Information Security Specialist
The Information Security Specialist is the front-line of defense of CCM networks, protecting information from unauthorized access and violations by ensuring information systems are in compliance with current security regulations and governing policies. This position will provide continual reporting of Active Directory account auditing, monitor account de-provisioning, and insure correct assignment of CCM Security Groups and Distribution Groups and monitoring VPN access. This position will work closely with the CCM Network Engineer to serve as a secondary resource for monitoring, maintaining, and configuration of the firewall and network switches. This individual will also work with vendor partners to perform vulnerability assessments, penetration testing, and risk assessments. They will also facilitate technology audits by answering questions and/or working with others to determine appropriate responses that support the Christian Care Ministry mission.
Essential Job Duties & Responsibilities
Define access privileges, controls and resources
Provide quarterly reporting on Active Directory account de-provisioning
Provide quarterly reporting of security and distribution group membership
Maintain detailed list of each positions security/distribution group default assignment
Work closely with the Network Engineer and serve as the secondary resource in their absence
Monitor, maintain and configure network equipment at the direction of the Network Engineer
Identify abnormalities and report violations
Work with security vendors and/or auditors to perform security assessments, security audits, penetration tests and information gathering
Work with other teams to identify and eliminate security weaknesses in workstations, network and servers
Establish and maintain IT Compliance and Information Security framework, information security and risk management policies, standards and guidelines
Strictly adhere to and enforce system security policies while following all company standards. Must comply with applicable laws and regulations, including but not limited to: banking laws, PCI/PHI and HIPAA regulations
Monitor internal control systems to ensure that appropriate information access levels are maintained
Create, test and implement annual Disaster Recovery plan
Train staff on network and information security procedures
All other duties as assigned
Essential Skills & Abilities
Experience with the security needs and compliance requirements of financial and healthcare institutions
Strong knowledge of networking protocols and solid experience reducing security risks including experience with configuring routers, firewalls and other network appliances to meet functional and security constraints
Ability to work as part of a multidisciplinary team and collaborate with those in different disciplines
High level of interpersonal and verbal communication skills
Ability to read and interpret documents such as safety rules, operating and maintenance instructions, and procedure manuals
Ability to write routine reports and correspondence
Ability to speak effectively with members, providers, and/or associates of the organization
Ability to apply common sense understanding to carry out instruction furnished in written, oral or diagram form
Ability to deal with problems involving several variables in standardized situations
Core Competencies/Demonstrable Behaviors
Collaborates – builds partnerships and works collaboratively with others to meet objectives. This role requires a high level of internal customer interaction to meet objectives
Manages Conflict – handles conflict situations effectively.
Interpersonal Savvy – relates openly and comfortably with a diverse group of people. Must be able to communicate effectively and build engagement across all audiences
Drives Results – consistently achieves results, even under tough circumstances and tight deadlines.
Situational Adaptability – adapting approach and demeanor in real time to match the shifting demands of different situations.
Courage – ability to have tough conversations and deliver accurate advice and decisions regardless of risk or potential criticism
Education and/or Experience
Bachelor’s degree in Computer Science, Information Systems, Cyber Security or related field with 2-4 years’ progressive experience in computing and information required
CCNA (Cisco Network Associate) certification preferred
CCENT (Cisco Certified Entry Networking Technician) certification preferred
CISA (Certified Information Systems Auditor) certification preferred
Please complete form at https://boards.greenhouse.io/christiancareministry -to apply for this job directly - mention CFEC.org job posting.