Senior Cyber Security Engineer, Mobile Device Protection

Job Description

Job Summary

As a Mobile Device Security Senior Engineer, this role reports to the Manager of Endpoint Security. This role develops, engineers, and maintains the Mobile Device product within the Endpoint Security Program for the Cybersecurity Risk Management Department. This role is expected to have senior level knowledge of mobile device security technologies. The senior engineer will be responsible for identifying and remediating security gaps, the continued improvement of existing controls, mentoring and collaborating with other Cyber Security and Information Technology team members to secure the many information technology assets and data of Community Health Systems. The senior engineer will collaborate with architects to design and implement solutions that better protect CHS systems and data.

This role will be responsible for the security and management of mobile devices within an organization, ensuring they are configured, secured, and compliant with company policies. This includes tasks like deploying and managing Mobile Device Management (MDM) solutions, implementing security policies, and troubleshooting device-related issues.

Essential Functions

• Design, engineer, manage, review, and recommend improvements for new and existing mobile device security solutions, configurations and technologies. Develop and maintain security standards based on National Institute of Standards and Technology (NIST) recommendations, specifically NIST 800-53.

• Enhance preventative and automated mobile device security controls aligned with business requirements to address cybersecurity  threats.

• Develop and improve policies, standards, and processes for the identification and prioritization of threat remediation as well as processes and methodologies for metrics and KPIs related to mobile device protections, security, and compliance.

• Provide technical guidance to enterprise Cyber Security and Information Technology teams regarding the impact of mobile device security controls in order to drive issues to remediation and develop systemically secure configurations.

• Assist in developing and documenting an overall mobile device protection strategy including defining control standards and enhancement opportunities.

• Other duties and responsibilities as assigned by cybersecurity leadership.

Qualifications

• Required Education: High school diploma

• Preferred Education: Bachelor’s or Master’s Degree in Cyber Security, Computer Science, Information Systems (or other related field), or equivalent work experience.

• Required Experience:

  • 3+ years of IT or information security, and

  • 2+ years of mobile device security

• Activities:

  • Managed Mobile Device Management technologies(e.g. Intune, Soti, Google MDM)

  • Managed and securing iOS and Android devices

  • Served as senior thought leader for mobile device security technology and influenced the strategy to address internal or external business and regulatory issues.

  • Worked in process-driven structured environments, and participated in process optimization activities.

• Competencies:

  • Advanced knowledge of security principles, issues, techniques and implementations across mobile device security platforms. 

  • Proactive identification and solving of complex problems 

  • Strong understanding of systems development lifecycle to provide technical leadership for multifunctional projects or initiatives.  

  • Strong ability to work on and prioritize multiple, concurrent projects while meeting aggressive deadlines in a fast-paced environment.

  • Willingness to participate in cross-functional training and support

  • Effective communication of technical concepts to a non-technical audience.  

  • Excellent written and verbal communication skills

• Preferred Experience:

  • 5+ years of IT or information security

  • 3+ years of mobile device security

  • Scripting and Automation

  • IoT and medical device security principles

Licenses and Certifications

• CISSP, GIAC, OSCP, and other Industry Standard Certifications preferred