Manager, IT Security - Central (H)

Current Employees:

If you are a current Staff, Faculty or Temporary employee at the University of Miami, please click here to log in to Workday to use the internal application process. To learn how to apply for a faculty or staff position using the Career worklet, please review this tip sheet.

The University of Miami Health System, "UHealth", IT Department has an exciting opportunity for a Manager, IT Security. The Manager, IT Security of incident response operations helps protects UHealth’s computers, networks, and data against security threats, and helps orchestrate the security incident response activities. The manager will, in an ongoing basis, assess security controls to identify, prevent, and recover from cybersecurity attacks. The Manager, IT Security facilitates the attainment of higher levels of customer service by directing internal teams in the execution of IT initiatives.  

• Responsible for the incident response program.

• Leads the security incident response operations, monitoring and incident response activities.

• Review and update incident response standards, policies, and procedures.

• Performs necessary investigation, analysis, and evaluation to determine project feasibility.

• Develops and/or evaluates the risk and impact of new and existing systems, applications, and technology solutions to determine the appropriate the appropriate security controls are implemented commensurate with the risk.

• Documents root cause analysis, security events, and incidents.

• Serve as a leader for the Cybersecurity Incident Response Team (CSIRT).

• Manages highly complex projects.

• Performs routine duties independently.

• Forms committees as necessary to discuss and determine project plans and objectives.

• Develops or assists in the development of work plans, task sequencing, and the extent to which tasks may be performed concurrently.

• Recommends plans for user and resource management approvals.

• Recommends hardware and software needed for optimum solution to business problems.

• Plans independently the full range of security controls for the protection of information assets.

• May participate in the interviewing, hiring and performance appraisals of lower-level people.

• Performs other duties as assigned.

This list of duties and responsibilities is not intended to be all-inclusive and may be expanded to include other duties or responsibilities as necessary.

MINIMUM QUALIFICATIONS:                                                                                                    

• Bachelor's degree from an accredited college or university in Computer Science, Mathematics, Statistics, or equivalent or a related field. Master's degree preferred.

• Cloud Computing Certification

• CISSP or related GIAC certifications

• 12+ years of Information Security experience or equivalent combination of education and work experience.

• Prior experience in a 24x7x365 SOC operations environment

• 5+ years experience in Incident Response or similar role in a medium or large organization. Experience in Healthcare is a plus.

• Prior people management/leadership experience with proven experience to lead, motivate and direct a workgroup.

• Experience with Unix/Linux, or work relating to OS internals or file level forensics.

• Ability to work in a high-pressure environment.

• Strong project management, presentation, and communication skills

• Knowledge of business and management principles.

• Knowledge of IT project management and change control principles.

• Knowledge and expertise with the MITRE Attack framework.

• Ability to direct, manage, implement, and evaluate department operations.

• Ability to establish department goals, and objectives that support the strategic plan.

• Ability to effectively plan, delegate and/or supervise the work of others.

• Ability to lead, motivate, develop, and train others.

• Ability to triage events, escalations and incidents to determine remediation and resolution actions

• Ability to coordinate appropriate response activities across teams or directly with stakeholders to rapidly remediate potential threats

• Initiative and project-related support to provide Security Operations and Incident Response perspective and subject matter expertise

• Demonstrated experience in computer security related disciplines, including but not limited to the following subject areas: software vulnerabilities and exploitation, host forensics, malware analysis, network traffic analysis.

Any appropriate combination of relevant education, experience and/or Certifications may be considered.

#LI-AS1

The University of Miami offers competitive salaries and a comprehensive benefits package including medical, dental, tuition remission and more.

UHealth-University of Miami Health System, South Florida's only university-based health system, provides leading-edge patient care powered by the ground breaking research and medical education at the Miller School of Medicine. As an academic medical center, we are proud to serve South Florida, Latin America and the Caribbean. Our physicians represent more than 100 specialties and sub-specialties, and have more than one million patient encounters each year. Our tradition of excellence has earned worldwide recognition for outstanding teaching, research and patient care. We're the challenge you've been looking for.

Patient safety is a top priority. As a result, during the Influenza ("the flu") season (September through April), the University Of Miami Miller School Of Medicine requires all employees who provide ongoing services to patients, work in a location (all Hospitals and clinics) where patient care is provided, or work in patient care or clinical care areas, to have an annual influenza vaccination. Failure to meet this requirement will result in rescinding or termination of employment.

The University of Miami is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities are encouraged to apply. Applicants and employees are protected from discrimination based on certain categories protected by Federal law. Click here for additional information.

Job Status:

Employee Type:

Pay Grade: