IS Enterprise Security Engineer (Email Protection)

Department:
Information Security Administration

-----

Staff
Position Title:
IS Enterprise Security Engineer (Email Protection)
Job Family Group:
Professional Staff
Job Description Summary:
The Enterprise Security Engineer (Email Protection), a part of the Office of Information Security (OIS), provides technical leadership to deliver KUMC's enterprise email security architecture, engineering, implementation, and go-forward support operations. This role is action and solution oriented with a focus on email protection, related security risk assessments, and the security of related collaboration technologies. The incumbent works closely with OIS leadership and the security operations team to develop and implement a comprehensive information security program.
Job Description:

Position Summary

The Enterprise Security Engineer (Email Protection), a part of the Office of Information Security (OIS), provides technical leadership to deliver KUMC's enterprise email security architecture, engineering, implementation, and go-forward support operations. This role is action and solution oriented with a focus on email protection, related security risk assessments, and the security of related collaboration technologies. The incumbent works closely with OIS leadership and the security operations team to develop and implement a comprehensive information security program.

An ideal candidate has a passion for information security, problem solving, documentation, communication, organization, collaboration, and attention to detail. This position participates in the implementation and integration of risk management procedures.

Key Roles and Responsibilities

• Manage the planning and implementation of process and technology defenses against threats to electronic, information, and cyber-related assets.
• Implement and enforce policies, procedures, standards, and technology for protecting enterprise information and communications.
• Assist in the design, implementation, management, and auditing of enterprise email and collaboration systems' security architecture.
• Assist with policies, procedures, and standards related to regulatory compliance requirements.
• Maintain a high degree of knowledge within the cyber security domain and knowledge specific to the security of email and collaboration technologies.
• Provide education, training, and support to various enterprise stakeholders about security issues as they relate to email and collaboration tools.
• Detect, investigate, document, and report actual or potential information security violations and other inappropriate use(s).
• Provide details and direct support to OIS leadership related to investigations and e-discovery matters, as requested.
• Determine, develop, plan, test, and implement email security requirements for the enterprise.
• Build and navigate business and technical relationships which add significant value to the department.
• Determine and develop acceptable solutions and approaches to eliminate malicious and unwanted email. 
• Develop and continuously update detailed documentation related to enterprise email and collaboration security systems and architecture.
• Act as an advocate for established information security-related procedures, policies, and processes.
• Perform daily monitoring and maintenance of enterprise email and collaboration solutions and related technologies.
• Provide support and guidance on issues escalated from the security operations team or technical partners.
• Perform periodic compliance audits to assure that enterprise email and collaboration systems adhere to security requirements and policies.
• Work with the OIS leadership to develop strategies and plans to enforce security requirements and address identified risks.
• Provide regular status of program and associated metrics related to the enterprise email security and collaboration technologies to OIS leadership.
• All other duties, tasks, and responsibilities as assigned.

Required Qualifications

• Graduation from an accredited four-year college or university with a degree or major course work in computer science, telecommunications, networking, engineering or other closely related technical field.
• Four years of progressive work experience within information technology; with two years of progressive and direct work experience within information security.
• Experience with managing and implementing technical solutions that require involvement from multiple team members across the organization.
• Knowledge of information security policies, best practices, protocols, and procedures.
• Experience working through the full life cycle of enterprise email, collaboration solutions, and related technologies in large complex enterprises.
• Experience with architecture, implementation, and operation of enterprise Data Loss Prevention (DLP) technologies.
• Ability to communicate in a clear and understandable way while being polite and friendly through written and verbal means.
• Demonstrate a level of integrity and judgment concerning privacy issues.
• Demonstrate an ability to maintain a well-reasoned, objective, and independent point of view.
• Seasoned ability to manage multiple high priority efforts or competing priorities with flexibility to adjust to a continually changing environment.
• A self-starter that works well with others and can also work independently while actively seeking ways to improve current processes through continuous learning.
• CISSP, CISM or GIAC certification (candidates not certified will be expected to achieve certification within 12 months of hire).
• Required to participate in after-hours upgrades and troubleshooting, as needed.
• Required to be available and participate in the OIS on-call rotation.

Preferred Qualifications

• Master’s degree or higher in a related technical area from an accredited institution. 
• Four years of information security work experience with a broad exposure to enterprise email and collaboration technologies. 
• Two years of experience with architecture, implementation, and operation of enterprise Data Loss Prevention (DLP) technologies.
• Demonstrated experience with Mimecast, ProofPoint, or other similar commercial enterprise email security technologies.
• Related work experience in a higher education or an academic healthcare organization.
• Knowledge of and experience with implementing technical aspects of compliance standards and regulations such as HIPAA, FERPA, GLBA, PCI DSS, etc.
• Knowledge of and experience with implementing an information security framework based on either NIST CSF, ISO 17799, NIST 800-30, COBIT, Baldrige Cybersecurity Excellence Builder (BCEB), etc.
• Experience with McAfee security tools or products.
• Familiar with cloud architecture(s) and concepts.
• Experience with risk assessment practices.
• One of more related professional certifications such as CCNA, CCNA Security, CCNP, CCIE, CISSP, CISA, CEH, CSSLP, CHFI, CCSP, GCIH, GCIA, CISA, etc.

KUMC is an AA/EO Employer and does not discriminate on the basis of sex, including marital status, race/ethnicity, color, age, sexual orientation, gender expression, gender identity, national origin, creed, religion, ancestry, disability status as a Vietnam-era veteran, special disabled veteran, recently separated veteran or other protected veteran, or genetic testing and screening information.

Employee Type:
Regular
Time Type:
Full time
Pay Rate Type:
Salary
Pay Grade:
A15
Pay Range:

Minimum

86098

Midpoint

112032

Maximum

137965

Department:
Information Security Administration

-----

Staff
Position Title:
IS Enterprise Security Engineer (Email Protection)
Job Family Group:
Professional Staff
Job Description Summary:
The Enterprise Security Engineer (Email Protection), a part of the Office of Information Security (OIS), provides technical leadership to deliver KUMC's enterprise email security architecture, engineering, implementation, and go-forward support operations. This role is action and solution oriented with a focus on email protection, related security risk assessments, and the security of related collaboration technologies. The incumbent works closely with OIS leadership and the security operations team to develop and implement a comprehensive information security program.
Job Description:

Position Summary

The Enterprise Security Engineer (Email Protection), a part of the Office of Information Security (OIS), provides technical leadership to deliver KUMC's enterprise email security architecture, engineering, implementation, and go-forward support operations. This role is action and solution oriented with a focus on email protection, related security risk assessments, and the security of related collaboration technologies. The incumbent works closely with OIS leadership and the security operations team to develop and implement a comprehensive information security program.

An ideal candidate has a passion for information security, problem solving, documentation, communication, organization, collaboration, and attention to detail. This position participates in the implementation and integration of risk management procedures.

Key Roles and Responsibilities

• Manage the planning and implementation of process and technology defenses against threats to electronic, information, and cyber-related assets.
• Implement and enforce policies, procedures, standards, and technology for protecting enterprise information and communications.
• Assist in the design, implementation, management, and auditing of enterprise email and collaboration systems' security architecture.
• Assist with policies, procedures, and standards related to regulatory compliance requirements.
• Maintain a high degree of knowledge within the cyber security domain and knowledge specific to the security of email and collaboration technologies.
• Provide education, training, and support to various enterprise stakeholders about security issues as they relate to email and collaboration tools.
• Detect, investigate, document, and report actual or potential information security violations and other inappropriate use(s).
• Provide details and direct support to OIS leadership related to investigations and e-discovery matters, as requested.
• Determine, develop, plan, test, and implement email security requirements for the enterprise.
• Build and navigate business and technical relationships which add significant value to the department.
• Determine and develop acceptable solutions and approaches to eliminate malicious and unwanted email. 
• Develop and continuously update detailed documentation related to enterprise email and collaboration security systems and architecture.
• Act as an advocate for established information security-related procedures, policies, and processes.
• Perform daily monitoring and maintenance of enterprise email and collaboration solutions and related technologies.
• Provide support and guidance on issues escalated from the security operations team or technical partners.
• Perform periodic compliance audits to assure that enterprise email and collaboration systems adhere to security requirements and policies.
• Work with the OIS leadership to develop strategies and plans to enforce security requirements and address identified risks.
• Provide regular status of program and associated metrics related to the enterprise email security and collaboration technologies to OIS leadership.
• All other duties, tasks, and responsibilities as assigned.

Required Qualifications

• Graduation from an accredited four-year college or university with a degree or major course work in computer science, telecommunications, networking, engineering or other closely related technical field.
• Four years of progressive work experience within information technology; with two years of progressive and direct work experience within information security.
• Experience with managing and implementing technical solutions that require involvement from multiple team members across the organization.
• Knowledge of information security policies, best practices, protocols, and procedures.
• Experience working through the full life cycle of enterprise email, collaboration solutions, and related technologies in large complex enterprises.
• Experience with architecture, implementation, and operation of enterprise Data Loss Prevention (DLP) technologies.
• Ability to communicate in a clear and understandable way while being polite and friendly through written and verbal means.
• Demonstrate a level of integrity and judgment concerning privacy issues.
• Demonstrate an ability to maintain a well-reasoned, objective, and independent point of view.
• Seasoned ability to manage multiple high priority efforts or competing priorities with flexibility to adjust to a continually changing environment.
• A self-starter that works well with others and can also work independently while actively seeking ways to improve current processes through continuous learning.
• CISSP, CISM or GIAC certification (candidates not certified will be expected to achieve certification within 12 months of hire).
• Required to participate in after-hours upgrades and troubleshooting, as needed.
• Required to be available and participate in the OIS on-call rotation.

Preferred Qualifications

• Master’s degree or higher in a related technical area from an accredited institution. 
• Four years of information security work experience with a broad exposure to enterprise email and collaboration technologies. 
• Two years of experience with architecture, implementation, and operation of enterprise Data Loss Prevention (DLP) technologies.
• Demonstrated experience with Mimecast, ProofPoint, or other similar commercial enterprise email security technologies.
• Related work experience in a higher education or an academic healthcare organization.
• Knowledge of and experience with implementing technical aspects of compliance standards and regulations such as HIPAA, FERPA, GLBA, PCI DSS, etc.
• Knowledge of and experience with implementing an information security framework based on either NIST CSF, ISO 17799, NIST 800-30, COBIT, Baldrige Cybersecurity Excellence Builder (BCEB), etc.
• Experience with McAfee security tools or products.
• Familiar with cloud architecture(s) and concepts.
• Experience with risk assessment practices.
• One of more related professional certifications such as CCNA, CCNA Security, CCNP, CCIE, CISSP, CISA, CEH, CSSLP, CHFI, CCSP, GCIH, GCIA, CISA, etc.

KUMC is an AA/EO Employer and does not discriminate on the basis of sex, including marital status, race/ethnicity, color, age, sexual orientation, gender expression, gender identity, national origin, creed, religion, ancestry, disability status as a Vietnam-era veteran, special disabled veteran, recently separated veteran or other protected veteran, or genetic testing and screening information.

Employee Type:
Regular
Time Type:
Full time
Pay Rate Type:
Salary
Pay Grade:
A15
Pay Range:

Minimum

86098

Midpoint

112032

Maximum

137965