Overview Senior Cybersecurity Engineer, Cloud Access & Federation Services is responsible for designing, developing, scripting, configuring, testing and maintaining complex Cybersecurity and Risk management tools and technologies for M Health Fairview including Cloud Directories, Cloud Access Management, Federation and Single Sign On solutions. Successful candidate would possess expert level technical and engineering subject matter expertise in one or more Cybersecurity functional areas integrating variety of applications and IT systems into Cybersecurity tools. Operational duties include collaborating with peer engineers/analysts, analyzing, solution designing and leading integration efforts to meet business and functional needs. Candidate would possess deep technical and engineering and subject matter expertise in designing, implementing variety of applications integrating into enterprise Authentication Directories, Federation services using modern authentication protocols hosted on-premise and in cloud. Successful Senior Cybersecurity Engineers have exposure to variety of IT Security areas and bring deep subject matter expertise in one or more tools/areas leading team to accomplish automation, productivity gains and enhanced cybersecurity detection and response capabilities. Senior Cybersecurity engineer will take lead during production systems outage quickly troubleshooting technical issues and help resolve incidents limiting outage and/or contain the security risk. Responsibilities/Job Description - As a subject matter expert, successful candidate will be responsible to design, test and configure variety of web, mobile, cloud and/or desktop application integrations with variety of Cybersecurity tools and technologies.
- Deploy and support complex legacy and modern Cybersecurity systems helping minimize risk for M Health Fairview.
- Engineer solutions that integrate with complex IT and Patient Care related systems complying with standards, policies
- Collaborate with Enterprise Architecture and Security Architects, peer engineers to brainstorm, design and modernize existing integrations, solutions, security tools for highly available and disaster resilient solutions.
- Proactively seek opportunities to improve knowledge and technical expertise in multiple Cybersecurity areas
- As a subject matter expert, successful candidate will be responsible to design, test and configure variety of web, mobile, cloud and/or desktop application integrations with Authentication Directories, Access Management, SSO, Federation tools and related infrastructure and security components.
- Deploy and support complex legacy and modern authentication protocol based solutions such as Kerberos, LDAP, SAML, OAuth, WSFed etc.
- Engineer solutions that integrate with strong and risk-based authentication solutions not limited to MFA, Privileged Identity Management, Privileged Access Management solutions.
- Configure, deploy and maintain Office365 and associated cloud access tools including conditional access and risk-based authentication and authorization technologies, MAM/MDM such as Microsoft Intune, Azure MIP, Azure AD On Edge etc
- Support and maintain enterprise directories (like AD, e-Directory, Azure AD) for user authentication and authorization.
- Serve as security subject matter expert in assisting triage, investigation and remediation of assumed/potential/actual security incidents. Participate in Red/Blue/Purple teams as needed to help improve security posture of Fairview Health Services.
- Design, test, implement, maintain and support current and future complex information security technologies, processes and procedures. Lead the design and development of security controls that ensure the safety of information assets and protect from unauthorized access or intentional destruction.
- Lead complex projects related to information security regulatory compliance and the implementation and maintenance of all cybersecurity programs, processes and technologies. Assure the implementation of appropriate security configurations or re-configurations and work with appropriate teams to execute them as required.
- Foster a culture of improvement, efficiency gains and innovative thinking. Coach and mentor team members as needed. Adapt and embrace change and demonstrate flexibility in taking up and fulfilling other duties as assigned.
Qualifications Required Education - Bachelors degree in Computer Science, Computer Engineering, Technology Information Systems, Engineering or related technical discipline or combination of relevant experience/education.
Experience - 10+years ofcumulativeexperienceinengineering, developmentand/or support ofIT Systems
- 5+ years of experience in customization, deployment and support ofCybersecurity tools andtechnologies
- General knowledge of REST API and JSON batching and workflow automation
- Experience with server virtualization technologies (VMware or Microsoft Hyper-V)
- Ability to thrive in a sense-of-urgency environment and leverage best practices
- Proficiency in Agile project management methodology.
- Hands on experience with Microsoft Azure, Azure AD (AAD), AAD Connect, ADFS and Office 365
- Single Sign-On with enterprise class web access management tools such as Azure AD, NetScaler, SiteMinder
- General knowledge of REST API, Microsoft Graph REST API and JSON batching and workflow automation using tools like Microfocus Directory Resource Administration (DRA)
- Ability to author and edit scripts, such as PowerShell, VBS, or similar
- Experience with administering Azure Information Protection, Information Security Governance
- Experience in configuring MDM/MAM/Access policies using Microsoft Intune
- Experience with any Identity Management and Access Governance tools such as SailPoint, including custom development.
- Understanding of Microsoft online services and ability to assist with integration efforts.
- Expert ability to use Visio and infographic based visual aids in articulating solution design, integration, onboarding of applications.
Language & Communication Skills - Ability to effectively communicate both verbally and written with all levels within the organization
- Ability to explain technical concepts and adjust messaging based on the audience, including non-technical groups
- Ability to influence through outstanding interpersonal skills, collaboration, and negotiation skills
- Ability to work well within a team environment, as well as independently
Preferred Education - Bachelors degree or higher in Computer Science, Computer Engineering, Technology Information Systems Engineering or related technical discipline
Experience - Prior experience as Security Engineer/Senior Security Engineer/Senior Developer or Senior Analysts engineering and/or supporting cybersecurity tools & solutions for Healthcare organizations
License/Certification/Registration - Industry specific certifications TOGAF, CISSP, CISM, Azure Architect or equivalent
- Technical certificationsinany ofthefields Security technologies & tools, Development methodologies and frameworks, CloudandMobile applications
|
