Job description
Job DescriptionSr. Administrator, IS Security
About City of Hope
City of Hope is an independent biomedical research and treatment organization for cancer, diabetes and other life-threatening diseases.
Founded in 1913, City of Hope is a leader in bone marrow transplantation and immunotherapy such as CAR T cell therapy. City of Hope's translational research and personalized treatment protocols advance care throughout the world. Human synthetic insulin, monoclonal antibodies and numerous breakthrough cancer drugs are based on technology developed at the institution. AccessHope, a subsidiary launched in 2019 serves employers and their health care partners by providing access to City of Hope's specialized cancer expertise.
A National Cancer Institute-designated comprehensive cancer center and a founding member of the National Comprehensive Cancer Network, City of Hope is ranked among the nation's "Best Hospitals" in cancer by U.S. News & World Report and received Magnet Recognition from the American Nurses Credentialing Center. Its main campus is located near Los Angeles, with additional locations throughout Southern California, Arizona, Illinois and Georgia.
Job Description:
The Senior Risk Management Administrator is responsible for performing detailed risk assessments on new and proposed systems that will handle CTCA data. Will also be responsible for addressing alerts from all of IT Security's monitoring tools. This includes the enterprise logging, data loss prevention tools, and vulnerability scanning tools. They will be responsible for tracking and pursuing remediation on all items in the Risk Management Log. They will mentor the Risk Administrator with response to this material as appropriate: correcting technical issues, escalating application problems, escalating business process issues, or identifying false positives. They will be responsible for assessing and escalating issues as appropriate.
The position will participate in policy development, project management, and will be able to act as back-up for the IT Security Director.
Job Accountabilities
Performing detailed risk assessments upon all systems that are to contain CTCA data, whether on prem or cloud based. These risk assessments include guiding prospective partners through a risk questionnaire which covered numerous security topics and regulatory requirements. The assessments will be tracked, and reviewed on a regular basis, and updated as appropriate.
Administers the enterprise logging and data loss prevention tools so as to enable efficient identification of issues requiring escalation. Identify events as acceptable business practice, or a "false positive".
Assists with investigations requiring data from the enterprise logging, data loss prevention, and other security tools.
Participating in penetration testing, security audits, and investigations in support of business objectives, compliance, and best practices.
Knowledge and Skills
Detailed knowledge of HIPAA and PCI security requirements
A dvanced understanding of NIST security standards
Familiarity with applicable practices and laws regulating data privacy and protection
Advanced knowledge of current threat landscape, and the ability to stay current on risk issues
Advanced knowledge of cloud-based security issues
Advanced knowledge of application security best practices
Advanced knowledge of network security best practices
Advanced knowledge of endpoint and server best practices
Ability to identify and recommend compensating controls for identified security risks
Hands-on knowledge of data loss prevention systems, vulnerability scanners, centralized logging / SEIM tools, and other security infrastructure components
Superior communication skills, with the ability to translate security related issues to non-technical personnel.
Education/Experience Level
Associate's Degree in Computer Science or Computer Engineering is required; a Bachelor's Degree in Computer Science or Management is preferred.
Certified Information Systems Security Professional (CISSP) is preferred .
Cisco Certified Security Professional (CCSP) is desired.
Cisco and Microsoft Network certifications are preferred.
8+ years of IT experience; 5 of those years working in the area of Information Technology Security.
Experience performing in-depth security investigations is required
Experience with performing either security audits, or risk assessments is required.
Pay Range
$85,309.53 - $140,431.20
Placement within the identified pay range is based on individual and market factors including, but not limited to, experience, education, credentials (including licenses and certifications), geographic location, market competition, skill set (including market availability of required skills), assigned/anticipated job tasks, and level of responsibility. These factors are considered without regard to an individual's status as a member of any protect group pursuant to federal, state, and/or local law.
City of Hope's commitment to Diversity, Equity, and Inclusion
We believe diversity, equity and inclusion is key in serving our mission to provide compassionate patient care, drive innovative discovery, and advance vital education focused on eliminating cancer and diabetes in all of our communities. Our commitment to Diversity, Equity and Inclusion ensures we bring the full range of skills, perspectives, cultural backgrounds, and experiences to our work -- and that our teams align with the people we serve in order to build trust and understanding. We are dedicated to fostering a community that embraces diversity - in ideas, backgrounds, and perspectives; this is reflected in our work and represented in our people.
Visit: Jobs.cancercenter.com to begin your journey.
seankuhnke.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, seankuhnke.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, seankuhnke.com is the ideal place to find your next job.