Principal Cybersecurity Analyst - Applications & Data Security
Fairview Health Services
Location: Minneapolis, Minnesota
Internal Number: 2021-73254
Principal Cybersecurity Analyst, Applications and Data is responsible to provide technical leadership, collaboration and drive to help elevate Cybersecurity posture for M Health Fairview. This position is accountable to lead technical subject matter experts to continually assess and contain risks associated with enterprise applications and data for M Health Fairview. Successful candidate collaborates with Cybersecurity Incident Response & Threat Management, IT Risk and Compliance management groups to enhance abilities to protect M Health Fairviews application and data ecosystem including but not limited to desktop/web/mobile applications, usage of types of data, enforce policies and standard controls to minimize risks. Candidate will seek to influence and secure application development, deployment and support methods, use of critical data in production and non-production environments, deploy automation tools and processes to scan applications for threats and vulnerabilities and execute penetration testing cycles as recommended by Cybersecurity Risk Management leadership. Candidate will collaborate with Cybersecurity Engineering and other groups to develop and enhance processes to submit applications and associated code for reviews and static/dynamic analysis, report vulnerabilities and associated fixes. Principal will be technical point of contact to assist developers and IT application and data management support groups to provide security expert guidance to address critical security gaps. Additionally, the candidate may be required to lead strategic initiatives to address key security gaps and will provide insights to collect, maintain and improve metrics for the Cybersecurity and Risk Management group.
Provide technical leadership to write/review/enhance security policies, standards, methods and/or procedures
Lead teams to test and govern Cybersecurity controls and their enforcement at M Health Fairview. Make recommendations and lead response teams to deploy necessary controls and address identified gaps
Lead tactical teams to collect, validate, analyze, diagnose, prioritize Cybersecurity Response based on incidents, Indicators of compromise, indicators of anomalous behavior and/or external threat indicators
Participate in industry forums and relevant technical briefings to understand advancements in Cybersecurity and Risk Management areas, automation and self-service capabilities
Apply understanding of various domains of security including authentication, authorization, network security, data, system device and Operating Systems, coding principles, development methodologies, web/mobile applications, use of public and private networks, devices and applications hosted in public/private/hybrid cloud environments
Analyze risk and prioritization of vulnerability remediation using MITRE ATT&CK within the greater context of assets and the control stack
Lead collaboration work with vendors, health and business partners to ensure security remediation milestones are being met
Lead technical and risk management groups to identify and remediate gaps including tool/technology deficiencies
Lead Red/Blue/Purple teams as needed to test security controls and help improve security posture of M Health Fairview.
Assist in design, implement, maintain and support current and future complex information security technologies, processes and procedures. Lead the design and development of security controls that ensure the safety of information assets and protect from unauthorized access or intentional destruction.
Lead complex projects related to Cybersecurity regulatory compliance and the implementation and maintenance of all cybersecurity programs, processes and technologies. Assure the implementation of appropriate security configurations or re-configurations and work with appropriate teams to execute them as required.
Foster a culture of improvement, efficiency gains and innovative thinking. Coach and mentor team members as needed. Adapt and embrace change and demonstrate flexibility in taking up and fulfilling other duties as assigned.
Provide technical leadership to write/review/enhance security policies, standards, methods and/or procedures specifically related to application development, data security needs, secure coding practices, deployment and support centric security controls and associated automation.
Lead operational support activities associated with application and data security, static and dynamic security testing (SAST, DAST, VAPT), data encryption procedures and control testing, response procedures preventing critical data loss.
Provide level 3 and 4 support for Threat modeling, application secure coding practices, data flows and necessary protective standards complying to NIST-CSF, PCI, HITRUST, HIPAA and other regulatory needs.
Works in collaboration with IR & TM (Incident Response & Threat Management) counterparts to prioritize reporting and remediation of detected gaps.
Work with teams administering multiple operating systems in cloud-based infrastructure including AWS, Azure as well as containerized applications on Kubernetes to identify key Cybersecurity control gaps.
Lead technical response and containment during system outbreaks such as Malware/ransomware/virus.
Bachelors degree in Computer Science, Computer Engineering, Technology Information Systems, Engineering or related technical discipline or combination of relevant experience/education.
15+ years of cumulative experience in engineering, development and/or support of IT Systems
7+ years of experience in customization, deployment and support of Cybersecurity tools and technologies
Excellent understanding of fundamentals of IT systems, frameworks, development methodologies, network, firewalls, communication layers, devices/end points, computing environment
Deeper understanding of Threats, Vulnerabilities, Risk, Cybersecurity frameworks, policies and Cybersecurity standards
Understanding of Web Applications, software security, security frameworks
Ability to author and edit scripts such as PowerShell, Python and exposure to or knowledge of REST API and JSON batching and workflow automation
Ability to thrive in a sense-of-urgency environment and leverage best practices
Language & Communication Skills
Excellent ability to effectively communicate both verbally and written with all levels within the organization
Ability to visually represent technical, logical and system interaction concepts and adjust messaging based on the audience, including non-technical groups
Expertise in use of visual representation tools such as MS Visio Pro, PowerPoint
Ability to influence through outstanding interpersonal skills, collaboration, and negotiation skills
Ability to work well within a team environment, as well as independently
Bachelors degree or higher in Computer Science, Computer Engineering, Digital Forensics, Cybersecurity and/or related technical discipline.
Informal or formal leadership experience of managing Cybersecurity Response teams
Experience with RED/BLUE/PURPLE teaming exercises.
Industry specificcertifications Security+, CISSP, CISM, CASP, CEH, Pentest+ or equivalents,
CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP
Together with the University of Minnesota and University of Minnesota Physicians we have created M Health Fairview. M Health Fairview is the newly expanded collaboration among the University of Minnesota, University of Minnesota Physicians, and Fairview Health Services. The healthcare system combines the best of academic and community medicine — expanding access to world-class, breakthrough care through our 10 hospitals and 60 clinics.
Fairview Health Services (fairview.org) is an award-winning, nonprofit health system providing exceptional care across the full spectrum of health care services. Fairview is one of the most comprehensive and geographically accessible systems in the state, with 10 hospitals—including an academic medical center and long-term care hospital—serving the greater Twin Cities metro area.
Its broad continuum also includes 60 primary care clinics, specialty clinics, senior living communities, retail and specialty pharmacies, pharmacy benefit management services, rehabilitation centers, counseling and home health care services, medical transportation, an integrated provider network and health insurer PreferredOne. In partnership ...with the University of Minnesota, Fairview’s 32,000 employees and 2,400 affiliated providers embrace innovation to drive a healthier future through healing, discovery and education.