Security Operations Engineer

Information Technology – Impacting Lives

At NewYork-Presbyterian Hospital, Information Technology is at the forefront of our patient experience. As one of the top hospitals in the Nation (U.S. News & World Report), we are committed to excellence in

patient care, research, education and community service. Innovative technology, such as telehealth, remote patient monitoring and robotics, drive our initiatives addressing large-scale challenges that will yield better outcomes for patients and their families. Join our team to develop your career while creating solutions and services that will improve the health and well-being of the communities we serve. Start your journey with us today!.

The Security Operations Engineer operates and maintains the InfoSec team’s portfolio Network Security, Security Event monitoring and Incident response. Additional tasks includes but not limited to Architecting and Managing remote access solution, forensic recovery/support, event management, spam investigation, threat feed management, proactive defense, network sensor auditing, and security event management and SASE VPN management.  This is a multi-dimensional role, partnering closely with peer teams inside the Information Security department, and business partners across a large, multi-campus healthcare organization.  These partnerships ultimately result in an enhanced defense posture and proactive development of secure, robust solutions across the organization.

Essential Job Duties

• Responsible for the daily duties associated with NYP’s Security Operations team including the extension of services provided to all of NYP’s campus and regional affiliates for Security Monitoring and Incident Response.
• Implements and supports Remote Access Solution. 
• Implements and supports the SIEM tool, to include the inclusion of data sources and any applicable monitoring agents.
• Implements and supports the Security event management platform to include all correlation and automation capabilities for security functions.
• Implements and supports web security platforms, the threat prevention system, and other network-based sensors as required.
• Review daily threat feeds, host alarms, cloud based reporting, and similar information to proactively mitigate threats
• Collects and disseminates reports, metrics, and other indicators of event and incident management functions.
• Use SOAR to enhance SOC efficiency
• May work in multiple phases of systems and applications analysis and considers the business implications of the application of technology to the current business environment.

Core Qualifications

• Minimum  3+ years of experience in a Security/Network Operations Center (SOC) environment
• Deep understanding of TCP/IP, DNS, HTTP/S, routing protocols, and general network architecture
• Proficiency in managing and configuring firewalls (e.g., Palo Alto, Fortinet, Cisco ASA)
• Hands-on experience with SIEM tools (e.g., Splunk, QRadar, LogRhythm) and log analysis
• Strong familiarity with security technologies: IDS/IPS, endpoint protection, DLP, VPN, proxy systems
• Knowledge of incident response frameworks and threat hunting methodologies
• Experience with scripting and automation techniques
• Comfortable working in a fast-paced, mission-critical environment

Technical Expertise

• Ability to analyze and respond to network, application, and security events
• Skilled in packet inspection and traffic flow analysis for forensic investigation
• Experience with vulnerability assessment tools (e.g., Nessus, Qualys) and remediation practices
• Familiarity with security compliance standards (e.g., HIPAA, NIST, ISO 27001, PCI-DSS)

Preferred Criteria

• Bachelor’s degree in computer science, Information Security, or related field (or equivalent experience)
• CCNA, CompTIA Network Security+  /CEH/GIAC , PCNSE, GMON, GPEN
• Functional and practical experience with scripting and automation techniques
• Knowledge and experience with network security platforms including SIEM, firewalls, intrusion detection and prevention, web proxies and internet content filtering

Required Criteria

• Bachelor’s degree in a technical or engineering discipline; or equivalent experience
• At least 3-5 years or equivalent of technical experience in an IT related field

“May require occasional on-site presence; therefore, should live within a commutable distance.  No relocation assistance available.”

Join a healthcare system where employee engagement is at an all-time high. Here we foster a culture of respect, belonging, and inclusion. Enjoy comprehensive and competitive benefits that support you and your family in every aspect of life. Start your life-changing journey today.

Please note that all roles require on-site presence (variable by role). Therefore, all employees should live within a commutable distance to NYP.

NYP will not reimburse for travel expenses.

__________________

• 2024 “Great Place To Work Certified”
• 2024 “America’s Best Large Employers” – Forbes
• 2024 “Best Places to Work in IT” – Computerworld
• 2023 “Best Employers for Women” – Forbes
• 2023 “Workplace Well-being Platinum Winner” – Aetna
• 2023 “America’s Best-In-State Employers” – Forbes
• “Silver HCM Excellence Award for Learning & Development” – Brandon Hall Group

NewYork-Presbyterian Hospital is an equal opportunity employer.

Salary Range:

It all begins with you. Our amazing compensation packages start with competitive base pay and include recognition for your experience, education, and licensure. Then we add our amazing benefits, countless opportunities for personal and professional growth and a dynamic environment that embraces every person. Join our team and discover where amazing works.