BMC Software

Compensation

Full Description

POSITION SUMMARY: The Cybersecurity Engineer is responsible for implementation, operations, and support of Boston Medical Center security controls. Provides technical and administrative support of security components including firewalls, Antivirus platform, Privileged Access Management, VPN, Multi-factor Authentication. Provides technical support for other Engineering and Support teams. Documents and communicates problem resolutions to information technology personnel. Detects, identifies and resolves complex security issues. Analyze security systems and seek improvements on a continuous basis. Ensure compliance with information security standards, policies, and procedures. Monitoring networks and systems for security breaches or intrusions Monitors health statistics for security appliances. Responds to on-call issues relating to security breaches/failures. Develops support practices for PCs, peripherals, enterprise operating systems and software applications. Creates documentation and provides training for Help Desk and Systems Engineering Teams. Implement and support the information systems security controls, including all technical, physical and administrative controls pertaining to the computing environment. Working with Information Security Management to ensure a secure and operationally efficient computing environment. Also, acts as the technical resource to IT auditors, both internal and external. Working under the direction of Information Security Management, this role is responsible for ensuring that IT systems are engineered and designed in a secure manner. Furthermore, the role has additional responsibilities pertaining to developing, maintaining and troubleshooting computer network security systems; preventing misuse and malicious behavior and outlining constraints and restrictions in accordance with security policy. Position: Cybersecurity Engineer Department: Information Security Schedule: Full Time ESSENTIAL RESPONSIBILITIES / DUTIES: Work with Information Security and IT Infrastructure Management to develop, implement and monitor process & procedures in accordance with BMC IT Security policies. Contribute to the alignment of security governance. Understands security requirements, vulnerabilities and threats. Manage and maintain the security of IT systems and network architectures through documentation, reporting, and coordination. Work directly with internal IT staff and customers to establish and enforce IT security best practices, protection objectives, process improvements and effective IT security controls. Participate in designing and managing IT security strategies. Participate in system architecture reviews and provide recommendations for securing IT systems. Updates appropriate security infrastructure with timely patches as they become available from vendors. Ensure that solutions meet business objectives and establishing and maintaining a high level of users’ trust and confidence in ITS’ knowledge of and concern for users’ business needs. Research and educate oneself of industry best practices in risk management techniques and integrating new methods and tools. Continuously looking for ways to provide enhancement to existing security services including researching, designing, planning, scheduling, and implementing new security technologies into our current environment. Recommends security enhancements to management. Performs other duties as assigned or as necessary. Adheres to all of BMC;s RESPECT behavioral standards (The above statements in this job description are intended to depict the general nature and level of work assigned to the employee(s) in this job. The above is not intended to represent an exhaustive list of accountable duties and responsibilities required). JOB REQUIREMENTS EDUCATION: Bachelor’s degree in Computer Science, Engineering, or related discipline required; equivalent experience acceptable. CERTIFICATES, LICENSES, REGISTRATIONS REQUIRED: None required. Technical security certifications from Sans pertaining to relevant job duties. Example, GSEC, GCIH, GCFA, CEH or CISM, etc. strongly preferred. EXPERIENCE: 2-3 years of Information Security related experience is required for this position. Experience with Enterprise Microsoft, and Networking infrastructures. Demonstrated experience with Enterprise Security technologies such as intrusion prevention, vulnerability management, endpoint protection, systems configuration and operations management. KNOWLEDGE, SKILLS & ABILITIES (KSAs): Ability to translate complex security requirements into sustainable security architectures. Excellent communications skills including facilitating presentations. Strong implementation, requirements/process analysis, conceptual and detailed design, configuration, testing. Excellent analytical skills and the ability to define problems, collect data, establish facts, and draw conclusions. Excellent organization skills; someone who thrives in a dynamic and ever-changing environment. The ability to express issues and communicate well with various vendors and their operations personnel. A strong understanding of Internet fundamentals. Ability to prioritize projects Works and manages projects of moderate to advanced complexity under minimal supervision Ability to multitask and shift priorities when necessary Compensation Range: $66,500.00- $96,500.00 This range offers an estimate based on the minimum job qualifications. However, our approach to determining base pay is comprehensive, and a broad range of factors is considered when making an offer. This includes education, experience, skills, and certifications/licensures as they directly relate to position requirements; as well as business/organizational needs, internal equity, and market-competitiveness. In addition, BMCHS offers generous total compensation that includes, but is not limited to, benefits (medical, dental, vision, pharmacy), discretionary annual bonuses and merit increases, Flexible Spending Accounts, 403(b) savings matches, paid time off, career advancement opportunities, and resources to support employee and family well-being. NOTE: This range is based on Boston-area data, and is subject to modification based on geographic location. Equal Opportunity Employer/Disabled/Veterans According to the FTC, there has been a rise in employment offer scams. Our current job openings are listed on our website and applications are received only through our website. We do not ask or require downloads of any applications, or “apps” job offers are not extended over text messages or social media platforms. We do not ask individuals to purchase equipment for or prior to employment. Working at Boston Medical Center is more than a job. It’s a chance to make a difference as part of our mission to provide exceptional and equitable care to all. As a nationally-recognized leader in health equity, nursing, initiatives to combat climate change, and many other areas, BMC is dedicated to improving the health of our community in Boston and beyond. BMC’s mission to provide exceptional care without exception extends to our employees, and we have been recognized as a top employer and best place to work. A strong sense of teamwork and support for our staff are the bedrock of BMC, as we know that we can only provide exceptional care to patients when our staff are cared for too. Boston Medical Center is an equal employment/affirmative action employer. We ensure equal employment opportunities for all, without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity and/or expression or any other non-job-related characteristic. If you need accommodation for any part of the application process because of a medical condition or disability, please send an e-mail to Talentacquisition@bmc.org or call 617-638-8582 to let us know the nature of your request. Boston Medical Center participates in the Electronic Employment Verification Program. As an E-Verify employer, prospective employees of BMC must complete a background check before beginning their employment at the hospital. BMC requires all staff to be vaccinated against COVID-19 and flu, as well as receive a booster dose of the COVID-19 vaccine. According to the FTC, there has been a rise in employment offer scams. Our current job openings are listed on our website and applications are received only through our website. We do not ask or require downloads of any applications, or “apps” job offers are not extended over text messages or social media platforms. We do not ask individuals to purchase equipment for or prior to employment. To avoid becoming a victim of an employment offer scam, please follow these tips from the FTC: FTC Tips