Purpose Do you have a passion for technology and know how to best meet end user and business needs? If you are as passionate about your future as we are, join our team. In this role, you will be responsible for design, installation, administration, and maintenance of security systems that provide both administrative and technical controls that implement security policies and procedures. You will provide consultation, reporting, documentation, and training. You will also participate in related business and security projects. You will work closely with leadership and staff to extract data to support recommendations for new security-related procedures andor revisions. In addition, you will provide support to operations, application developers and help desk technicians. This role will guide the organization on standard security methodologies. This position will also play a meaningful role in leading and responding to client security surveys and internal 3rd party audits. Essential Functions The Security Administrator works independently within the established procedures to ensure network security access and protect against unauthorized access, modifications, or destruction. Assist with defining policies, procedures, and responsible for implementing technologies to ensure system security through secure system access, monitoring, control, and routine security evaluations. Performing vulnerability and penetration tests, identifying and defending against threats, and developing disaster recovery plans Design, review proper monitoring policies and procedures for firewall, anti-virus, IDSIPS and SIEM logs Monitoring network traffic for suspicious behavior. Participate in the IT change management board, ensuring security is a consideration in all changes. Determines security violations and inefficiencies by conducting periodic audits. Participate in company-wide security audits (internal and external) Work with management and the change control board to verify all security related production modifications are properly approved Responsible to manage Cybersecurity incident response. All other duties and responsibilities as assigned. Skills needed to be successful High degree of attention to detail as it pertains to security policies and security alerts. Ability to make sound decisions and analyze problems based off the information captured through risk assessments of the infrastructure and business. Excellent analytical skills, with an ability to translate business needs into practical security posture. Solid knowledge of different security frameworks as applied to current network, server infrastructure and storage technologies. Proficiency with Anti-Virus, HIPS, IDPS, Full Packet Capture, RSA Security Required Experience Education 5 years of experience in information security industry CISSP, CISM or other security related certifications Experience with security information and event management platforms and other security tools Hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, FPC), and other attack artifacts in support of incident investigations Experience with vulnerability scanning solutions In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform Familiarity with ISO 27001, SOC 2, NIST 800-53 or other security frameworks Preferred Experience Education Bachelors degree in Information Technology, Computer Science or equivalent skills and experience 8-10 years experience in information security industry CISA Certification Knowledge of HIPAA Security Rule and other Federal Technology laws Knowledge of international and domestic privacy laws and regulations Supervisory Responsibilities None Perks of working for Sunquest From our business casual dress policy, generous PTO plan and flexible work schedules, to our mission driven organization that supports those who support healthcare organizations, Sunquest promotes work-life balance for all of our employees. We place emphasis on training and development, encourage promotion from within and encourage cross-functional team participation. These ideals together foster a culture of professional growth and development for our employee. Work is performed in a normal office setting with minimal exposure to health or safety hazards. Prolonged periods of sitting at a desk and working on a computer. Must be able to lift up to 10 pounds with assistance as part of office routine Travel may be required Sunquests Commitment to Equal Opportunity Sunquest Information systems is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, militaryveteran status or other characteristics protected by law. General Guidance This job description is meant to provide an accurate depiction of tasks and accountabilities that are most often associated with this role. While we strive to provide an accurate depiction, nothing in this description restricts the company from changing, reassigning, expanding or reducing scope of accountabilities and is subject to change at any time. Experience Required 5 year(s) Information Security Education Preferred Bachelors or better in Computer Science or related field Equal Opportunity EmployerProtected VeteransIndividuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractors legal duty to furnish information. 41 CFR 60-1.35(c) See job description