Senior Cybersecurity Specialist - Red Team - Pentester

At Cleveland Clinic Health System, we believe in a better future for healthcare. And each of us is responsible for honoring our commitment to excellence, pushing the boundaries and transforming the patient experience, every day.

We all have the power to help, heal and change lives - beginning with our own. That's the power of the Cleveland Clinic Health System team, and The Power of Every One.

Job Title
Senior Cybersecurity Specialist - Red Team - Pentester

Location
Cleveland

Facility
Remote Location

Department
Cybersecurity Intelligence-Information Tech Div

Job Code
T98511

Shift
Days + Call

Schedule
8:00am-5:00pm

Job Summary

Job Details

Join the Cleveland Clinic team where you will work alongside passionate caregivers and making a lasting, meaningful impact on patient care. Here, you will receive endless support and appreciation while building a rewarding career with one of the most respected healthcare organizations in the world.

The Senior Cybersecurity Specialist performs all necessary duties to ensure the safety of information technology assets and to protect systems from intentional or inadvertent access. This position will frequently collaborate with Cybersecurity Management and provide guidance and direction for the Cybersecurity program. The Senior Specialist provides the best solutions to identified needs, meeting specific operational and business objectives, technology capabilities, and human resource requirements. This role offers meaningful learning and development opportunities through frequent interactions and collaboration with Cybersecurity leadership on projects and direction for the Cybersecurity procedures and products.

A caregiver in this position works remotely, Monday-Friday 8:00am-5:00pm EST.

A caregiver who excels in this role will:

• Maintain baselines for secure configuration and operations.

• Track all activity, ensuring timely resolution of problems.

• Leading the identification of advanced security systems and controls to ensure the monitoring and configuring of security appliances.

• Lead Cybersecurity projects, including planning, obtaining customer input and projecting resource requirements.

• Collaborate on IT projects to ensure that security issues are addressed throughout the project life cycle.

• Analyze and integrate Security Solutions into multiple platforms, including Clinical and Financial Systems.

• Research and assess new threats and security alerts and recommend remedial action.

• Review security system requirements with customers and translate requirements into specific functions or deliverables.

• Analyze flow chart processes and recommend ways to reduce steps and increase efficiency through the use of technology.

• Coach or provide guidance to lower-level security professionals and support the continuous process of optimizing department resources.

• Effectively communicates security procedures and policies with caregivers.

• Weigh business needs against security concerns and articulates issues to management.

• Provide after-hours support as needed.

Minimum qualifications for the ideal future caregiver include:

• High School Diploma/GED: A minimum of 9 years of Information, Clinical or Financial Systems experience required, including directing, planning and scheduling a major information system project, with at least 5 years of Cyber Security required.

• Bachelor's Degree: A minimum of 7 years of Information, Cyber Security, Clinical or Financial Systems experience required, including directing, planning and scheduling a major information system project, with at least 5 years of Cyber Security required.

• Both Bachelor's Degree and High School Diploma/GED: Experience in providing specialized technical expertise and support to clients, IT management, and staff in risk assessments, implementation and operational aspects of Cybersecurity procedures and products required

• For Information Technology Division caregivers, ITIL Foundations certification is required within 6 months of the position start date.

Preferred qualifications for the ideal future caregiver include:

• Bachelor's Degree in Information Technology/Computer Science or related field preferred

• Certifications from SysAdmin, Audit, Network and Security Institute (SANS), International Information Systems Security Certification Consortium (ISC2) or Computing Technology Industry Association (CompTIA) preferred or other position related certifications.

• Offensive security certifications preferred, such as SANS GPEN, SANS GXPN, SANS GWAPT, OSCP, OSCE, OSWP, CEH.

• Manual evaluation of security controls to identify gaps.

• Recommending security improvements and controls that may include technical, administrative, and physical measures.

• Use of offensive security tools and frameworks to validate security controls.

• Working closely with others on cross-functional teams and exposure to diverse security disciplines.

• Interacting with other stakeholders (such as information technology departments and business units) to understand the impact of security recommendations and improve security practices.

• Clear communication of vulnerabilities and associated risks in both written reports and verbal briefings.

• Ranking and prioritizing vulnerabilities according to risk or potential impact.

• Utilizing security tools such as Metasploit Framework, Cobalt Strike, BurpSuite and others to audit defensive posture.

• Assessing security in multiple domains, including network security, cloud environments, application security, wireless security, and physical security.

• Gathering open-source intelligence (OSINT) to prioritize targeting.

• Familiarity with the MITRE ATT&CK framework to guide testing and reporting.

• Conducting realistic social engineering engagements to test user awareness.

• Secure engineering and administration of cloud architecture.

• Writing programs or scripts to automate routine tasks and facilitate security testing and reporting. Relevant languages include PowerShell, Python, C#, Golang, Ruby, and others.

• Maturing cybersecurity programs by identifying and documenting areas for improvement and developing and implementing plans.

Our caregivers continue to create the best outcomes for our patients across each of our facilities. Click the link and see how we're dedicated to providing what matters most to you:

Physical Requirements:

• Requires the ability to sit and be stationary for prolonged periods of time, normal or corrected vision and manual dexterity sufficient to perform work on a personal computer.
• Requires the ability to walk to various locations throughout the organization and to function in a stressful environment.

Personal Protective Equipment:

• Follows standard precautions using personal protective equipment as required.

The policy of Cleveland Clinic Health System and its system hospitals (Cleveland Clinic Health System) is to provide equal opportunity to all of our caregivers and applicants for employment in our tobacco free and drug free environment. All offers of employment are followed by testing for controlled substance and nicotine. All offers of employment are follwed by testing for controlled substances and nicotine. All new caregivers must clear a nicotine test within their 90-day new hire period. Candidates for employment who are impacted by Cleveland Clinic Health System's Smoking Policy will be permitted to reapply for open positions after one year.

Cleveland Clinic Health System administers an influenza prevention program. You will be required to comply with this program, which will include obtaining an influenza vaccination on an annual basis or obtaining an approved exemption.

Decisions concerning employment, transfers and promotions are made upon the basis of the best qualified candidate without regard to color, race, religion, national origin, age, sex, sexual orientation, marital status, ancestry, status as a disabled or Vietnam era veteran or any other characteristic protected by law. Information provided on this application may be shared with any Cleveland Clinic Health System facility.

Please review the Equal Employment Opportunity poster.

Cleveland Clinic Health System is pleased to be an equal employment employer: Women / Minorities / Veterans / Individuals with Disabilities