This job was posted by https://illinoisjoblink.illinois.gov : For more information, please see: https://illinoisjoblink.illinois.gov/jobs/11839520 By joining our team, you\'ll be part of our life-changing Mission and Vision. You\'ll work in a truly inclusive environment where diversity and equity are championed through words and actions. You\'ll contribute to an innovative culture that is second to none, one that embraces curiosity, discovery and compassion. You\'ll play a role in something that\'s never been done before as we integrate science and clinical care to help patients achieve better, faster outcomes - as we Advance Human Ability, together.

Job Description Summary

The Senior Security Engineer is responsible for management, implementation, and support of Shirley Ryan AbilityLab\'s (SRAlab) information systems security controls, including all technical, physical and administrative controls pertaining to the computing environment. Ensures that SRAlab maintains a secure and operationally efficient computing environment. Acts as lead technical interface within the IS Department.

The Senior Security Engineer provides direct support for SRAlab\'s technical security environment, including firewalls, intrusion detection systems, server-based security controls, and related reporting platforms.

The Senior Security Engineer will consistently demonstrate support of the Shirley Ryan AbilityLab statement of Vision, Mission and Core Values by striving for excellence, contributing to the team efforts and showing respect and compassion for patients and their families, fellow employees, and all others with whom there is contact at or in the interest of the institute.

The Senior Security Engineer will demonstrate Shirley Ryan AbilityLab Core Attributes: Communication, Accountability, Flexibility/Adaptability, Judgment/Problem Solving, Customer Service and Core Values (Hope, Compassion, Discovery, Collaboration, and Commitment to Excellence) while fulfilling job duties.

Job Description

The Senior Security Engineer will:

• Provide management, implementation, and support of SRAlab\'s information systems security controls, including technical, physical and administrative controls pertaining to the computing environment.
• Provide primary technical support for SRAlab\'s security appliances, including Palo Alto Firewalls, Cisco ISE Systems, Mail Gateway, and VPN Technologies.
• Collaborate with the Senior Network Engineer to provide technical and administrative support of network security components including firewalls, intrusion detection systems, authentication systems, certificate management servers, and network management systems.
• Collaborate with the Senior Systems Engineer to provide technical and administrative support of systems security components including Active Directory/GPO policies, end-point encryption, anti-spam/anti-virus, operating systems configuration, etc.
• Manage projects and project team members as appropriate for security or controls-related projects.
• Collaborates with Facilities and Network Engineers to provide technical and administrative support of physical controls of Data Center, LAN Closets, and end-user workspaces.
• Provide network support for SRAlab\'s server, database, messaging and storage systems, including the server and storage hardware (servers, disk arrays, cabling, etc.), operating system installation and configuration, and application installation and support.
• Design and implement systems solutions to support business activities.
• Document systems changes using approved practices.
• Perform all other duties that may be assigned in the best interest of the Shirley Ryan AbilityLab.

Reporting Relationships

• Reports directly to the Manager, Network and Systems

Knowledge, Skills & Abilities Required

Requires knowledge of computer technology and information management concepts typically acquired through completion of a Bachelor\'s degree in Computer Science, Information Systems or other closely related field. Masters preferred.

Advanced security certifications e.g. SSCP, CISSP, CISA, etc. are a plus.

Palo Alto Networks Certified Network Security Engineer (PCNSE) and Network Security certification preferred (e.g. CCSP)

Proficiency in several security technologies including data loss prevention, encryption, cloud access security brokers, identity and access management, micro-segmentation, multi-factor authentication, endpoint protection, SIEM and perimeter defenses.

Prior experience with threat modeling, security design reviews, and security architectural concepts

Expertise across common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT, NIST, including 800-53 and Cybersecurity Framework is preferred

Minimum 5 years of professional experience in a corporate IT environment developing and supporting a medium to large network.

Advanced administrative experience with Palo Alto Firewalls and Cisco ISE and/or other security management systems.

Administrative experience with Active Directory, Windows Server, Windows SQL Server, Windows Print Services, and Microsoft Exchange is required. MCITP or MCS