Cybersecurity Engineer II

Make a difference. Be happy. Grow your career.

The Role

​​The Cybersecurity Engineer II is responsible for providing daily operational information security support to the Nordic Global client’s enterprise. Support cybersecurity initiatives throughout the enterprise. Act as a resource for Nordic Global client’s local system markets, facilities, departments and units on technical cybersecurity matters. This position will work closely with Cybersecurity teammates, the Infrastructure Services staff, Internal Audit department and local system security leads in order to accomplish their tasks.

Maintain the organization’s identity security platforms to ensure cybersecurity resilience. Conduct and document investigations of suspect or potential malicious activity and policy violations throughout the Nordic Global client’s enterprise, including audits of complex computer applications and technological solutions.

Recognize security risks and make appropriate recommendations to suitable Nordic Global client’s governance body for addressing them. Identify the types and quantity of information/evidence needed to complete assigned tasks, how to efficiently obtain such information, analyze it within the context of the cybersecurity objectives, and formulate appropriate subsequent actions and recommendations. Consistently document relevant facts and information to support testing and conclusions so others can follow the logic and methodology. Analyze and recommend secure technical solutions for network/system connections to individuals, contractors, vendors and business partners.

Key Responsibilities

• Manage defenses against unauthorized activity within computer networks, including monitoring, detection, analysis (such as trend and pattern analysis), and response and restoration activities

• Support data loss prevention configuration, security information and event management configuration and administration.

• Ensure confidentiality, integrity and availability of patient care systems.

• Work effectively with others in the Information & Technology organization, operations in support of security policies and standards.

• Participate in rotating on-call schedule.

• Support security architecture review. Support collaborative activities with cybersecurity teams and government partners.

• Support tuning of cybersecurity tools and proactive threat-hunting requiring knowledge of network address translation, packet analysis, TCP three-way handshake, IPV6, IPV4, TCP-IP and UDP, and troubleshooting analysis.

• Complete technical documentation such as standard operating procedures for cybersecurity and identity security tools, including troubleshooting measure and incident response playbooks.

• Work with Network Operations Center and Security Operation Center to ensure security measures are consistent with network architecture and participate in projects to strengthen organizational cybersecurity resilience.

• Travel 10% of the time to support clinical identity security tools and ensure secure, efficient system workflows.

• Support cybersecurity architecture to include defense in-depth designs for network security monitoring continuous security monitoring to proactively detect and prevent advanced persistent threats, ransomware, and data exfiltration.

• Complete reverse malware engineering analysis and identify TPP’s for internal and external threats.

• Support after hours’ system tuning configuration changes in compliance with the client’ and Nordic Global change management policy

Skills and Experience

• 5+ years’ relevant work experience in information technology, information security and identity security.

• Experience problem solving and troubleshooting in a technical infrastructure.

• Ability to communicate clearly and present security findings with technical staff as well as non-technical colleagues.

• Excellent communication skills to effectively annotate findings in both written and oral form.

• Experience working in a large healthcare organization. Knowledge of regulatory compliance and risk management frameworks PCI-DSS, HIPAA, HITRUST, SOC 2 Type 2, NIST SP 800-30, 53, 37, 115

• Strong customer service orientation

• Experience working in a team-oriented, collaborative environment

• On-call availability 24/7 as part of a rotation schedule

• Experience with two-factor authentication, privileged access management and remote access is necessary.

Certifications Required

• CISSP, CISM, SSCP, Security+ (preferred)

• Similar vendor-specific certifications, advanced degree coursework and/or equivalent competencies are preferred.

Education and Experience Requirements

• Bachelor's degree and 5 years of related experience, a Master's degree and 3 years of related experience, or 8 years of related experience and no degree.

Nordic is an equal opportunity employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, marital or veteran status, or any other protected status under applicable federal, state, or local laws. We encourage individuals of all backgrounds to apply, including women, minorities, individuals with disabilities, and veterans.