Immediately Require Senior Cyber Incident Response Engineer Remote in USA

Job title: Senior Cyber Incident Response Engineer Remote

Company: Baylor Scott & White Health

Job description: JOB SUMMARY



The Sr. Cyber Incident Response Engineer will take on the lead cyber security incident responder role on the Baylor Scott & White Health cyber defense team. This role will be responsible for leading the incident response capabilities of the organization by developing and improving runbook procedures to mitigate risk and enhance incident response processes.



SALARY



The pay range for this position is $98,363 (entry-level qualifications) - $172,140 (highly experienced) The specific rate will depend upon the successful candidate’s specific qualifications and prior experience.



ESSENTIAL FUNCTIONS OF THE ROLE

• Conduct security investigations and lead security incident response in a cross-functional environment and drive incident resolution


• Actively call and lead security incident bridges and coordinate internal incident response efforts between operations teams, and managed security services


• Develop Incident Response initiatives that improve our capabilities to effectively respond and remediate security incidents.


• Expand SIEM program, ensuring log coverage, alert development, and process improvement.


• Partner with cyber threat intelligence, the vulnerability management team, and technology remediation groups to deliver shared outcomes that measurably improve our efficacy to detect, respond to, and remediate vulnerabilities.


• Support broader security operation initiatives both within the cyber defense team and within engineering and operation departments across the organization.


• Be a security liaison and enabler to Managed Service counterparts.


• Create and Improve Security Playbooks for a variety of incident and compromise types for all levels of engineers and stakeholders.

• Experience analyzing network and host-based security events.


• Experience with attacker tactics, techniques, and procedures.


• Experience with Windows and Linux Operating Systems.


• Knowledge of common software, operating systems vulnerabilities, and Unix/Linux.


• Understanding of cybersecurity organizational practices, operations risk management processes, architectural requirements, and vulnerability risk.


• Experience with controls or frameworks such as NIST 800-53, NIST CSF, MITRE ATT&CK.


• Knowledge of existing, emerging, and long-range issues related to cyber operations strategy, policy, and organization.

• Certified Information Systems Security Professional (CISSP) certification


• Certified Information Security Manager (CISM) certification


• GIAC Certified Incident Handler (GCIH) certification


• Experience in creating workflows and remediation plans for vulnerabilities identified.


• Incident Response experience in a healthcare environment.


• Experience using ServiceNow for SIR, CMDB, and/or ITSM functions.


• Contribution or development of policies and procedures.


• Experience participating in or leading security tabletop exercises.

• Immediate eligibility for health and welfare benefits


• 401(k) savings plan with dollar-for-dollar match up to 5%


• Tuition Reimbursement


• PTO accrual beginning Day 1

• EDUCATION - Bachelor's or 4 years of work experience above the minimum qualification


• EXPERIENCE - 5 Years of Experience

Apply Job!