Fairview Health Services  Senior Security Engineer in Twin Cities, Minnesota

JobTitle Senior Security Engineer

Specialty IT Professionals

Location Fairview offices at 323 Stinson

Department Security Engineering and OP

Hours per 2 weeks 80

Shift Day

Date Posted 01/31/2018

Job Number 18-71155

Job Description:

The Sr Security Engineer is responsible for providing technical expertise and direction in developing, implementing and supporting technology applications to ensure they are deployed and operated securely. Effectively, design implement and maintain complex security technologies and projects that support the underlying security policies and procedures. Design, document and implement appropriate solutions to support security policies and standards that protect information assets. Provide subject matter expertise to the creation of new and updates to existing policies, standards and practices.

Operational duties include security technology management, boundary and network defense, endpoint defense, supporting information security incident response, and vulnerability and threat remediation.

Job Expectations:

Maintain expertise on security and vulnerability trends. Remediate systems based on supplied threat intelligence information.

Ensure that new and existing solutions are installed and maintained to meet security requirements.

Lead remediation based on audits or reviews of internal and vendor security processes, procedures and compliance controls.

Serve as a security expert on application development, database design, network and/or platform (operating system) projects, helping project teams comply with enterprise and Technology security procedures and capabilities.

Design, test, implement, maintain and support current and future complex information security technologies, processes and procedures. Lead the design and development of security controls that ensure the safety of information assets and protect from unauthorized access or intentional destruction..

Lead complex projects related to information security regulatory compliance and the implementation and maintenance of all information security programs, processes and technologies. Assure the implementation of appropriate security configurations or re-configurations and work with appropriate teams to execute them as required.

Assume a subject matter expert (SME) role in the, resolution and response to suspected and actual information security incidents, breaches, abuse or system failures. Analyze highly visible and complex security incidents to determine root cause and identify process or system changes to prevent reoccurrence. Recommend and perform fixes, security patches, disaster recovery procedures and other required measures. Assure the preservation of cyber-attack evidence as appropriate.

Job Qualifications:


Bachelor's degree or equivalent work experience

7+ years experience installing, monitoring and maintaining information security solutions including policy design and implementation.

5+ years experience evaluating and designing security solutions for technology projects.

Demonstrated understanding of security related technologies and practices, including: authentication and authorization systems, endpoint protection, encryption, segmentation strategies, vulnerability management, secure remote access, and fire walls.

Strong/diverse technical background in enterprise networking, firewall, storage options, server infrastructure, operating systems, database technologies, and desktop operating systems and security.

SANS GIAC; or equivalent security certification


Demonstrated experience contributing and collaborating effectively as an informal leader in a high-functioning team.

Effective organizational, analytical and independent problem solving skills.

Successful experience coordinating and completing multiple tasks within established and changing deadlines.

Strong presentation skills with experience addressing and interfacing with executives and technical staff.

Experience working in the healthcare services industry or other highly regulated/compliance oriented environments.

Experience with regulatory compliance issues.

CISSP, CISA, CISM or CRISC; or equivalent security certification

About Fairview Health Services

Fairview Health Services (fairview.org) is an award-winning, nonprofit health system providing exceptional care across the full spectrum of health care services. Joined by HealthEast in June 2017, Fairview is one of the most comprehensive and geographically accessible systems in the state, with 11 hospitals—including an academic medical center and long-term care hospital—serving the greater Twin Cities metro area and north-central Minnesota.

Its broad continuum also includes 56 primary care clinics, specialty clinics, senior living communities, retail and specialty pharmacies, pharmacy benefit management services, rehabilitation centers, counseling and home health care services, medical transportation, an integrated provider network and health insurer PreferredOne. In partnership with the University of Minnesota, Fairview’s 32,000 employees and 2,400 affiliated providers embrace innovation to drive a healthier future through healing, discovery and education.

EEO/AA Employer/Vet/Disabled

All qualified applicants will receive consideration without regard to any lawfully protected status.