Senior Information Security Operations Engineer

For more information about Total Rewards, visit https://sanfordcareers.com/benefits

Sanford Health

Sanford Health is one of the largest and fastest-growing not-for-profit health systems in the United States. We're proud to offer many development and advancement opportunities to our nearly 50,000 members of the Sanford Family who are dedicated to the work of health and healing across our broad footprint.

We offer multiple health plan options allowing you flexibility to choose what fits best for your family.

With our paid time off program we encourage you to take time away to re-charge and re-fresh.

A large assortment of voluntary benefits allow you to customize your benefit package.

Eligible employees receive base life insurance and disability at no cost to help with financial needs.

We provide a generous employer match contribution while you put away money for your retirement.

Employees get access to a wide selection of discounts/perks both local and nationwide.

Careers With Purpose

Sanford Health is one of the largest and fastest-growing not-for-profit health systems in the United States. We're proud to offer many development and advancement opportunities to our nearly 50,000 members of the Sanford Family who are dedicated to the work of health and healing across our broad footprint.

Facility: 501 Place Bldg
Location: Fargo, ND
Address: 501 4th St N, Fargo, ND 58102, USA
Shift: Day
Job Schedule: Full time
Weekly Hours: 40.00
Salary Range: $40.00 - $66.00
Pay Info: Pay starts at $40 and increases according to years of applicable experience.

The Senior Information Security Operations Engineer will be a member of the Vulnerability Management team and responsible for overseeing and executing the identification, analysis, prioritization, and remediation tracking of vulnerabilities across the enterprise. This role acts as a subject matter expert (SME) and escalation point for complex vulnerability scenarios and supports the organization's risk reduction efforts by improving its security posture.

Key Responsibilities:

Execute the enterprise vulnerability management program, including internal and external scanning, risk classification, and reporting.

Perform regular and ad-hoc vulnerability scans across servers, endpoints, network devices, applications, and cloud assets.

Analyze scan results, validate findings, and eliminate false positives.

Prioritize vulnerabilities based on risk score, asset criticality, threat intelligence, and business impact.

Collaborate with application, infrastructure owners, and other applicable teams to review, interpret, and explain findings.

Incorporate threat intelligence to contextualize vulnerabilities.

Work closely with IS Governance teams to assess risk impact and document findings in exception or POA&M formats.

Create and maintain dashboards, metrics, and executive-level reports on vulnerability trends and status.

Author and maintain documentation, including SOPs, technical standards, workflows, and remediation playbooks.

Job Summary

Responsible for the technical and operational delivery of enterprise cybersecurity; focusing on the development and implementation of processes and tools that support Security Operations’ threat prevention, threat hunting, vulnerability assessments, and incident response. Also responsible for minimizing identified threats and risks to the organization through collaboration with other Information Security and Sanford technological groups. Perform and coordinate, with other team members, real-time and forensic log and EDR monitoring and analysis to provide network, data, and asset security for Sanford Health. Complete, configure, and tune vulnerability assessments and report results to application and asset owners. Provide consulting services to owners relating to response activities. Perform, lead, and coordinate on Incident Response activities including the collection, preservation, and interpretation of digital evidence.

Build, administer, and support the IS Security Operations tools, processes, and services. Identify and complete improvements and metrics to Security Operations processes and services. Manage the IS Security Operations ticket queue. Prioritize and complete tickets according to impact to Sanford Health business functions. Provide security consulting services to other Sanford Health groups.

Mentor other Security Operations team members on tools, processes, and Sanford Health areas. Coordinate and participate in activities with other IT Security groups by providing aid and consulting when needed. Works under limited guidance due to previous experience/breadth of knowledge of processes and organizational knowledge. Acts independently to determine methods and procedures on new assignments. Regularly presented with new assignments and projects that require the application of independent judgement/interpretation of policies/practices. Checks own work and the work of other team members.

Qualifications

Bachelor’s degree required, in lieu of education, leadership may consider an Associates degree plus 3 years of applicable experience in computer science, cyber security or an information technology related field.

Minimum of 4 years' experience working in Cyber Security required. Advanced security training is desired. Strong working knowledge of the information security standards and procedures including HIPAA and PCI.

Security Certifications are desired.

Sanford Health offers an attractive benefits package for qualifying full-time and part-time employees. Depending on eligibility, a variety of benefits include health insurance, dental insurance, vision insurance, life insurance, a 401(k) retirement plan, work/life balance benefits, and a generous time off package to maintain a healthy home-work balance. For more information about Total Rewards, visit https://sanfordcareers.com/benefits .

Sanford is an EEO/AA Employer M/F/Disability/Vet. If you are an individual with a disability and would like to request an accommodation for help with your online application, please call 1-877-673-0854 or send an email to talent@sanfordhealth.org .

Sanford Health has a Drug Free Workplace Policy. An accepted offer will require a drug screen and pre-employment background screening as a condition of employment.