Monitor alerts from SIEM and events from security monitoring tools and identify potential security incidents and threats
Prioritize and triage alerts to determine patterns of cyberattacks
Collaborate with IT teams to remediate security concerns
Conduct security investigations and forensic analysis
Write Standard Operation Procedures (SOP) and participate in the improvement of existing workflows
Operate the vulnerability management platform and inform system administrators of vulnerabilities that need remediation
Operate security tools and identify opportunities to improve controls while sharing knowledge with colleagues
Follow up with ongoing Security Operations tasks
Provide 24/7 support through an on-call scheduling rotation
Company Description Renowned as the academic flagship of the University of Maryland Medical System, our Magnet®-designated facility is a nationally recognized, academic medical center with opportunities across the continuum of care. Come join UMMC and discover the atmosphere where talents and ideas come together to enhance patient care and advance the science of nursing. Located in downtown Baltimore near the Inner Harbor and Camden Yards, you won't find a more vibrant place to work!
Qualifications
Education and Experience
Bachelor's Degree in computer science, health, science, business field, Information Technology or an equivalent level of professional experience required. OR Master's degree preferred.
Additional Certifications may be required. CISSP, CISA, CISM, CGEIT, CRISC, CHC, CHPS, CIPP, PMP, ITIL v3 preferred
Five (5) years in Information Technology related experience
Three (3) or more years' experience in IT security
Minimum 7 year of Security Operations experience
Minimum 7 years of experience with Splunk
Minimum 5 year of experience with incident response
Minimum 5 years of experience with vulnerability management
Minimum 5 year of experience with Next-Generation Antivirus products
Minimum 5 year experience working with a MSSP
Additional Information All your information will be kept confidential according to EEO guidelines.