Manager, Endpoint Security Engineering

As the Endpoint security engineering manager, you will play a role in the success of the security operations program by providing expertise and management of our managed services provider, on topics surrounding technical infrastructure, process, design, assessment, implementation, awareness, and governance. The Endpoint Security Engineering Manager will provide technical and operational security expertise to cross-functional teams, serving as a subject matter expert and leader as part of the greater security team responsible for securing the enterprise information and systems by helping to determine and implement security requirements across the enterprise. Finally, this role is expected to be a key player in these processes by leading our outsourced partners in planning, designing, and documenting security systems and assisting in preparing security standards, policies, and procedures to help ensure best practices.

• Operate and Maintain
• Systems Analysis
• Skill in assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.).
• Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
• Knowledge of countermeasure design for identified security risks.
• Knowledge of network design processes, to include understanding of security objectives, operational objectives, and trade-offs.
• Skill in evaluating the adequacy of security designs.
• Knowledge Management
• Knowledge of EDR/XDR systems such as Cortex, Crowdstrike, SentinelOne, etc.
• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
• Knowledge of cybersecurity and privacy principles.
• Knowledge of cyber threats and vulnerabilities.
• Either directly or in collaboration with MSP, train and manage SOC Staff Tier 1 and 2.
• Analyze
• All-Source Analysis
• Knowledge of the basics of network security (e.g., encryption, firewalls, authentication, honey pots, perimeter protection).
• Knowledge of intelligence frameworks, processes, and related systems.
• Skill in developing or recommending analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists.
• Skill in identifying cyber threats which may jeopardize organization and/or partner interests.
• Skill in preparing and presenting briefings.
• Oversee and Govern
• Strategic Planning and Policy
• Ability to manage outsourced security vendors.
• Ability to build relationships with internal IT teams.
• Knowledge of current and emerging cyber technologies.
• Skill in developing workforce and position qualification standards.
• Skill in using manpower and personnel IT systems.
• Ability to develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities.
• Ability to leverage best practices and lessons learned of external organizations and academic institutions dealing with cyber issues.
• Performs other position appropriate duties as required in a competent, professional, and courteous manner.

Preferred Certifications

• Preferred, not required:
• Certified Information Systems Security Professional (CISSP) certification
• Certified Information Security Manager (CISM) certification
• CompTIA SecurityX (Formerly CASP+)
• Other relevant security certifications

Minimum Qualifications

• Bachelor's or 4 years of work experience above the minimum qualification
• 7 Years of Experience

As a health care system committed to improving the health of those we serve, we are asking our employees to model the same behaviours that we promote to our patients. As of January 1, 2012, Baylor Scott & White Health no longer hires individuals who use nicotine products. We are an equal opportunity employer committed to ensuring a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.