Information Security Engineer & Architect Manager

SUMMARY

Imaging Endpoints (IE) is an Imaging Technology and Imaging Clinical Research Organization (iCRO). We are passionately focused on our vision to Connect Imaging to the CureTM. Everything we do is aligned with this singular purpose. We work every day excited to advance imaging science, technology, and services to bring curative technologies to humankind. We have supported many of the most impactful new drug approvals in oncology, and we are seeking the most talented individuals globally that are passionate in their desire to assist us in our mission to customize each clinical trial’s imaging to optimize the opportunity to demonstrate efficacy.

Imaging Endpoints is based in Scottsdale, Arizona, with offices in Cambridge, Massachusetts; London, UK; Leiden, Netherlands; Basel, Switzerland; Hyderabad, India and Shanghai, China. We are an affiliate of HonorHealth, one of the largest healthcare systems nationally, and Scottsdale Medical Imaging Limited (SMIL/RadPartners), the largest private radiology group in the United States. We are recognized as the world’s largest and most preeminent iCRO in oncology.

The Information Security Engineer & Architect Manager is primarily responsible for the IE Enterprise Cybersecurity Program and Security Operations Center. The Information Security Engineer & Architect Manager is expected to architect, design, and implement an Information Security solution for IE, including technology, processes, and people. The candidate needs to have extensive knowledge of current Cybersecurity frameworks (e.g., NIST, CIS, ISO) as well as practical working knowledge of network devices, Active Directory, security, and SIEM tools. The Information Security Engineer & Architect Manager is expected to work closely with vendors that currently provide support and hosting for IE’s computing environments. The Information Security Engineer & Architect Manager shall show initiative and enthusiasm in their work and effectively work in a fast-paced team environment. This role is hands-on; the manager must be analytical, detail-oriented, results-oriented, and able to manage risk and lead teams.

RESPONSIBILITIES

• Work with Innovation and IT Management to set Information Security (InfoSec) team priorities, timelines, and strategies to support business objectives.
• Manage, coordinate, and distribute the work and activities among the Information Security team and Innovation and IT/InfoSec Managed Service Providers; provide supervision to ensure that progress happens as planned.
• Manage InfoSec staffing including recruitment, supervision, scheduling, development, and disciplinary actions.
• Mentor and coach the InfoSec team; identifying training requirements. Responsible for information security alerts, security breaches, infections; including investigation, countermeasures, and recovery. Work with IE vendors as needed.
• Responsible for incident management processes to track and report security alerts.
• Architect, research, design, and lifecycle manage a security framework that will proactively and reactively identify and respond to information security threats.
• Produce security investigations, countermeasures, policy breaches incident reports in accordance with the IE incident procedure(s).
• Perform problem management on security incidents to identify risk areas and produce plans for closure.
• Regularly audit the environment for compliance and security.
• Document and update policies and procedures in all aspects of the Innovation and IT environment related to security.
• Ensure network design, server hardening, firewall protection, and data protection are compliant with best practices and current Cybersecurity standards. Ensure practices align with NIST, HIPAA/HITECH, and GDPR.
• Review solutions to ensure that they meet IE policies and best practices.
• Participate in diagnosis and root cause analysis of InfoSec incidents.
• Provide after-hours support.
• Other duties as assigned.

EDUCATION AND EXPERIENCE

• Bachelor’s degree in IT, computer science, or a related field, is a requirement.
• Minimum of 8 years of experience in IT Operations.
• Minimum of 5 years of experience in IT security.
• Minimum of 3 years of experience in system administration.
• Minimum of 3 years of experience in network administration.

SKILLS

• Knowledge of Windows Server and Windows 10 Operating Systems.
• Advanced knowledge of networking and related security technology: Intrusion detection, URL-filtering, Web-proxies, DNS, etc.
• Advanced Active Directory technology including global policies, synchronization, federation, SAML, and IAM integration.
• Advanced understanding of NIST and HIPAA/HIPAA security requirements.
• Knowledge of O365 security, including Mobile Security Management.
• Knowledge of AWS services.
• Knowledge of ITIL.
• Knowledge of SIEM tools and technology.
• Knowledge of Security Center Operations and procedures.
• Great analytical skills.
• Customer service attitude support skills.
• Good communication skills.

IMAGING ENDPOINTS’ TEAM CHARACTERISTICS

• Passion to Connect Imaging to the Cure^TM and pursue a meaningful career by improving the lives of cancer patients through imaging.
• Strong desire to be part of a dynamic, global team working closely together and growing year after year in a rewarding environment to help humanity through imaging.
• Commitment and caring for our fellow team members, their families, and the communities IE serves – see more information about Caring Endpoints at .
• Integrity and high ethical standards; we always do the right thing.
• High intellect and ingenuity; we enjoy solving problems, finding a better way, and the challenge of making a difference by improving lives.
• Structured, organized, detail-oriented, and self-motivated; we approach each day with a detailed plan and excitement to accomplish the day’s objectives while striving to improve ourselves and IE.
• Accountable; we do what we say and communicate effectively to meet deadlines; we enjoy advancing clinical trials, helping patients, and celebrating success.
• High standard for excellence; we proof our own work, hold high standards for ourselves and our team, and always prioritize quality above all else.

PHYSICAL REQUIREMENTS

While performing the duties of this job, the employee is regularly required to use hands to finger, handle, or feel; reach with hands and arms and talk and hear. The employee is frequently required to sit. Specific vision abilities required by this job include close vision, color vision, and ability to adjust focus.

Travel: At least 10% (Domestic and/or International).