Duties and Responsibilities:

• Responsible to keep updated in knowledge of IT security industry, including awareness of new or revised security solutions, threats and the development of new attacks.
• Provide security solutions or enhancements to existing IT processes or solutions to improve enterprise security.
• Assist in the maintenance a IT security program and security policies.
• Identifies potential threats, risks, and controls and makes recommendations to mitigate issues.
• Participate in the planning and design of enterprise security strategy, processes and procedures.
• Lead and assist with incident response activities.
• Manage the remediation and mitigation of security violations to determine if the network environment has been breached, assess the impact and preserve the evidence.
• Maintain and enhance the security education, training and awareness program for the organization.
• Create metric or dashboard reports for security control effectiveness using monitoring tools.
• Perform security risk assessments, share results and recommend a remediation approach.
• Analyze system performance for potential security problems. Prepares system security reports by collecting, analyzing and summarizing data trends.
• Assist in performing penetration tests and vulnerability assessment on internal applications and external facing websites.
• Collaborate with other Teams to ensure appropriate security incident management and threat response processes are followed.
• Perform root cause analysis and create reports based on outcomes of incident investigations.
• Create, deploy and manage a vulnerability management program, schedule, plan and policies.
• Expected to stay up-to-date on the latest intelligence, including hacker methodologies or the kill chain, in order to anticipate security breaches.

Qualifications & Skills:

• Bachelor’s degree in information security (or associated discipline) plus at least 3 years of experience working with vulnerability management; or equivalent combination of education and experience.
• Broad knowledge of networking, infrastructure, and application technologies, including SIEM (Security Incident Event Management) approach to log management.
• General understanding of PCI DSS, ISO 27001/27002, NIST 800-53, HIPAA Security Rules, COBIT or similar frameworks’ requirements and controls.
• Security certification is a plus (CISSP, CISA, CEH)
• Experience and effective participation in hunt, computer network defense, real-time analysis and incident response activities, to include ability to reconstruct events from network, endpoint, and log data
• Network technology and common protocols
• Network security
• Host security
• Malware (McAfee, Symantec, etc.)
• Work both independently and as part of a team at all levels and across all business units.
• Demonstrate an understanding of business processes, internal control risk management, IT controls and how they interact together.
• Demonstrate solid knowledge of information security risk and countermeasures.
• Specific technical knowledge in Office 365, firewalls, Linux, Internet technologies, Networking technologies and Encryption technologies.

Requisitos:

• Microsoft .Net
  • Language C# (1st) VB.net(2nd optional)
  • ASP.NETMVC, WEB API (WEB)
  • XAML (WPF, UWP) (Desktop App) Microsoft .Net
• SQL Server 2008+ (Database)
  • T-SQL Query Language
  • Table Design
  • Stored Procedure, Views, etc…

Requisitos:

• Experiencia en registros electrónicos de salud, operaciones clínicas y flujo de trabajo
• Experiencia desarrollando plantillas de EHR, documentos y análisis de flujo de trabajo
• Experiencia con programas de Medicare (por ejemplo, MU, PQRS, MACRA / MIPS, etc.)
• Experiencia con HEDIS y la medición del rendimiento
• Conocimiento en las regulaciones estatales y federales aplicables de la industria de la salud
• Excelentes habilidades de comunicación oral y escrita en inglés y español
• Fuerte organización, gestión del tiempo, habilidades analíticas y de resolución de problemas
• Habilidades de organización y manejo del tiempo
• Liderazgo, comunicación, educación y habilidades de asesoramiento