IT Security Specialist I

Donor Network West’s mission is to save and heal lives through organ and tissue donation for transplantation and research.

At Donor Network West, we're looking for people who embody our core values: passion, excellence, equity and inclusion, and relationships. We welcome diverse perspectives and foster an environment of collaboration and service.

POSITION SUMMARY

The Information Technology (IT) Security Specialist I defends and improves DNWest computer/network systems so that end users can accomplish DNWest’s business tasks securely across DNWest’s networks and infrastructure. The IT Security Specialist I serves as the initial investigator of cyber security issues, initiates communication and reporting to management, and collaborates with other IT staff to bolster DNWest’s technological systems. This role also participates in organizational quality improvement projects, continuous process improvement, and exhibits quality work practice to others by example.

ESSENTIAL JOB DUTIES AND RESPONSIBILITIES

• Monitor computer systems and respond to potential cyber threats.
• Sets up and maintains a routine monitoring regimen and routes all potential threats and breaches to management.
• Conducts initial investigations into suspicious activity/threats and raises issues to higher level SMEs and management.
• Identifies problem areas in a timely and accurate manner.
• Accurately documents security events for on-going reference and reporting.
• Identifies security vulnerabilities and sets up remediation projects to address.
• Review of penetration testing results and conducts remediations to address findings.
• Collaborate with the patching program team to assure all systems are up to date with security patches.
• From findings, recommends specific end user training to help prevent cyber security issues.
• Supports on-going end user training and serves as a reference for best practices in cyber security hygiene.
• Assists with the daily operations of the DNWest EDR system for endpoint devices.
• Will serve as point of contact for DNWest’s managed detection and response (MDR) service alerts and manage tickets.
• Actively monitors and responds to security tickets in ServiceDesk, incoming calls and/or emails, and walk-ups within established service level agreements (SLAs).
• Records Service Desk request problem-solving processes, including all successful and unsuccessful decisions made, and actions taken, through to final resolution.
• Assists in software releases and rollouts according to change management best practices.
• Supports IT equipment and processes within alternate business sites.
• Assists with research on security products in support management as requested.
• Aids in maintenance of business continuity and emergency response plans, maintain current knowledge of plan executables, and responds to crises in accordance with crisis response plans.
• Assists in installing and troubleshooting anti-malware software while ensuring that security practices are enforced.
• Will serve as a contributing member of the DNWest Cyber Security Team and meet weekly.
• Will attend monthly meetings with MDR service to assure actions are taken and that DNWest is in alignment with the MDR service.
• Keeps up to date with organ procurement organizations (OPOs) industry direction, guidance, and requirements. Health Insurance Portability and Accountability Act (HIPAA), Centers for Medicare and Medicaid Services (CMS), Federal Drugs Administration (FDA), United Network of Organ Sharing) UNOS, Association of Organ Procurement Organizations (AOPO), American Association of Tissue Banks (AATB), and Eye Bank Association of America (EBAA).
• Participates in and supports audit events as needed.
• Required to travel to alternate business sites as needed.
• Required to work flexible shifts to cover a twenty-four (24) hours workday.
• Required to work Saturday, Sunday, and Holiday shifts as needed and as scheduled.
• Required to work overtime (beyond eight (8) hour shift) as needed.

QUALIFICATIONS

• Working knowledge of a range of cyber security diagnostic utilities.
• Experience working in secure environments and supporting remote security tools.
• Hands-on breach and threat troubleshooting experience.
• Ability to configure queries and prompts for AI to search for threats and issues.
• Ability to read and understand technical manuals, procedural documentation, and OEM guides.
• Strong documentation skills.
• Ability to communicate and present information effectively and concisely within a team environment.
• Proactive and collaborative team player who can multitask with ease and uphold organizational core values.
• Must possess strong interpersonal, priority-setting, and strategic skills.
• Strong attention to detail, written and verbal communication skills.
• Thrives in a fast-paced dynamic environment and adjusts to new priorities as required.

EDUCATION AND EXPERIENCE

• Completion of 12th grade or GED equivalent required.
• Required: Minimum one (1) year of work experience with cyber security.
• Preferred: Work experience in a security operations center (SOC).
• Preferred: Work experience with Microsoft 365 environments.
• Preferred: Work experience with Wide Area Networks and Cloud/SaaS security.
• Preferred: Certificate CompTIA Cybersecurity Analyst (CySA+) or equivalent.
• Preferred: Knowledge of both mobile and desktop security practices.

Provided compensation data is subject to change based on location and work status. Salary data provided by third party sites do not accurately reflect our pay structure.