Job Description

About the Role
Title:
Senior Security Engineer, Detection and Response
Location:
onsite in Franklin, TN
Regular Full-Time
Candidates must be local or willing to relocate at their own expense
Job Description:
Our Mission
Acadia Healthcare's purpose is to Lead Care With Light and our mission is to be a world-class organization that sets the standard for excellence in the treatment of mental health and addiction concerns. We strive to maintain our standing as a thought leader in the behavioral healthcare industry, providing treatment that is synonymous with compassion and innovation.
About the Role
The Sr. Security Engineer - Detection and Response position is instrumental in the safeguarding and preservation of Acadia's crucial IT infrastructure and sensitive patient data. This role is entirely committed to upholding the most stringent cybersecurity standards within a healthcare environment, ensuring full compliance with industry regulations, and promptly addressing security incidents. Through the adept utilization of state-of-the-art security technologies, automation, and strong partnerships with third-party MSSPs, the Healthcare Security Engineer assumes a pivotal role in the delivery of superior patient care, the nurturing of patient trust, and the unwavering preservation of integrity and confidentiality within our healthcare systems.
The first 90 days in this role will be fully in-person to ensure comprehensive onboarding and training. After the initial period, the position will transition to a hybrid model, with 2 days remote and 3 days in the office each week.
Compensation & Benefits
We value your expertise and dedication-and we invest in your success.
Competitive Base Salary commensurate with experience
Comprehensive Medical, Dental, and Vision Insurance
401(k) Plan with Company Match
Paid Time Off (PTO) and recognized holidays
Company-paid Basic Life and AD&D Insurance
Employee Assistance Program (EAP) and mental wellness resources
Opportunities for professional growth and advancement within Acadia's nationwide network
Key Responsibilities
Security Operations:
Implement and manage security tools
Continuously monitor for malicious activities and vulnerabilities
Develop comprehensive threat detection and alerting procedures
Incident Response:
Lead and coordinate incident response, collaborating with IT and compliance teams
Tailor incident response plans for healthcare settings
Investigate and assess security incidents, with forensic analysis
Develop containment and remediation strategies for risk mitigation
Security Infrastructure and Compliance:
Maintain and optimize security tools and systems
Ensure compliance with healthcare regulations and standards
Assist in external compliance audits
MSSP and Threat Intelligence:
Collaborate with MSSP for security tools and configurations
Define SLAs and KPIs to align with security objectives
Share threat intelligence with MSSP for unified threat response
Coordinate incidents and create incident response playbooks with MSSP's expertise
Continuous Improvement and Automation:
Enhance security through scripting and automation
Develop custom security solutions
Automate incident response with scripting
Stay current with scripting languages and automation frameworks
Operational Metrics and SLOs:
Define operational metrics and KPIs
Establish quantifiable performance indicators
Regularly review and refine operational metrics
Develop and monitor service level objectives (SLOs) to ensure operational excellence
Other Responsibilities
Performs other tasks as assigned
Standard Expectations
Complies with organizational policies, procedures, performance improvement initiatives and maintains organizational and industry policies regarding confidentiality
Communicate clearly and effectively to person(s) receiving services and their family members, guests and other members of the health care team
Develops constructive and cooperative working relationships with others and maintains them over time
Encourages and builds mutual trust, respect and cooperation among team members
Education/Experience/Skill Requirements
Education: A bachelor's degree or equivalent work experience
Experience: Minimum of 5 years of cybersecurity experience, with a preference for at least 4 years in detection and response
Expertise: Strong knowledge of cybersecurity principles, technologies, and best practices. Proven experience in healthcare security and knowledge of industry regulations, such as HIPAA and HITECH
Communication: Excellent communication and collaboration skills to work with diverse teams and vendors
Compliance: Knowledge and understanding of relevant legal and regulatory requirements, such as: Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard (PCI)
Frameworks: Proficiency in common information security management frameworks, such as ITIL, Center for Internet Security (CIS) Critical Security Controls (CSC), and NIST, including 800-53 and MITRE ATT&CK Framework
Problem-Solving: Strong problem-solving and analytical abilities
Technology Proficiency: Candidates must be capable of effectively evaluating and implementing technical alternatives, staying up to date with emerging technologies, risk assessment methodologies, and incident response
Self-Motivation: Self-motivated with strong organizational skills and exceptional attention to detail
Multitasking: Ability to manage multiple tasks/projects simultaneously within strict time frames and adapt to frequent priority changes
Adherence: Capability to work within established policies, procedures, and practices set by the organization
Language Skills: Proficient in English to provide and receive instructions and directions effectively.
License/Designations/Certifications
Certifications: Desired by not required: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), CompTIA Security + or Network +, GIAC Certified Incident Handler Certification (GCIH), GIAC Certified Intrusion Analyst Certification (GCIA), Certified Cloud Security Professional (CCSP), Certified Intrusion Analyst (GCIA), Certified Information Security Incident Handler (CIHI), Certified Incident Handler (EC-Council ECIH), Certified Ethical Hacker (CEH), or other similar credentials.
Supervisory Requirements
This position is an Individual Contributor
While this job description is intended to be an accurate reflection of the requirements of the job, management reserves the right to add or remove duties from particular jobs when circumstances (e.g. emergencies, changes in workload, rush jobs or technological developments) dictate.
#LI-JS1
AHCORP