Cyber Security Engineer
University of Washington
Seattle, WA
Full-time
Engineering
Posted on April 13, 2019
Req #: | 166614 |
Department: | UW MEDICINE IT SERVICES |
Job Location: | Downtown Seattle, Harborview Medical Center, Health Sciences Center, Northgate, Other Location, Sand Point, Seattle Campus, South Lake Union, UW Medical Center |
Job Location Detail: | Primary work location is the IBM Building on the corner of 5th and Seneca in downtown Seattle |
Posting Date: | 04/12/2019 |
Closing Info: | Open Until Filled |
Salary: | Salary is commensurate with education and experience. |
Shift: | First Shift |
What are we looking for?
What are the perks?
For all of the specific details on these benefits and more, please click here.
UW Medicine’s Information Technology Services (ITS) department is a shared services organization that supports all of UW Medicine. UW Medicine is comprised of Harborview Medical Center (HMC), Northwest Hospital & Medical Center (NWH), Valley Medical Center (VMC), UW Medical Center (UWMC), UW Neighborhood Clinics (UWNC), UW Physicians (UWP), UW School of Medicine (SOM) and Airlift Northwest (ALNW). In addition, UW Medicine shares in the ownership and governance of Children’s University Medical Group and Seattle Cancer Care Alliance (a partnership between UW Medicine, Fred Hutchinson Cancer Research and Seattle Children’s). ITS is responsible for the ongoing support and maintenance of the infrastructure and applications which support all of these institutions, along with the implementation of new services and applications that are used to support and further the UW Medicine mission.
As one of the largest healthcare systems in the Puget Sound region, UW Medicine is facing many technical and security challenges driven by rapid growth in the size and complexity of its network of affiliated organizations and increasingly rigorous policy requirements in the areas of security, compliance and patient privacy. With simultaneous increases in the importance and central role of computing technology to healthcare delivery and the UW Medicine mission, it has become essential to evaluate, design and implement and/or configure IT security safeguards, controls and protection solutions as part of the IT services and solutions delivery process to reduce or eliminate security threats, risks and vulnerabilities from being introduced into the production environments through code, new and existing mobile devices, applications, enhancements, 3rd party suppliers, configurations and more.
As part of the ITS Information Security team, the Cyber Security Engineer (‘Engineer’) will assist in tracking known and emergent threats to UW Medicine information assets to support institutional threat awareness, risk assessments, threat detection and analysis, incident response, cyber security operations, and security education and awareness. This position also develops and delivers user training, security awareness programs, and security documentation such as policies, standards, and operating procedures. The Engineer utilizes a wide variety of threat sources including raw data, computer log information, written reports and bulletins, and collaborations with both internal and external partners to develop threat profiles for UW Medicine information assets. With knowledge of and experience with information security security best practices, the Engineer will integrate, monitor, and/or respond to information security threats and/or incidents and support digital forensic analysis, investigations, and investigative reporting, as needed.
This position will assist with implementing information security strategies in response to directives from Sr. Cyber Security Engineers and the Information Security Manager. This position will primarily support the organization’s threat mangagement and vulnerability management programs. This position will also collaborate with Cyber Security Analysts to ensure the success of team programs and initiatives. The incumbent must have strong interpersonal skills, problem-solving skills, a proven ability to adapt to change, and the ability to communicate process and technology ideas, solutions and recommendations across technical and non-technical management, teams, faculty and staff.
This position will require experience with engineering, testing, and implementing security controls and solutions as well as a working knowledge of healthcare and security industry best practice models, methodologies, and frameworks. This role will have a direct impact on UW Medicine’s ability to protect patient health information and private financial information while achieving and assuring security regulatory compliance. This position will be required to help advance team knowledge of healthcare security issues, concerns, and challenges associated with a multi-institutional and heterogeneous technical and academic environment and will provide recommendations related to reasonable and appropriate security solutions to Sr. Cyber Security Engineers and the Information Security Manager.
ITS implements, deploys, and manages highly complex system applications and applications to meet and exceed key IT initiatives that support UW Medicine entities, including HMC, NWH, VMC, UWMC, UWNC, UWP, SOM, and ALNW. The need to provide and deploy security engineering services is to ensure that appropriate and effective security controls, techniques, and solutions are identified and implemented ensuring confidentiality, integrity, and availability of sensitive data.
Additional applications and systems are supported through UW Medicine research affiliations such as the Fred Hutchinson’s Cancer Research Center, NIH and other grants, contracts, clinical affiliations, and other SOM activities; as well as medical training programs with other institutions such as the Veterans Administration and Madigan Army Medical Center. The Engineer is needed in order to meet federal regulatory requirements under HIPAA, ISO, PCI and other security standards, as well as to ensure the security of systems. Failure to meet regulatory requirements may result in fines, sanctions, loss of public credibility, and other business risks.
Responsibilities include:
Threat Detection & Incident Response (60%)
Security Consultation and Technical Services (30%)
Education and Outreach (10%)
What you’ll bring to the table: (minimum requirements)
2+ years of relevant Information Security experience must include:
The successful candidate will also have/possess:
Ideally, you’ll also have: (desired skills and experience)
What are some of the other tidbits that you might want to know?
Who are we and what do we do?
UW Medicine’s mission is to improve the health of the public by advancing medical knowledge, to provide outstanding primary and specialty care to the people of the region, and to prepare tomorrow’s physicians, scientists and other health professionals. Our staff not only enjoys outstanding benefits and professional growth opportunities, but also an environment noted for diversity, community involvement, intellectual excitement, artistic pursuits, and natural beauty.
The University of Washington is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, protected veteran or disabled status, or genetic information. To request disability accommodation in the application process, contact the Disability Services Office at 206-543-6450 / 206-543-6452 (tty) or click here to send an email.
The University of Washington is a leader in environmental stewardship and sustainability, and committed to becoming climate neutral.
#monster
The University of Washington is a leader in environmental stewardship & sustainability, and committed to becoming climate neutral.
The University of Washington is an equal opportunity, affirmative action employer. To request disability accommodation in the application process, contact the Disability Services Office at 206-543-6450 / 206-543-6452 (tty) or dso@uw.edu.