This position is responsible for performing all functions required to support day-to-day data security operations, including supporting and maintaining a broad suite of information security technologies, including monitoring compliance with IT security policy, and coordinating the investigation and reporting of security incidents. Plans designs, installs, and maintains security systems in support of security policies. Work with Information Technology staff and UConn Health constituents to assess risk and address security issues.
Director, Information Security
COMPREHENSIVE BENEFITS OFFERED:
Industry-leading health insurance options and affordability
Generous vacation and sick-time plans
Multi-channel retirement options (pension and match options)
Tuition waiver and reimbursement for employees and qualified family members
Quick commute access from I-84, Rte 9 and surrounding areas
State of the art facility and campus environments
Progressive leadership and educational development programs available
Schedule: 40 hrs per week, Mon - Fri, 8:00a.m. - 5:00p.m. with a hour unpaid meal break
Duties & Responsibilities:
Define and lead the implementation of and monitor security systems and controls for the protection of UConn Health critical technology and data resources
Monitor for and respond to anomalous network traffic behavior
Plans and designs securityarchitecture.
Implement security policies and standards, review application security, application access control and data safeguards
Design, evaluate and support the assessment and authorization processes to include documenting and validatingsecurity controls of new technologies, systems and devices
Perform integration work, including writing scripts and the development of automation around detection and remediation activities
Implement and operate vulnerability management and security log collection and monitoring tools, analyzing data from those tools and providing recommendations for security improvements to existing processes and technology
Perform penetration testing
Participate in and lead incident response efforts
Respond to internal and/or external reports, events and incidents
Performs other related duties as required
Knowledge, Skills & Ability:
Expert knowledge of TCP/IP, common protocols and standards
Substantial knowledge in one or more technical forensics tools
Knowledge of relevant State statutes and Federal regulations.
Excellent organizational and interpersonal skills.
Ability to identify signs of an intrusion or infection on a variety of systems
Ability to communicate effectively [oral and written].
Ability to critically evaluate internal and external factors and examine issues and plan with long-term perspective.
General Experience & Training:
At least 8 years of system/networksecurityexperience, including threat modeling, threat assessments, risk identification techniques and penetration testing. Demonstrated experience with malware remediation
Application and databasesecurityexperience, including code reviews.
Experience with planning, deployment and operation of large enterprise security management tools such as IDS/IPS, advanced anti-malware, DLP, encryption, anti-virus, firewalls, NAC, etc.
Experience with SIEM and event correlation, including log analysis and interpretation
Experience with Certificate Authorities, key management systems and encryption
Hands on experience with NMAP, vulnerability scanners, Kali, MetaSploit, Wireshark, Kismet
Considerable knowledge of HIPAA, PCI DSS, GLBA, FERPA and industry security standards
Bachelor’s degree in Computer Science or related discipline may be substituted for four years of the experience.
Bachelor’s degree in computer science or related discipline.
SANS GIAC, CISM, MCSE, PMP, ITIL certifications are a plus
Experience in an academic medical center.
May require after hours support.