Security Incident Response Engineer II
Irving, TX

Job Description

HMS makes the healthcare system work better for everyone. We fight fraud, waste, and abuse so people have access to healthcare-now and in the future. Using innovative technology and powerful data analytics, we help government and commercial payers reduce costs, increase quality, and achieve regulatory compliance. We also help consumers take a more active role in their own health. Each year, we save our clients billions of dollars while helping people live healthier lives. At HMS, you will develop new skills and build your career in a dynamic industry while making a difference in the lives of others.

We are seeking a talented individual for a Security Incidents and Investigations Engineer III, who as part of the Information Security group, supports Post Incident Review and Remediation Management for cyber security incidents. The person will also support direction for Incident Response and consults on all aspects of Incident Management across the enterprise, and evaluates the risks associated with new and existing incident response and forensics analysis technologies as they relate to security objectives. A successful candidate in this role will work closely with the Security System Owners to identify Incident Response and forensics investigations. This is a highly technical and consultative position responsible for assisting with incident management and remediation coordination with various groups and teams across the enterprise.

Essential Responsibilities:

* Ensures that all data is protected from unauthorized modification, destruction and disclosure.
* Monitors all incident processes and investigative technologies for compliance to regulations and policies.
* Assists with the Incident Response processes for internal business units.
* Escalates Incident Response issues to management and other teams when appropriate; follows up on issues and the results of issue resolutions.
* Identifies proactive remediation measures to prevent future incidents.
* Keeps management informed of new Incident Response trends and Forensic Analysis emerging technology.
* Works to improve and document Incident Response procedures and standards.
* Provide recommendations for security technologies based on incident remediation and lessons learned.
* Manage Incident Response ticket queue

Non-Essential Responsibilities:

* Performs other functions as assigned

Knowledge, Skills and Abilities:

* At least 3 years of Incident Response experience
* At least 1 years of Forensic Analysis experience
* Demonstrated ability to appropriately utilize authority to influence and direct in a team environment
* Ability to identify underlying issues from numerous sources
* Excellent verbal and written communication skills to both technical staff and security business customers.
* Displays strong analytical skills to evaluate the most complex Incident Response requirements and respond with sound solutions.
* Displays time management skills to effectively and efficiently meet schedules and deadlines.
* Works with a heavy workload on multiple concurrent tasks.
* Filters relevant information from oral and written communications.
* Exercises good judgment as well as work cross functionally and assist with virtual teams as necessary.
* Understands how global events affects organization and acts accordingly.

Work Conditions and Physical Demands:

* Primarily sedentary work in a general office environment
* Ability to communicate and exchange information
* Ability to comprehend and interpret documents and data
* Requires occasional standing, walking, lifting, and moving objects (up to 10 lbs.)
* Requires manual dexterity to use computer, telephone and peripherals
* May be required to work extended hours for special business needs
* May be required to travel at least 10% of time based on business needs

Minimum Education:

* Bachelor's degree in Computer Science, Management Information Systems, or related field with minimum 4 years of experience required; Master's degree a plus

Certifications (Required/Desired):

* Certifications such as CISSP, GCIH, or CISM or equivalent desired

Minimum Related Work Experience:

* Good understanding of Incident Response processes and Forensic Analysis technologies
* Common knowledge of Intrusion Prevention Systems
* Common knowledge of Security Incident and Event Management Systems
* Common knowledge of Data Loss Prevention systems
* Common knowledge of Endpoint protection systems
* Knowledge of Microsoft Windows

Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time.

EOE including disability/veteran