JOB REQUIREMENTS: Overview 3+ years of relevant work experience in Security Engineering, network security devices, security practices, or infrastructure security in a regulated environment. 2+ years of experience working in at least one of the following regulatory settings: ISO 27001, SOX, HIPAA, HITECH, CLIA, CAP. Authorization to work in the United States without sponsorship. Experience a rewarding and fulfilling career with Mercyhealth. Mercyhealth is committed to offering our partners a best place to work. Our unique workplace Culture of Excellence is built upon: Employee engagement, empowerment and growth Teamwork toward our common goal - providing exceptional health care services with a passion for making lives better An atmosphere of caring and quality that cascades throughout the organization The Information Security Engineer role will be responsible for supporting the operational security function to maintain the confidentiality, integrity, and availability of Mercyhealth\'s digital assets. A hands-on technical specialist, the Information Security Engineer handles the complex and detailed technical work necessary to foster and enhance a robust, in-depth security posture Responsibilities ESSENTIAL DUTIES AND RESPONSIBILITIES Serve as a champion for effective information security processes and behaviors across the enterprise. Monitor, investigate and mitigate information security alerts generated throughout the information security solution stack (i.e., MDR, CRI, XDR). Provide technical assistance with the set-up and proper management of systems that support the Mercyhealth information security posture; including, but not limited to, malware detection systems, spyware and adware detection systems, and spam filtering systems. Evaluate bug reports, security exploit reports, and other security notices issued by vendors, manufacturers, government agencies, professional associations, and other organizations as needed, make recommendations to internal management and technical resources to take precaution steps and track remediation. Review penetration test and vulnerability scan results, develop prioritized mitigation plans and track execution of effective mitigation measures. Assist in fulfilling evidence requests in response to regulatory compliance audits (i.e., SOC, HIPAA/HITECH). Evaluate acquired or developed systems and architectures to ensure alignment with Mercyhealth\'s information security requirements. Perform security reviews, identify gaps in security architecture, and develop a security risk mitigation plan. Identify and develop content to support the information security awareness and training program. Evaluate information systems and networks to determine the protections needed (i.e., security controls). Serve as a technical consultant on information security... For full info follow application link. EOE&AA/M/F/Vet/Disabled. Mercy is an equal employment opportunity employer functioning under Affirmative Action Plans. ***** APPLICATION INSTRUCTIONS: Apply Online: ipc.us/t/BEC5C49E0B62412E