How you move is why we're here. ®Now more than ever.Get back to what you need and love to do.The possibilities are endless... Now more than ever, our guiding principles are helping us in our search for exceptional talent - candidates who align with our unique workplace culture and who want to maximize the abundant opportunities for growth and success. If this describes you then let's talk! HSS is consistently among the top-ranked hospitals for orthopedics and rheumatology by U.S. News & World Report. As a recipient of the Magnet Award for Nursing Excellence, HSS was the first hospital in New York City to receive the distinguished designation. Whether you are early in your career or an expert in your field, you will find HSS an innovative, supportive and inclusive environment.Working with colleagues who love what they do and are deeply committed to our Mission, you too can be part of our transformation across the enterprise.
Emp StatusRegular Full time
Work ShiftCompensation RangeThe base pay scale for this position is $124,000.00 - $189,250.00. In addition, this position will be eligible for additional benefits consistent with the role. The salary of the finalist selected for this role will be determined based on various factors, including but not limited to: scope of role, level of experience, education, accomplishments, internal equity, budget, and subject to Fair Market Value evaluation. The hiring range listed is a good faith determination of potential compensation at the time of this job advertisement and may be modified in the future.
What you will be doingLead Security Engineer Full-TimeOvertime:Hospital for Special Surgery is seeking a Lead Security Engineer, Detection & Response ( Lead Security Engineer ) to join our IT Cyber Security team. You are passionate about cyber security, love to solve complex problems, and thrive under pressure. You will be responsible for protecting our critical information assets and leading the team through the incident response lifecycle. The Lead Security Engineer reports to our Assistant Director, Security Engineering & Operations.You are a highly technical engineer who understands the latest attack vectors, emerging threats, and exploits. You are often the first among your peers to learn about the latest zero-day vulnerabilities. You are energetic, extremely well-organized, enjoy being the incident commander, and have an attention to detail.Position Activities
- Lead and mentor a team of security engineers and oversee daily operational tasks
- Act as incident commander and lead the response to critical security incidents, threats, and vulnerabilities, coordinating cross-functional teams to resolution
- Demonstrate strong composure while managing incidents with a balance of urgency, intensity, and focus
- Conduct threat monitoring and analysis using various threat detection, investigation, and responsory (TDIR) capable tools, such as security information and event management (SIEM) and extended detection and response (XDR) platforms
- Improve and automate internal capabilities for identifying, investigating, and responding to security events by developing scripts to drive efficiency
- Contribute to the creation and maintenance of incident response playbooks
- Communicate incident details clearly and concisely to key stakeholders, both technical and non-technical, in written and verbal forms
- Hunt for malicious activity and partner with other IT teams to provide incident support and mitigation assistance
- Document formal, technical incident reports for consumption by senior leadership
- Plan and participate in incident response tabletop exercises and cyber ranges
- Create lessons-learned/post-mortem reports and lead incident debriefing discussions
- Participate in on-call rotation
Qualifications:
- At least six years of experience as a technical security practitioner with experience in incident response, malware analysis, host-/network-based forensics, and network traffic analysis
- At least one professional technical security certification, such as SSCP, SANS GIAC, CompTIA, etc.
- Strong security knowledge in Windows, AWS, Azure
- Experience monitoring networks, SIEM systems, and tools
- Proficiency with Python or PowerShell scripting languages for automation
- Strong working knowledge with network and security technologies such as firewalls, IDS/IPS, etc.
- Experience configuring and utilizing vulnerability assessment technologies
- Proficient with leading security investigations with privacy implications (i.e., HIPAA)
- Experience with report writing, investigational techniques, and communicating to larger audiences
- Strong, demonstrated ability to establish rapport, trust, and confidence in relationships with cross-functional teams
Preferred Experience- Bachelor's degree in computer science, cyber security, information systems/management, or a related field
- Two or more professional technical security certifications or a management security certification such as CISSP or CISM
- Experience in the healthcare industry
Skills and Abilities
- Strong decision-making capabilities with a proven ability to weigh the relative costs and benefits of potential actions and identify the appropriate one
- An ability to effectively influence others to modify their opinions, plans, or behaviors
- An understanding of organizational mission, values, goals, and consistent application of this knowledge
- Strong problem-solving, critical thinking, and troubleshooting skills
- Ability to deliver under tight deadlines and work off-hours as needed
- Must be able to work in a very demanding and high-pressure environment
Non-Discrimination PolicyHospital for Special Surgery is committed to providing high quality care and skilled, compassionate, reliable service to our community in a safe and healing environment. Consistent with this commitment, Hospital for Special Surgery provides care, admits, and treats patients and provides all services without regard to age, race, color, creed, ethnicity, religion, national origin, culture, language, physical or mental disability, socioeconomic status, veteran or military status, marital status, sex, sexual orientation, gender identity or expression, or any other basis prohibited by federal, state, or local law or by accreditation standards.