#LI-Remote

Shriners Children’s is an organization that respects, supports, and values each other. Named as the 2025 best mid-sized employer by Forbes, we are engaged in providing excellence in patient care, embracing multi-disciplinary education, and research with global impact. We foster a learning environment that values evidenced based practice, experience, innovation, and critical thinking. Our compassion, integrity, accountability, and resilience define us as leaders in pediatric specialty care for our children and their families.

All employees are eligible for medical coverage on their first day! In addition, upon hire all employees are eligible for a 403(b) and Roth 403 (b) Retirement Saving Plan with matching contributions of up to 6% after one year of service. Employees in a FT or PT status (40+ hours per pay period) will also be eligible for paid time off, life insurance, short term and long-term disability and the Flexible Spending Account (FSA) plans and a Health Savings Account (HSA) if a High Deductible Health Plan (HDHP) is elected. Additional benefits available to FT and PT employees include tuition reimbursement, home & auto, hospitalization, critical illness, pet insurance and much more! Coverage is available to employees and their qualified dependents in accordance with the plans. Benefits may vary based on state law.

The Cyber Security Engineer supports the Senior IS Manager, Cyber Security in leading efforts to ensure that information systems and computer networks are secure. This includes protecting against hackers and cyber-attacks, as well as monitoring network traffic and logs for activity that seems unusual. Additionally, specialists are responsible for finding vulnerabilities in the computer networks and creating recommendations for how to minimize these vulnerabilities. The Cyber Security Engineer investigates security incidents, develops strategies for any security issues that arise, and utilizes the help of cybersecurity tools to maintain security.

• Policies and Procedures - Ensures that the security policies and procedures are followed to secure information at rest or in motion. Ensures proper reporting of information security violations or potential violations to the appropriate stakeholders. Examines requests for security approval and makes appropriate decisions Assures regulatory compliance related to electronic information in areas such as Health Insurance Portability and Accountability Act (HIPAA)
• Program/Service Management - Leads several programs such as the monitoring, audit, incident Response, training/Awareness, risk Assessment, security consulting, reporting. Identifies potential areas of information security compliance vulnerability and risk. Leads small to major incident investigations. Reviews and drafts security policies and procedures and ensures they are sufficiently vetted and communicated.
• Project Management - Leads 2-3 simultaneous projects (<40 Hours). Constantly delivers project on time and under budget, renegotiating timelines with stakeholders with little direction. Develops/implements corrective action plans for resolution of problematic issues. Provides general guidance on how to avoid or deal with similar situations in the future. Consistently communicates with stakeholders
• Administrative - Identifies and attends sufficient training to maintain and advance their knowledge. Contributes to a work environment that encourages knowledge of, respect for, and development of skills to engage with those of other cultures or backgrounds. Develops and vets plan with supervisor to prioritize and accomplish tasks over a rolling 12 month period. Develops relationships with internal customers and partners and negotiates roles and responsibilities, engaging manager when needed to resolve larger issues. Uses soft skills to minimize disagreements and promote teamwork. Remains competent and current through self-directed professional reading, developing professional contacts with colleagues, attending professional development courses, attending training, conferences, and/or courses as directed by the supervisor, and obtaining certifications relevant to job duties. Contributes to the overall success of the organization by performing all other duties and responsibilities as assigned.

This is not an all-inclusive list of this job’s responsibilities. The incumbent may be required to perform other related duties and participate in special projects as assigned.

Required:

• 5 years of cyber security experience including managing cybersecurity controls
• CISSP certification

• At least 4 total additional current professional cybersecurity certifications with 3 being directly related to the assigned role. Other acceptable additional certifications from any of the following certifying authorities:
     • SANS/GIAC
     • ISC2
     • Cloud Security Alliance
     • ISACA
     • Project Management Institute
     • Payment Card Industry
     • EC Council
     • Offensive Security
     • HITRUST
     • Vendor specific certification directly related to the role

               Other certifications may be acceptable at the discretion of the Senior Manager, Cybersecurity.

• Associate's Degree with proof of writing proficiency

Preferred:

• Bachelor's Degree with proof of writing proficiency