to day information security operations and help with the implementation of the Information Security Strategic Plan to enforce HIPAA and PCI compliance. Responsibilities include the managing, monitoring and maintenance of information security devices such as; encryption technology, Intrusion Prevention System (IPS), Threat Detection tools, SEIM tools and web content filtering technology. Analyzes and creates reports based on information gathered from security technology and report to CISO on daily basis. Performs detailed information security assessments on Harris Health System information systems to ensure compliance with federal and state regulations. Assists with e-discovery, forensic and internal penetration testing. These information security assessments will include but are not limited to application reviews, access controls, network reviews, and regulatory and other compliance reviews. Other information security duties as assigned.
Education/Specialized Training/Licensure: Four (4) year degree in a technology related field or equivalent work experience. Knowledge of HIPAA Security rule, HITECH, Payment Card Industry (PCI), NIST standards, Sans top 20, ISO27000 series, investigating and documenting incidents, and compliance. (required)
CEH, GIAC certifications, Cisco security certification, or CISSP or CISM highly desirable or must be obtained within 6 months of accepting position. Specific vendor security certification can be considered.
Above Average Verbal (Heavy Public Contact) Exceptional Verbal (e.g., Public Speaking)
Languages: Writing /Composing (Correspondence/Reports)
Analytical, PC and Word Proc
TYPICAL DUTIES THAT MAY BE PERFORMED
1. Projects: Execute projects that are consistent with defined deliverables, schedule and budgetary requirements. Projects such as:
a. User Provisioning
b. Access control
c. Risk Management
d. Continuous monitoring of security environment
e. Security Operations
f. Encryption Technology
g. Other Security Related Projects as Assigned
Valid through: 7/9/2021