• Serves as a subject matter expert (SME) on cybersecurity topics across business initiatives.
• Maintains confidentiality & preserve privilege in all investigations & sensitive cybersecurity matters.
• Understands and utilizes a Systems Thinking approach to design, troubleshooting, operations, & investigation.
• Develops and delivers writing and presentations with clear, concise language & narrative style to audiences of varying background and specialty.
• Supports technical controls required to achieve & support regulatory and legal requirements including HIPAA, PCI-DSS, state privacy laws, et al.
• Understands & supports the goals of the CIS Critical Security Controls.
• Conducts & supports security workstreams including cyber threat intelligence, security operations, incident response, vulnerability management, risk assessment, secure architecture/design, application security, communication/network security, endpoint detection & response (EDR), & network access control (NAC/ISE).
• Assesses security controls and evaluate posture of systems, devices, and processes.
• Defines foundational controls addressing new risk scenarios and mature existing controls to address significant changes.
• Conducts & supports risk management activities across business units.
• Evaluates third party risk for alignment with organization security controls & policies.
• Trains staff on proper risk assessment and management methodology.
• Serves as an escalation resource for confirmation and resolution of complex risk scenarios.
• Researches attack trends & maintain current knowledge of attack techniques, tactics, & practices to manage risk surface and reduce time to detection.
• Develops detective controls, exposure tracking, and remediation paths for evolving threats.
• Provides operational support for security monitoring alerts, triaging, and maintenance.
• Trains and support staff in applying tools, techniques, and processes required to enhance skills and increase operational performance.
• Performs level 1 & 2 incident response activities including detection, containment, & documentation.
• Preserves, documents, & analyzes forensic evidence and artifacts using best practices & commercial/open-source tools (e.g., EnCase, Access Data, Autopsy, Volatility, etc.)
• Authors & presents case studies & investigative analysis resulting from security events & incidents.
• Performs original analysis of threat intelligence signals from internal and public sources resulting in actionable Indicators of Attack/Compromise (IoA/C) collateral.
• Maintains currency and train staff on tools & intelligence-driven trends informing evolving attack methodology.
• Leads threat hunting activities across multiple platforms to support the Cyber Threat Intelligence (CTI) function.

Required:

• Bachelor’s degree or equivalent experience.
• 8+ years IT/IS experience w/ 4+ years in a Security-focused role.
• Experience in Cybersecurity, IT/IS, Internal Audit, or a related discipline.
• Ability and desire to research emerging technical challenges and assimilate knowledge quickly.
• Demonstrated abilities for analytical understanding, attention to detail, and critical thinking.
• Ability to understand problem logic and produce solution-oriented proposals.
• Ability to train technical personnel in System Thinking analysis methods.
• Ability to identify and mitigate vulnerabilities and explain how to avoid them to non-technical audience.
• Ability to analyze large datasets using standard methods and tools (e.g., Excel, SQL, etc.) to distill actionable intelligence or understanding.
• Excellent time management and communication skills (written and verbal).

Preferred:

• Masters' degree in Computer Science, Information Systems, or related discipline.
• Relevant industry certifications: (ISC)2, ISACA, SANS, vendor-specific, etc.

This position may have a signing bonus available a member of the Recruitment Team will confirm eligibility during the interview process.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

We’re striving to make respect a part of everything we do at UMass Memorial Health – for our patients, our community and each other. Our six Standards of Respect are: Acknowledge, Listen, Communicate, Be Responsive, Be a Team Player and Be Kind. If you share these Standards of Respect, we hope you will join our team and help us make respect our standard for everyone, every day.

As an equal opportunity and affirmative action employer, UMass Memorial Health recognizes the power of a diverse community and encourages applications from individuals with varied experiences, perspectives and backgrounds. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity and expression, protected veteran status or other status protected by law.

If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at talentacquisition@umassmemorial.org. We will make every effort to respond to your request for disability assistance as soon as possible.