IT Security Engineer

Computer/Network Security;General/Other: IT/Software Development PREMERA. Applying innovation and strategy to create leading-edge health coverage and benefit solutions for our members. Premera’s culture promotes individual development, fosters innovation, and rewards success. We are creative, strategic thinkers who use our talents to fulfill our mission of creating peace of mind for our members. First established in 1933, the Premera family of health-care companies is headquartered in Washington and serves over 1.5 million members in several Western States. Our unique value proposition is built on a strong local presence and national capabilities. If you would like to apply your skills and experience to create health-care solutions, consider the following position: Job Summary: Ensure consistent security of the enterprise network, including the planning, design, installation, maintenance, management and coordination of corporate networks and data stores, which may include: LAN/WAN, Internet, relational databases, Risc-based systems, OS/390, trading partner connectivity, remote workforce networking, local networks, metropolitan networks and wide area networks. Ensure the security and confidentiality of electronic information held within Premera networks by acting as an internal consultant to Premera functional areas and project teams. Ensure the effectiveness of IT Security staff by providing skill and knowledge coaching for less-senior members of the team. Ensure on-time and on-budget delivery of security services through the use of formal project management skills and methodologies. Responsibilities: 1. Provide high-level technical support relevant to the technical architecture and the installation, maintenance and design of corporate networks and data services. 2. Determine network and host requirements based on product specifications and customer requirements. 3. Present information to management which may result in the purchase and installation of hardware, software and telecommunication equipment. 4. Perform in-depth and high-level troubleshooting on networks, servers, and proprietary operating systems. 5. Act as a top-level technical contributor with advanced knowledge and experience in one or more of the following areas: • Wide area networking, communications and related hardware/software, such as bridges, gateways, routers, multiplexers and hubs. • Internet servers and data transmission • Database management systems • Host operating systems such as Windows 2000 Server, Unix, Linux, and OS/390. 6. Act as a top-level technical contributor with advanced knowledge and experience in security options for networks, operating systems, data services, and user authentication & authorization controls. 7. Install and configure LAN/WAN network software and hardware. 8. Recommend network security policies and procedures. 9. Install and configure multiple operating systems and applications onto servers. 10. Complete significant special projects and other duties as assigned. 11. Develop and implement Premera-specific security components such as reports, product extensions and component interfaces. 12. Evaluate and mitigate technical security threats: • Review and approve IT security threat assessments for major changes to systems, applications and networks. • Maintain current expertise in security hacks and network penetration methods. Define and document defensive tactics. Define and oversee implementation plans for security configuration changes. 13. Develop and implement processes to manage: • Security incident response • Network and host intrusion detection processes • Cross-platform security and access controls • Inter-network security and access controls. 14. Provide advanced technical analysis and evidence capture as Level 3 technical support for security incident response. 15. Conduct impact assessments for security patches and oversee implementation of recommended patches. 16. Coordinate with Premera Human Resources and Legal to protect the business from legal harm and enforce security incident policies. 17. Develop IT Security Standards and Procedures • Assure effective and current documentation exists for maintaining the security and integrity of Premera computing resources and networks. • Define technical and process requirements for computing and network security. • Define security standards for operating systems, web servers, routers, network links, databases and applications. • Design, develop and oversee implementation of workflows and automated processes for maintaining secure configurations. • Define IT policies, standards and procedures to assure technical compliance with enterprise security policies and promote consistent use of best practices in information security. 18. Recommend enterprise-wide policies and standards to assure secure computing and messaging. Minimum Qualifications: 1. BS/BA degree in related field such as Information Systems, Business Administration, or technical school certificate/diploma, or equivalent experience. 2. Minimum of five years industry-related experience designing, implementing and troubleshooting networked computer systems, including: systems integration, hardware requirements and network design planning; vendor negotiations for hardware and software. At least three of the five years must include hands-on experience with two or more of the following: • Server hardening • Network defense and monitoring • Domain security policy design and implementation • Technical security standards documentation • Secure network design • Server and/or network disaster recovery planning. 3. In-depth knowledge of LAN/WAN network principles and protocols. Must be well-versed in TCP/IP, NETBIOS, IPSec, and HTTPS. 4. Good documentation skills and experience using MS Word, Visio, Excel and Power Point. 5. Demonstrated project management skills, including task planning, status reporting, and development of work breakdown structures. 6. Demonstrated understanding of network and information security concepts, tactics, and best practices. 7. Demonstrated in-depth knowledge of security models and configuration for key networking and security architectures, including at least 2 of the listed items in each of the following areas: • Security architectures: ACL, DCI, CORBA, IPSec, PKI, RACF, 2-factor • Networks: TCP/IP, SNA, VPN, Token ring, Ethernet • Operating systems: Windows NT, Windows 2000, MS IIS, UNIX and/or AIX, OS390 with RACF, MPE/iX with VESoft • File systems and databases: FAT, JFS, NFS, LDAP, NTFS, Sequel/DB, DB2, IMS/DB 8. Solid understanding of OSI, Ethernet, SNMP, NTFS, DNS, WINS, Active Directory, Windows NT, and Windows 2000 networks. 9. Knowledge of network topologies and protocols. 10. Knowledgeable in multiple operating systems environments including Windows 2000 Professional, Server, and Advanced Server, as well as Windows NT Server and Workstation. 11. Demonstrated understanding of Operating System architecture as it relates the functions of the following components: OS kernel, OS kernel modules and device drivers, security subsystem, user account rights, user group rights, system logs, I/O functions, network services, file-system permissions, and application interaction with the Operating System. 12. Demonstrated ability to work and learn independently and to apply new concepts. 13. Ability to maintain collaborative working relationships across multiple teams 14. Strong problem-solving skills. 15. Good communication skills, both oral and written. Additional Qualifications Preferred: 1. Demonstrated understanding of health plan operations and applicable security & privacy legislation. 2. Demonstrated proficiency and experience programming in at least one of the one of the following languages: • Simple Query Language (SQL) • Perl • Visual Basic • Java • COM / DCOM