System Security Engineer Iii
Novant Health Inc., Charlotte, NC Information Security Engineer III• Assisted with the identification and documentation of asset vulnerabilities for all of the PCI and DMZ network zones to exceed the compliance requirements and harden Novant’s Security posture.• Gathered near-term technical threat and vulnerability information (specific to span of control) from information sharing forums and sources to aid in remediation and awareness of developing system weaknesses.• Shared effectiveness of protection technologies with appropriate parties (internal) to raise awareness of security capabilities and benefits.• Executed tasks as directed by the enterprise Vulnerability Management Program to lower the risk level within Novant’s systems.• Executed tasks as directed by the Information Security Risk Management Strategy to aid in compliance and corporate security policies.• Provided technical assistance to the configuration of information systems to the principle of least functionality thus lowering the risk created within Access Management.• Aided with the establishment of incident alert thresholds (specific to span of control) for the Incident Response Center reducing the creation of false positives and expediting the awareness of critical incidents.• Aided information system owners with the remediation or mitigation of vulnerabilities and incidents.Technical Environment: Bomgar, Symantec -SEP - SEE - SPE, Qualys, Nessus, O365 DLP, Ubuntu Linux, Windows, Shell Programming