InfoSec Engineer; Access & Permissions Mgmt

OU Health is hiring an Information Security Engineer for IT, Architecture and Info Sec Network security team. This role will be responsible for implementing and maintaining security solutions, and requires using common IT Cyber and Info Sec tools to diagnose problems and work with related teams to remediate. This position also assists in strategic planning, integration of security functions, and continuous improvement of security solutions.

The role also actively participates in strategic planning and provides 24x7 on‑call support with other members of the security engineering staff. Finally, this position will be heavily involved with the engineering of Privileged Access Management solutions

NOTE:
This position may only be performed remotely from Arkansas, Kansas, Missouri, Oklahoma, and Texas. Please only apply if you live and work full‑time in one of the USA states listed above, or plan to relocate to one of these states before starting your employment with OU Health.
State locations and specifics are subject to change as our hiring requirements shift.

This position may be filled as an Information Security Engineer I, II, or III depending on individual qualifications including education, experience, and/or certifications.

Responsibilities listed in this section are core to the position. Inability to perform these responsibilities with or without an accommodation may result in disqualification from the position.

• Deploy, implement, document, and maintain security solutions.
• Resolve security engineering‑related tickets in Service Now, ensuring timely resolution and adherence to SLAs.
• Develop and maintain comprehensive process documentation.
• Provide knowledge, coordination, and communication for security engineering projects.
• Identify and implement opportunities for process improvement and automation within the security engineering framework.
• Support the building of technology operational models and workflows for the business.
• Collaborate with IT teams and business units to ensure proper access controls and integration with other systems.
• Provide vendor management, service level definition, and management for security engineering technologies.
• Provide feedback on business case proposals, analysis of technologies, and project plans.
• Assist in security awareness training related to engineering.
• Support strategic contingency planning from a security perspective.
• Participate in regular business meetings and workshops to ensure knowledge transfer.
• Provide 24x7 on‑call support based on security engineering staff rotation.
• Adhere to and support OU Health IT standards, policies, and procedures.
• Maintain and protect confidentiality regarding all aspects of patient care and employee information.

• Performs other duties as assigned.

Education Requirements
:
Bachelor’s Degree required.

• 0‑3 years of experience in Security Engineering required.
• Experience with various security services and tools, I.e. network protocols, firewalls, IDS/IPS, SIEM, logging, Active Directory, DLP, etc.
• Experience in managing multiple high‑risk projects, including those involving external vendors.

• One or more advanced security certifications are required or must be obtained within 36 months from the hire date. Desired certifications include CCSP, CISM, GSEC.
• Other security or IT certifications are highly desirable, such as CEH, CHFI, CISA, CISM, CRISC, CCNA

• Knowledge of cloud services and methodologies is preferred.
• Understanding of SSO, MFA, PAM, least privilege concepts.
• Knowledge of supported operating systems (Windows server and VMware ESX) network technology (Route, Switch, Firewall, VPN), utilities, vendor products, diagnostic techniques, applicable communications protocols, applicable hardware configurations, vulnerability management
• Knowledge of applicable programming languages, and scripting.
• Must have security regulation and security framework knowledge. Examples include CIA triad, HIPAA, HITECH, HITRUST, NIST, ISO, and COBIT
• Strong technical problem‑solving skills with strong attention to detail.
• Excellent communication, leadership, and teamwork skills.
• Ability to implement process improvements and automation solutions within security.
• Leadership skills to establish and maintain business relations with technical resources, customers, business partners, vendors, and other IT personnel.

OU Health is an equal opportunity employer. We offer a comprehensive benefits package, including PTO, 401(k), medical and dental plans, and many more. We know that a total benefits and compensation package, designed to meet your specific needs both inside and outside of the work environment, create peace of mind for you and your family.