Security Engineer II

Security Engineer II

Remote

Company Overview: AMSURG is an independent leader in ambulatory surgery center services, operating a network of more than 250 surgery centers nationwide. In partnership with physicians and health systems, the organization delivers high-quality care for patients across a diverse spectrum of medical specialties, including gastroenterology, ophthalmology and orthopedics. To learn more about AMSURG, visit www.amsurg.com.

POSITION SUMMARY:

The Security Engineer II is required to lead, develop and maintain an extensive understanding of services provided by AMSURG and to develop relationships throughout the organization to assist Information Security in accomplishing its goals for the company. The Security Engineer II implements policy controls as well as guide remediation of threats. This position will also assess vulnerabilities and IT controls for AMSURG. A Security Engineer II strives to enforce security best practices, policies, standards and guidance to ensure the safeguard of AMSURG’s proprietary data, physical infrastructure and resources from internal and external threats. 

Work Schedule: This is a Remote First role.

ESSENTIAL RESPONSIBILITIES:

• Define and execute vulnerability assessments of operating systems, applications, databases and network infrastructure components to detect, enumerate and classify major vulnerabilities for performing trend analysis and reporting to Enterprise customers through the use of vulnerability assessment tools and methodologies.
• Investigate intrusion detection events by monitoring, analyzing and reporting on all network and application communication specific protocols for unwanted manipulation to systems, malicious network traffic, network attacks against vulnerable services, data driven attacks on applications, host based attacks or unauthorized access to sensitive data.
• Collaborate and lead with the design, architecture and implementation of the risk management program utilized to assess and measure the physical, administrative and technical controls of the ambulatory surgery center environment.
• Assist with incident handling by detecting, analyzing and performing remediation on attacks that deny the use of authorized applications, networks or systems, malicious entities that infect single or multiple hosts, unauthorized access without permission to application, data, networks, systems or other resources, inappropriate usage that violates acceptable use policies or multiple components by assisting constituents that consist of enterprise legal staff, and/or Compliance.
• Review the results from auditing of applications, operating systems and networks to provide a measurable technical assessment that includes interviewing staff personnel, performing security vulnerability scans, reviewing access controls or analyzing physical access to ensure availability, confidentiality and integrity to help the organization meet internal and external regulatory compliance.
• Demonstrate advanced security knowledge and experience on technologies and methodologies as it relates to operating systems, firewalls, proxies, access controls, encryption, networking, programming/scripting, auditing, vulnerability assessments, intrusion management and operations management to assist the IT team with effective research, data gathering, analysis, metrics reporting and communications.
• Provide guidance using specialized knowledge and toolsets to operational teams during enterprise wide crisis scenarios, e.g. large-scale production service outages, outside of the routine change management process.

QUALIFICATIONS: 

To perform this job successfully, an individual must be able to perform each essential responsibility satisfactorily.  The requirements listed below are representative of the knowledge, skills and/or abilities required.

• Understanding of Security Methodologies
• Understanding of cloud solutions
• Experience with automation and scripting of applications and systems
• Experience in anomaly detection (signature / behavioral)
• Experience with event and log correlation
• Experience of TCPIP/UDP/ICMP
• Knowledge of the OSI Reference Model
• Windows / Linux operating systems
• Advanced experience of Networking components (routers, switches, load balancers, wireless access points, etc)
• Understanding of routing protocols concepts (BGP, OSPF, MPLS, etc.)
• Common knowledge of firewalls, proxies, mail servers and web servers
• Experience with operational support for operating systems, applications and networks
• Common knowledge of relational databases and structured query language
• Experience with vulnerability assessments
• Experience with intrusion management and its components
• Understanding of encryption algorithms and ciphers (PKI/SSL)
• Common knowledge of malicious code (worms, viruses, spyware, etc.)
• Common knowledge of Virtual Private Networking
• Common knowledge of multi-tier environments
• Experience with packet inspection / sniffers
• Experience with forensics and e-discovery

Education/Experience:

• Bachelor’s degree from an accredited college or university in a technical discipline with a minimum of two (2) years of experience in IT either in information security or systems administration functions is required.

Employment at AMSURG: Living Our Values Every Day
At AMSURG, our values define who we are and how we serve our patients, partners, and each other. As a national leader in ambulatory surgery, we are committed to a culture of excellence, integrity, teamwork and caring deeply. Our values guide every decision, ensuring we continue to elevate healthcare and provide the highest quality care.
These guiding principles are the foundation of our culture and a guide to how we collaborate, innovate, and make a difference every day.

• Care Deeply for those around us.
• Cultivate Integrity to build trust.
• Champion Excellence for continuous improvement
• Celebrate Teamwork every step to the way.

Benefits:

To ensure we retain and invest in great people, AMSURG provides its employees with the benefits, recognition, training, and opportunities needed for professional growth. Our wide range of health and welfare benefits allow you to choose the right coverage for you and your family. AMSURG offers a variety of health and welfare benefit options to help protect your health and promote your wellbeing. Benefits offered include but are not limited to: Paid Time Off, Medical, Dental, Vision, Life, Disability, Healthcare FSA, Dependent Care FSA, Limited Healthcare FSA, FSAs for Transportation and Parking & HSAs, and a matching 401(K) Plan.

Paid Time Off:

AMSURG offers paid time off, 9 observed holidays, and paid family leave. You accrue Paid Time Off (PTO) each pay period and depending on your position and can earn a minimum of 20 days and up to 25 days per calendar year.

EOE Statement:

AMSURG is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to age (40 or older), race, color, religion, gender, sex, national origin, pregnancy, sexual orientation, disability, genetic information or any other status protected under applicable federal, state, or local laws. We strive to also provide a disability inclusive application and interview process. If you are a candidate with a disability and require reasonable accommodation in order to submit an application, please contact us at: careers@amsurg.com. Please include your full name, the role you’re applying for and the accommodation necessary to assist you with the recruiting process. 

#LI-EH1

#LI-REMOTE