IT@JH Enterprise Management, Monitoring and Security (EMMS) is seeking an Enterprise Cyber Security Engineer who will be responsible for log management, host security, cloud security, asset discovery, vulnerability management, incident response, threat intelligence, Security Incident and Event Management (SIEM) Security Orchestration and Automated Response (SOAR), Network Access Control, and network security for the Enterprise Management, Monitoring and Security (EMMS) team. The Enterprise Cyber Security Engineer will be responsible for one or more of these technologies, often working with one or more team members to support these functions.
Cyber security efforts at Johns Hopkins are complex due to our Academic and Healthcare missions and the complexity to support security projects for Johns Hopkins University and Medicine.
Incidents and projects are complex and varied in nature and also requires the ability to balance the demands of multiple projects.
oThe scale is big-E Enterprise. All Hopkins Medicine affiliates, including international locales.
o Users: 100,000+
oComplexity is at the highest
Specific Duties & Responsibilities
The responsibilities below illustrate work performed by this position.
Not all duties assigned to this position are included, nor is it expected that everyone in this position will be assigned every job responsibility.
Respond to all user, system and network security incidents.
Troubleshoot problems associated with security tools.
Stay abreast of emerging security threats, vulnerabilities and controls.
Filter and analyze large datasets from security logging and telemetry sources, and build tools to integrate data into operational controls.
Automate security controls, data and processes to provide improved metrics and operational support.
Filter and analyze large datasets from security logging and telemetry sources and build tools to integrate data into operational controls SIEM, Log Aggregation Tools.
Apply adept understanding and experience with systems automation platforms and technologies.
Knowledge of the latest trends and awareness of current hacking techniques and cyber-crime.
Host & Cloud Security
Design, implement and administer automated security update technologies for client and server systems.
Design, implement and administer advanced endpoint protection technologies.
Test and identify network and system vulnerabilities and working to address them with the appropriate owners.
Help shape the organizations security policies and standards for use in on-premises and cloud environments.
Create technical documents on use of security technologies.
Apply system security engineering principles to deliver real world solutions to enhance our organization security posture.
Data Security & Compliance
Direct and influence multi-disciplinary teams in implementing and operating information security controls.
Collaborate with application developers and database administrators to deliver creative solutions to difficult technology challenges and business requirements.
Provide subject matter expertise on information security architecture and systems engineering to other IT and business teams.
Interpret security and technical requirements into business requirements and communicate security risks to relevant stakeholders.
Special Knowledge, Skills, & Abilities
Must demonstrate strong critical thinking and analytical reasoning skills.
Ability to work on multiple priorities effectively.
Ability to thrive in high-pressure situations and deliver results that go above and beyond.
Must be well organized and detail oriented.
Experienced in assessing a broad range of information solutions and products.
Ability to prioritize conflicting demands.
Ability to work collaboratively in a team environment.
Excellent written and verbal communication skills with ability to explain technical concepts to experienced technical engineers.
Self-starter with the ability to appropriately prioritize and plan complex work in a rapidly changing environment.
Strong critical thinker with problem solving aptitude.
Team player with experience leading and collaborating cross-team to ensure successful delivery of solutions.
Knowledge of applicable methodologies, including enterprise architecture and common IT Infrastructure components.
Proficient in common scripting languages (e.g. PowerShell, Python, etc.) and automating API requests.
Bachelors Degree required.
Additional experience may be substituted for education.
Six years of related work experience with computer systems, applications and Cyber Security technologies.
Additional education may substitute for experience.
A CISSP certification desirable.
Knowledge in the assigned technical areas this position is responsible.
Classified Title: Enterprise Cybersecurity Engineer Role/Level/Range: ATP/04/PF Starting Salary Range: $83,100-$114,230-$145,360 Annually (Commensurate with experience) Employee group: Full Time Schedule: Mon-Fri 8:30am-5:00pm Exempt Status: Exempt Location: Remote Department name: IT@JH EMMS Personnel area: University Administration
Total Rewards The referenced salary range is based on Johns Hopkins University's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level. Johns Hopkins offers a total rewards package that supports our employees' health, life, career and retirement. More information can be found here: https://hr.jhu.edu/benefits-worklife/
Please refer to the job description above to see which forms of equivalency are permitted for this position. If permitted, equivalencies will follow these guidelines:
JHU Equivalency Formula: 30 undergraduate degree credits (semester hours) or 18 graduate degree credits may substitute for one year of experience. Additional related experience may substitute for required education on the same basis. For jobs where equivalency is permitted, up to two years of non-related college course work may be applied towards the total minimum education/experience required for the respective job.
**Applicants who do not meet the posted requirements but are completing their final academic semester/quarter will be considered eligible for employment and may be asked to provide additional information confirming their academic completion date.
The successful candidate(s) for this position will be subject to a pre-employment background check. Johns Hopkins is committed to hiring individuals with a justice-involved background, consistent with applicable policies and current practice. A prior criminal history does not automatically preclude candidates from employment at Johns Hopkins University. In accordance with applicable law, the university will review, on an individual basis, the date of a candidate's conviction, the nature of the conviction and how the conviction relates to an essential job-related qualification or function.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
If you are interested in applying for employment with The Johns Hopkins University and require special assistance or accommodation during any part of the pre-employment process, please contact the Talent Acquisition Office at firstname.lastname@example.org. For TTY users, call via Maryland Relay or dial 711. For more information about workplace accommodations or accessibility at Johns Hopkins University, please visit accessibility.jhu.edu.
The following additional provisions may apply, depending on campus. Your recruiter will advise accordingly.
The pre-employment physical for positions in clinical areas, laboratories, working with research subjects, or involving community contact requires documentation of immune status against Rubella (German measles), Rubeola (Measles), Mumps, Varicella (chickenpox), Hepatitis B and documentation of having received the Tdap (Tetanus, diphtheria, pertussis) vaccination. This may include documentation of having two (2) MMR vaccines; two (2) Varicella vaccines; or antibody status to these diseases from laboratory testing. Blood tests for immunities to these diseases are ordinarily included in the pre-employment physical exam except for those employees who provide results of blood tests or immunization documentation from their own health care providers. Any vaccinations required for these diseases will be given at no cost in our Occupational Health office.
Note: Job Postings are updated daily and remain online until filled.
Johns Hopkins University remains committed to its founding principle, that education for all students should be grounded in exploration and discovery. Hopkins students are challenged not just to learn but also to advance learning itself. Critical thinking, problem solving, creativity, and entrepreneurship are all encouraged and nourished in this unique educational environment. After more than 130 years, Johns Hopkins remains a world leader in both teaching and research. Faculty members and their research colleagues at the university's Applied Physics Laboratory have each year since 1979 won Johns Hopkins more federal research and development funding than any other university. The university has nine academic divisions and campuses throughout the Baltimore-Washington area. The Krieger School of Arts and Sciences, the Whiting School of Engineering, the School of Education and the Carey Business School are based at the Homewood campus in northern Baltimore. The schools of Medicine, Public Health, and Nursing share a campus in east Baltimore with The Johns Hopkins Hospital. The Peabody Institute, a leading professional school of music, is located on Mount Vernon Place in downtown Bal...timore. The Paul H. Nitze School of Advanced International Studies is located in Washington's Dupont Circle area.