Build your career in cybersecurity -
your way

Overview

Prime Healthcare is an award-winning health system headquartered in Ontario, California. Prime Healthcare operates 45 hospitals and has more than 300 outpatient locations in 14 states providing more than 2.6 million patient visits annually. It is one of the nation’s leading health systems with nearly 50,000 employees and physicians. Fourteen of the Prime Healthcare hospitals are members of the Prime Healthcare Foundation, a 501(c)(3) not-for-profit public charity. Prime Healthcare is actively seeking new members to join our corporate team!

Company is an equal employment opportunity employer. Company prohibits discrimination against any applicant or employee based on race, color, sex, sexual orientation, gender identity, religion, national origin, age (subject to applicable law), disability, military status, genetic information or any other basis protected by applicable federal, state, or local laws. The Company also prohibits harassment of applicants or employees based on any of these protected categories. Know Your Rights: https://www.eeoc.gov/sites/default/files/2022-10/EEOC_KnowYourRights_screen_reader_10_20.pdf

Privacy Notice for California Applicants: https://www.primehealthcare.com/wp-content/uploads/2024/04/Notice-at-Collection-and-Privacy-Policy-for-California-Job-Applicants.pdf

• IAM Associate Analyst - Epic is responsible for managing and maintaining access to Epic Electronic Health Record (EHR) system. This position involves working closely with healthcare professionals, IT teams, and compliance specialists to ensure that authorized individuals have the appropriate access levels while maintaining the confidentiality and integrity of patient data. This position also requires strong customer service skills to ensure a positive experience for the end-users.

Required qualifications:

• Associate degree in Information Technology, Computer Science, or a related field.
• Internship or work experience in IT.
• Familiarity with ITIL principles.
• Basic knowledge of IT infrastructure, networks, and systems.
• Basic understanding of Microsoft Active Directory, Electronic Health Record systems and their access management processes.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.

Preferred qualifications:

• Bachelor's degree in Information Technology, Computer Science, or a related field.
• Experience in Healthcare or other regulated industries is preferred.
• Certification in relevant technologies (e.g., CompTIA A+, Microsoft Certifications).

Prime Healthcare offers competitive compensation and a comprehensive benefits package that provides employees the flexibility to tailor benefits according to their individual needs. Our Total Rewards package includes, but is not limited to, paid time off, a 401K retirement plan, medical, dental, and vision coverage, tuition reimbursement, and many more voluntary benefit options. A reasonable compensation estimate for this role, which includes estimated wages, benefits, and other forms of compensation, is $24.00 to $32.40. The exact starting compensation to be offered will be determined at the time of selecting an applicant for hire, in which a wide range of factors will be considered, including but not limited to, skillset, years of applicable experience, education, credentials and licensure.

Role Summary:

We are seeking a skilled Information Security Engineer to join our team, responsible for protecting our organization’s information systems and data. The primary objective of this role is to implement and maintain security measures that comply with industry standards, including NIST 800-171 and CMMC, while effectively managing risks associated with information security. The successful candidate will play a vital role in conducting risk assessments, responding to security incidents, and a culture of security awareness within the organization.

Company Overview:

Mach is a defense manufacturing company that builds munitions to help the United States win future wars. Backed by $85M in funding from top venture firms, our small lean team ideates, designs, manufactures, and sells cutting-edge weapons to the Department of Defense.

• Implement and maintain compliance with NIST 800-171 and CMMC frameworks, ensuring the organization meets all necessary security requirements.
• Conduct comprehensive risk assessments to identify vulnerabilities and implement effective risk mitigation strategies across the organization.
• Stay current with DoD cybersecurity policies, including the Risk Management Framework (RMF), to ensure all practices align with regulatory requirements.
• Utilize SIEM, EDR/XDR, and SOAR tools to monitor, assess, and enhance the security posture of the organization.
• Execute scanning, reconnaissance, and penetration testing to discover weaknesses in security defenses and enhancements.
• Manage and secure cloud services, including but not limited to AWS, Azure, and DISA mil, ensuring compliance with security requirements.
• Develop scripts using bash, shell, PowerShell, and other programming languages to automate security tasks and improve efficiency.
• Lead responses to security incidents, overseeing investigation, containment, eradication, and recovery processes. Conduct post-incident reviews and suggest improvements for future prevention.
• Design and conduct security training and awareness programs to educate staff on security policies and best practices, promoting a security-first culture.
• Maintain detailed documentation of security systems, policies, procedures, and incident reports. Update security documentation as necessary to reflect changes in procedures or regulations.
• Conduct detailed analysis of security events, compile data, and provide insights in written reports, correspondence, or verbal briefings to stakeholders.

Minimum Qualifications:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent experience.
• Minimum of 5 years of experience in cyber/information security roles, with a focus on risk assessment and compliance.
• Hands-on experience with NIST 800-171, CMMC, and the Risk Management Framework (RMF).
• Proficiency with SIEM tools, EDR/XDR tools, SOAR tools, and cloud security tools. Familiarity with IT networking, Windows, and cloud systems.
• Proficient in bash, shell, PowerShell, Python, and/or basic scripting on Linux and Windows platforms.
• Strong analytical skills, attention to detail, and the ability to manage multiple projects in a fast-paced environment.

Preferred Qualifications:

• Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or similar credentials.
• Experience with advanced cybersecurity frameworks and methodologies, including incident response and penetration testing.
• Experience with securing cloud platforms and services, particularly AWS, Azure, and GCP.

Ideal Candidate:

• The ideal candidate is proactive, detail-oriented, and thrives in a dynamic, collaborative environment. They possess a strong understanding of information security principles and the ability to analyze complex security issues. A successful Information Security Engineer will have experience in conducting risk assessments and implementing security measures that are compliant with industry standards. They should be adept at using various security tools and technologies, as well as possess a solid foundation in IT networking and cloud security. Strong communication and training abilities are essential for this role, as the candidate will be responsible for fostering a culture of security awareness within the organization.

Disclosures

This position may require access to information protected under U.S. export control laws and regulations, including the Export Administration Regulations (EAR) and the International Traffic in Arms Regulations (ITAR). Please note that any offer for employment may be conditioned on authorization to receive software or technology controlled under these U.S. export control laws and regulations without sponsorship for an export license.

The salary range for this role is an estimate based on a wide range of compensation factors, inclusive of base salary only. Actual salary offers may vary based on (but not limited to) work experience, education and training, critical skills, and business considerations. Highly competitive equity grants are included in most offers and are considered part of Mach’s total compensation package. Mach offers benefits such as health insurance, retirement plans, and opportunities for professional development.

Mach is an equal opportunity employer committed to creating a diverse and inclusive workplace. All qualified applicants will be treated with respect and receive equal consideration for employment without regard to race, color, creed, religion, sex, gender identity, sexual orientation, national origin, disability, uniform service, Veteran status, age, or any other protected characteristic per federal, state, or local law, including those with a criminal history, in a manner consistent with the requirements of applicable state and local laws. If you’d like to defend the American way of life, please reach out!

Overview

Fred Hutchinson Cancer Center is an independent, nonprofit organization providing adult cancer treatment and groundbreaking research focused on cancer and infectious diseases. Based in Seattle, Fred Hutch is the only National Cancer Institute-designated cancer center in Washington.

With a track record of global leadership in bone marrow transplantation, HIV/AIDS prevention, immunotherapy and COVID-19 vaccines, Fred Hutch has earned a reputation as one of the world’s leading cancer, infectious disease and biomedical research centers. Fred Hutch operates eight clinical care sites that provide medical oncology, infusion, radiation, proton therapy and related services, and network affiliations with hospitals in five states. Together, our fully integrated research and clinical care teams seek to discover new cures to the world’s deadliest diseases and make life beyond cancer a reality.

At Fred Hutch we value collaboration, compassion, determination, excellence, innovation, integrity and respect. These values are grounded in and expressed through the principles of diversity, equity and inclusion. Our mission is directly tied to the humanity, dignity and inherent value of each employee, patient, community member and supporter. Our commitment to learning across our differences and similarities make us stronger. We seek employees who bring different and innovative ways of seeing the world and solving problems. Fred Hutch is in pursuit of becoming an anti-racist organization. We are committed to ensuring that all candidates hired share our commitment to diversity, anti-racism and inclusion.

This role will have the opportunity to work partially at our campus and remotely.

• Run forensics across desktop and mobile platforms
• Actively Participate in the Incident Response Program
• Handle security incidents & indecent prevention
• Manage our security monitoring platform and respond to network and endpoint security event
• Understand security vulnerabilities, provide relevant guidance to other IT teams
• Assist in analyzing and defining security requirements
• Works closely with the IT Security and Compliance team toward the implementation and maintenance of all data security-related infrastructure and policy.
• Assists in identifying security risks by participating in security reviews, evaluations, and risk assessments.
• Provide support to Security Operations teams to solve correct technical challenges related to implementation of security solutions
• Assess Software as a Service (SaaS) products for security compliance
• Develop and maintain security monitoring, logging and auditing
• Install required security patches and updates for a wide range of applications.

MINIMUM QUALIFICATIONS:

• BS/BA in Computer Science, Information Systems, Engineering, Business, or related field or the equivalent experience
• 3-5 years’ experience in information security
• Experience in GRC tools such as Archer, MetricsSystem, BWise.
• Knowledge and experience with identity and cloud security technologies
• Strong knowledge of SIEM and Splunk solutions
• Knowledge in information security fundamentals (threat modeling, penetration testing, incident response, network security, physical security, etc.).
• In-depth understanding of endpoint and network security for Windows and Linux

PREFERRED QUALIFICATIONS:

• Information security related certificate such as CISSP, CISM, CISA, CCNP Security +, SANs
• Experience with industry standards such as HIPPA, ISO 27001, ISO 31000, NIST

A statement describing your commitment and contributions toward greater diversity, equity, inclusion, and antiracism in your career or that will be made through your work at Fred Hutch is requested of all finalists.

The annual base salary range for this position is from $95,888 to $143,811, and pay offered will be based on experience and qualifications.

Fred Hutchinson Cancer Center offers employees a comprehensive benefits package designed to enhance health, well-being, and financial security. Benefits include medical/vision, dental, flexible spending accounts, life, disability, retirement, family life support, employee assistance program, onsite health clinic, tuition reimbursement, paid vacation (12-22 days per year), paid sick leave (12-25 days per year), paid holidays (13 days per year), paid parental leave (up to 4 weeks), and partially paid sabbatical leave (up to 6 months).