Job Description
Sanford Health is one of the largest and fastest-growing not-for-profit health systems in the United States. We're proud to offer many development and advancement opportunities to our nearly 50,000 members of the Sanford Family who are dedicated to the work of health and healing across our broad footprint. Work Shift:
Day (United States of America)
Scheduled Weekly Hours:
40
Salary Range: $40.00 - $66.00Pay starts at $40 and increases according to years of applicable experience.
Union Position: No
Department Details The Senior Information Security Operations Engineer will be a member of the Vulnerability Management team and responsible for overseeing and executing the identification, analysis, prioritization, and remediation tracking of vulnerabilities across the enterprise. This role acts as a subject matter expert (SME) and escalation point for complex vulnerability scenarios and supports the organization's risk reduction efforts by improving its security posture.
Key Responsibilities:
• Execute the enterprise vulnerability management program, including internal and external scanning, risk classification, and reporting.
• Perform regular and ad-hoc vulnerability scans across servers, endpoints, network devices, applications, and cloud assets.
• Analyze scan results, validate findings, and eliminate false positives.
• Prioritize vulnerabilities based on risk score, asset criticality, threat intelligence, and business impact.
• Collaborate with application, infrastructure owners, and other applicable teams to review, interpret, and explain findings.
• Incorporate threat intelligence to contextualize vulnerabilities.
• Work closely with IS Governance teams to assess risk impact and document findings in exception or POA&M formats.
• Create and maintain dashboards, metrics, and executive-level reports on vulnerability trends and status.
• Author and maintain documentation, including SOPs, technical standards, workflows, and remediation playbooks.
Summary Responsible for the technical and operational delivery of enterprise cybersecurity; focusing on the development and implementation of processes and tools that support Security Operations' threat prevention, threat hunting, vulnerability assessments, and incident response. Also responsible for minimizing identified threats and risks to the organization through collaboration with other Information Security and Sanford technological groups.
Perform and coordinate, with other team members, real-time and forensic log and EDR monitoring and analysis to provide network, data, and asset security for Sanford Health. Complete, configure, and tune vulnerability assessments and report results to application and asset owners. Provide consulting services to owners relating to response activities. Perform, lead, and coordinate on Incident Response activities including the collection, preservation, and interpretation of digital evidence.
Build, administer, and support the IS Security Operations tools, processes, and services. Identify and complete improvements and metrics to Security Operations processes and services. Manage the IS Security Operations ticket queue. Prioritize and complete tickets according to impact to Sanford Health business functions. Provide security consulting services to other Sanford Health groups.
Mentor other Security Operations team members on tools, processes, and Sanford Health areas. Coordinate and participate in activities with other IT Security groups by providing aid and consulting when needed. Works under limited guidance due to previous experience/breadth of knowledge of processes and organizational knowledge. Acts independently to determine methods and procedures on new assignments. Regularly presented with new assignments and projects that require the application of independent judgement/interpretation of policies/practices. Checks own work and the work of other team members.
Qualifications Bachelor's degree required, in lieu of education, leadership may consider an Associates degree plus 3 years of applicable experience in computer science, cyber security or an information technology related field.
Minimum of 4 years' experience working in Cyber Security required. Advanced security training is desired. Strong working knowledge of the information security standards and procedures including HIPAA and PCI.
Security Certifications are desired.
Sanford is an EEO/AA Employer M/F/Disability/Vet. If you are an individual with a disability and would like to request an accommodation for help with your online application, please call or send an email to .
Job Tags
Shift work,