Cybersecurity Engineer – Incident Response, Siem

Work Schedule :

This is a full-time, 40 hours per week position scheduled to work Monday through Friday, with core hours between the hours of 8:00 AM – 5:00 PM plus an afterhours oncall rotation. Applicants hired into this position can work remotely from most states. This will be discussed during the interview process.

Be part of something remarkable

Join the #1 hospital in Wisconsin and ensure enterprise security!

We are seeking a Cybersecurity Engineer who has:

• A desire for hands on administration of security tools and solutions.
• An appreciation for standardization and automation.
• Strong knowledge of information security principles and practices.
• A sound comprehension of Incident Response and SIEM solutions, like LogRhythm.
• The ability to work independently in a remote work from home position and cross-functionally with operational leaders and IS partners.
• Experience analyzing and learning new technologies and methods.
• An interest in risk assessment and mitigation to minimize enterprise risk exposure and ensure business continuity.

At UW Health, you will have :

• An excellent benefits package, including health and dental insurance, paid time off and retirement plans.
• Tuition benefits eligibility - UW Health invests in your professional growth by helping pay for coursework associated with career advancement.
• Options for a variety of schedules and shifts that offer flexibility and allow for work-life balance.
• Access to UW Health’s Wellness Options at Work that support employee/family well-being.

Education :

Minimum – Associate Degree in Healthcare, Information Technology, Business, or related field (2 years of relevant experience may be considered in lieu of degree in addition to experience below)

Preferred – Bachelor’s or Master’s degree in Computer Science, Information Systems, Healthcare, Cybersecurity, Information Technology, Engineering, Business, or related field preferred.

Work Experience :

Minimum –

• Demonstrated success in use of vulnerability scanners, SIEM, cloud security tools, identity access management systems, encryption technologies, firewall management, IDS/IPS, URL filtering, or endpoint detection and response tools.
• Demonstrated success assessing, testing, and implementing security controls

Preferred –

• 5 years of progressively responsible experience in a healthcare setting, using technologies such as Microsoft 365, Azure Cloud, Active Directory, Cisco and Palo Alto Product Lines, VPN, Intrusion Prevention, Detection and Response, IAM & IG, PAM, LogRhythm/SIEM, Federation/SAML, or Qualys/Vulnerability Management

Licenses and Certifications :

Minimum – None

Preferred – Advanced certifications such as CISSP, CEH, CISM, CISA, CRISC, CCSP, and/or specific training and certification in Cloud, Microsoft 365, SIEM, MDM, Federation, IAM & IG, PAM, or other information security specialty

Our Commitment to Diversity, Equity, and Inclusion

UW Health is committed to being a diverse, equitable, inclusive and anti-racist workplace and is an Equal Employment Opportunity, Affirmative Action employer. Our integrity shines through in patient care interactions and our daily work practices as we work to embrace the knowledge, unique perspectives and qualities each employee and faculty member brings to work each day. Applications from Black, Indigenous and People of Color (BIPOC) individuals, LGBTQ+ and non-binary identities, women, persons with disabilities, military service members and veterans are strongly encouraged. EOE, including disability/veterans.

UW Hospital and Clinics benefits