This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
University of Washington - Los Angeles, CA
posted about 2 months ago
About the position
The Lead Cyber Security Engineer position at UW Medicine IT Services is a critical role responsible for overseeing operational activities related to cybersecurity. This position involves coordinating vulnerability assessments, incident response, and the implementation of security tools to protect patient care and critical operations. The role emphasizes leadership, mentorship, and collaboration within a values-based work environment, supporting the mission of UW Medicine.
Responsibilities
- Coordinate and oversee operational activities related to cybersecurity, ensuring standard services meet appropriate targets.
- Conduct vulnerability assessments, threat intelligence, and incident response activities with significant impact to business operations.
- Design, develop, and implement security tools and configuration baselines based on industry requirements and frameworks.
- Deploy tools to discover system and software vulnerabilities and validate risk assessments throughout the enterprise.
- Conduct incident response activities and digital forensics investigations on UW Medicine assets, including reporting.
- Engage with system owners for resolution of identified vulnerabilities and assist with risk acceptance.
- Utilize various threat sources to develop threat profiles for UW Medicine information assets.
- Prioritize and distribute workload among Cyber Security Engineers, managing day-to-day workflow and reporting status to management.
- Identify and propose service management improvements and provide mentorship to team members.
- Represent the team to customers, project managers, and organizational management as the manager's delegate.
Requirements
- Bachelor's degree in Computer Science, Information Technology, Engineering, or related field or equivalent combination of education/experience.
- 6+ years of information security experience, including Security Engineering, Security Analysis, Security Project Management, and Security Architecture.
- 1+ year of formal mentorship experience for technology professionals.
- Demonstrated experience leading team activities in designing, implementing, or maintaining security tools.
- Extensive experience in designing system security assessments, control analyses, and vulnerability assessments.
- Advanced understanding of security-related technologies and systems for protecting computer networks and information.
- Experience performing threat modeling and vulnerability reviews for architecture and risk-based design decisions.
- Experience recommending and designing custom signatures and configurations for monitoring platforms/tools.
- Advanced knowledge of information security regulations and standards such as NIST, ISO, HIPAA, and PCI DSS.
- Extensive knowledge of information security in healthcare and standards.
- Experience leading incident response and forensic investigations tasks.
- Proficiency with Python, PHP, Perl, or similar scripting languages.
Benefits
- 15 days of vacation your first year
- 12 days of sick time
- 1 personal holiday
- 11 paid holidays each year
- 100% matching, 100% immediately vesting 403(b)
