I. JOB SUMMARY:
- Supports the daily operations of The Queen's Health Systems (QHS) information security program.
- Helps promote awareness and training related to the QHS Security Policies and basic security best practices.
- Key responsibilities include but are not limited to:
o Assisting with the operation and monitoring of information security controls, tools, and policies.
o Supporting QHS initiatives and projects by providing information security-related consultation and technical assistance.
o Helping implement security measures to strengthen QHS' overall security posture.
o Assisting with activities that support the IT Risk Management Program.
- Works closely with the privacy, risk and compliance teams to support regulartory compliance efforts.
II. TYPICAL PHYSICAL DEMANDS:
A. ESSENTIAL FUNCTIONS:
- Seeing. Hearing. Speaking. Finger dexterity.
B. MANUAL MATERIAL HANDLING:
- Infrequent: N/A
- Occasional: Carry between 11-20 lbs.
- Frequent: N/A
- Constant: N/A
C. NON-MANUAL MATERIAL HANDLING:
- Infrequent: N/A
- Occasional: Stoop/Bend. Reach: shoulder level.
- Frequent: Stand. Walk.
- Constant: Sit.
III. TYPICAL WORKING CONDITIONS:
- Not substantially subjected to adverse environmental conditions.
- Work schedule includes providing 24 hours/7 days a week support as required.
IV. MINIMUM QUALIFICATIONS:
A. EDUCATION:
- Bachelor's degree required, preferably in Information Technology (IT) or Cybersecurity; or four (4) years experience in information technology and/or information security may be substituted for the education requirement.
B. CERTIFICATION AND LICENSURE:
- Current certification in one (1) of the following highly preferred: CompTIA Security +; GIAC Security Essentials Certification, ISC2 Certified in Cybersecurity.
C. EXPERIENCE:
- In addition to the education requirement, must meet one (1) of the following:
o One (1) year of experience in information technology and/or information security.
o Prior experience in information technology with a Bachelor's degree in Cybersecurity.
- Exposure to or familiarity with the following preferred:
o SIEM monitoring and basic reporting.
o Incident response fundamentals.
o Vulnerability scanning and remediation workflows.
o Security appliances & tools including IDS, IPS, endpoint protection, web/e-mail filtering, DLP solutions.