Integris Health - Oklahoma City, OK
posted 19 days ago
Full-time - Manager
Oklahoma City, OK
Ambulatory Health Care Services
About the position
The Manager Cyber Fusion Center at INTEGRIS Health is a pivotal role within the security organization, responsible for leading the Security Operations Center (SOC) and transitioning it into a full Cyber Fusion Center. This position focuses on defending against cybersecurity incidents, analyzing and communicating incidents, and collaborating with various stakeholders to enhance the organization's security posture. The role involves overseeing incident response, forensics, and the development of strategies to close security gaps, ultimately aiming for a proactive security approach.
Responsibilities
- Lead the Security Operations Center in network monitoring, intrusion detection analysis, and threat detection.
- Develop formal incident reports and collaborate with agencies to gather and share intelligence.
- Direct security incident response activities and manage escalated situations during incidents.
- Provide technical guidance to responders and communicate investigation findings to stakeholders.
- Ensure the validation and maintenance of incident response plans and communicate potential threats to detection engineering functions.
- Conduct computer forensic analysis and collaborate with various departments during investigations.
Requirements
- Bachelor's degree in computer science or a related field.
- 8+ years of experience in a Security Operations Center, Security Incident Response, or Cyber Fusion Center.
- Practical knowledge of operational functions across Security Operations, Incident Response, and Cyber Forensics.
- Experience creating documentation such as CSIRT reports and communicating risks to executive leadership.
- Technical knowledge in network security, vulnerability security, endpoint protection, server security, and cloud security.
- Proficiency in at least one scripting language (e.g., Python, PowerShell).
- Strong documentation skills, especially with architecture diagrams.
Nice-to-haves
- EC-Council Certified Incident Handler (ECIH) certification.
- GIAC Certified Incident Handler (GCIH) certification.
- CREST Registered Intrusion Analyst (CRIA) certification.
- COMPTIA Cybersecurity Analyst (CySA+) certification.
- Certified Information Systems Security Professional (CISSP) certification.
- Certified Information Systems Auditor (CISA) certification.
- Certified Information Security Manager (CISM) certification.
Benefits
- Disability insurance
- Paid time off
- Family leave
