CORPORATE IT SECURITY OPERATIONS CENTER MANAGER (HHSC 02-24)

Hawaii Health Systems Corporation - Corporate Office
Posted on March 27, 2024

DATE POSTED: 03/27/2024

POSITION TITLE: Corporate IT Security Operations Center Manager

RECRUITMENT NO: HHSC 02-24

POSITION STATUS: Exempt/Full-Time with Benefits

LOCATION: Hawaii Health Systems Corporation (HHSC), Corporate, Honolulu, HI

SALARY RANGE: $100,000/year

JOB DUTIES: The Corporate IT Security Operations Center Manager’s (CITSOCM) primary function is the oversight and ongoing management of the HHSC Information Security Operations Center (SOC). The CITSOCM’s responsibilities include cybersecurity technical systems support, operations, and SOC workforce management in maintaining the confidentiality, integrity, and availability of data within the organization information systems framework. The CITSOCM’s role focuses on the HHSC cybersecurity systems used in protecting HHSC Protected Health Information (PHI), operational IT infrastructure, and business information assets. The HHSC SOC is located in Leahi Hospital, Honolulu, Hawaii. Takes direction from the Director of IT Security and VP & Chief Information Officer to manage the systems used in meeting the cybersecurity goals of the organization.

MAJOR DUTIES & RESPONSIBILITIES:

A. IT Security Operations Center 70%

1. Lead a team of security professionals responsible for monitoring, detecting, and responding to security events in real-time.
2. Participate with cross-functional teams to design and implement security measures and event monitoring procedures for the organization’s infrastructure, applications, and data.
3. Manage and maintain security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), endpoint protection systems, vulnerability management systems, and other security systems managed by the SOC. This includes platform software updates, application of platform security patches, and administrative oversight of platform operations.
4. Assist Director of IT Security in monitoring emerging security threats, vulnerabilities, and attack techniques to proactively adjust security defenses and strategies.
5. Oversee the incident response process, ensuring timely and effective resolution of security incidents and breaches.
6. Work with Director of IT Security in regular security assessments and penetration testing to identify vulnerabilities and weaknesses in the organization’s systems.
7. Work closely with the Director of IT Security and Technical Services team to understand the security architecture and deploy effective security solutions.
8. Work with Technical Services Division and Regional IT staff as needed to help with security systems they manage.
9. Provide feedback on the feasibility and operational implications of proposed security enhancements.

B. SOC Management 20%

1. Oversee the day-to-day operations of the SOC, ensuring 24/7 monitoring and response capabilities.
2. Collaborate with team members to identify, investigate, and resolve security incidents in a timely manner.
3. Implement and maintain security tools and technologies for monitoring, detection, and response.
4. Provide training and guidance to the Security Operation Center team to enhance their skills and capabilities.
5. Stay informed about the latest security trends, threats, and technologies, and share this knowledge with the team.
6. Generate regular reports on security operations metrics, incident response effectiveness, and key performance indicators.
7. Maintain comprehensive documentation of incident response activities, security procedures, and configurations.
8. Provide leadership and mentorship to the security operations team, fostering a culture of continuous learning and professional development.
9. Maintain comprehensive documentation of incident response activities, security procedures, and configurations.

C. Other Duties 10%

Performs other duties as assigned.

THE MINIMUM QUALIFICATION REQUIREMENTS ARE: Applicants must meet all of the following requirements. Please note that unless specifically indicated, the required education and experiences may not be gained concurrently. In addition, qualifying work experiences are based on a 40-hour work week.

EDUCATION: A Bachelor’s degree from an accredited university or college in computer science, management information systems, information assurance, or related field. Equivalent combination of education and work experience may substitute.

EXPERIENCE: Must have all of the following types of experiences listed below

One (1) year experience with requirements and operational procedures pertaining to HIPAA, Privacy, and Confidentiality;
Two (2) years of experience in cybersecurity operations as a SOC analyst or equivalent;
Three (3) years of experience with at least two (2) of the following technologies: antivirus or endpoint protection, vulnerability management, email security, network intrusion protection systems (NIPS), SIEM, SOAR, XDR, or firewalls; and
One (1) year experience in cybersecurity incident response.

CERTIFICATION: Networking, software development, operating systems and cybersecurity certifications are preferred.

LICENSE: None

KNOWLEDGE AND ABILITIES:

Knowledge of: Principles and concepts of IT technologies and network topologies; proficient in IT network and application protocols and computer operating systems, common hardware and software components, network components, structured analysis techniques and methods; and practical and logical application of computer equipment and technology to problem solving..

Ability to: Manage and direct workers including the ability to provide counseling and mediation; communicate effectively both orally and in writing; communicate clear expectation to subordinates and motivate them to perform effectively; establish and maintain good working relations with department personnel, staff, vendors, peer, and management; understand and learn a variety of business procedures and processes; develop new approaches and solutions outside of existing theories and principles.

WORKING CONDITIONS AND PHYSICAL REQUIREMENTS:

Work to be performed primarily in an HHSC office setting. Incumbent may be required to attend meetings in the Honolulu office, at locations throughout Oahu and throughout the State of Hawaii, and potentially the mainland United States. Travel may require occasional overnight stays of one or more days out of town, or out of state. Light lifting and carrying of papers and books up to fifty pounds will occasionally be required. Occasionally and on short notice throughout the year incumbent will be required to work long, additional hours in the evenings and on weekends and holidays.

Please provide three (3) professional references (name, job title, employer, work/cell number and email), along with your salary expectation.

To apply for this job email your details to jobs@hhsc.org

HOW TO APPLY: For application information, please click on the link below:

Please complete our HHSC Employment Application form and submit with resume by mail to Hawaii Health Systems Corporation, Human Resources Office, 3675 Kilauea Avenue, Honolulu, HI 96816 or E-mail at jobs@hhsc.org.

Applications available at the Hawaii Health Systems Corporation, Human Resources Office, 3675 Kilauea Avenue, Honolulu, HI 96816; hours are: 8:00 am – 12:00 pm at which time applicants are able to complete an application and have their application reviewed by the Corporate Human Resources Office. Only applicants that have been through a Human Resources (HR) applicant screening process will be considered for an interview with the hiring manager. Applications for announcements with a deadline date must be on file no later than the last day to file applications.

QUALITY OF EXPERIENCE: Possession of the required amount of experience will not in itself be accepted as proof of qualification for the position. Overall paid or unpaid experience must have been of such scope and responsibility as to conclusively demonstrate that you have the ability to perform the duties of this position. Provide a detailed description of your duties and responsibilities. If you worked on a part-time basis, indicate the average number of hours worked per week. Please note that experience will be based on a 40-hour workweek. Note: We will not postpone the recruitment process because of your failure to provide accurate and complete information concerning your qualifications.

MERIT OR CIVIL SERVICE SYSTEM: You must meet the minimum qualification requirements, including education, experience, other public employment requirements for State Civil Service employment, and HHSC Standards of Fitness. Only those applicants that are scheduled for an interview with the hiring manager will be contacted. Applications will be kept active six (6) months.

CITIZENSHIP AND RESIDENCE REQUIREMENT: Applicants must be eligible to work in the U.S. and at the time of appointment intend to reside in the State of Hawaii during the course of employment with the Hawaii Health Systems Corporation.

VETERAN’S PREFERENCE: If you are claiming Veteran’s Preference, you must submit a copy of your DD214 and/or other substantiating documents specifying the periods of your service.

PHYSICAL/MENTAL REQUIREMENTS: Applicants must be able to physically and mentally perform efficiently the duties of the position. Qualified applicants with disabilities who can perform the essential functions of the advertised position are encouraged to apply. The Hawaii Health Systems Corporation is committed to making reasonable accommodations on a case-by-case basis. Applicants seeking reasonable accommodations should be ready to discuss the accommodation sought so that a determination can be made that such accommodation is reasonable and would not cause the employer undue hardship.

MEDICAL/PHYSICAL EXAMINATION REQUIREMENT: Offers of employment will be contingent on successfully passing a pre-employment physical examination, which includes drug screen and other regulatory medical requirements such as, but not limited to, two-step tuberculosis (TB) screen. The cost for physical examinations, except the cost for drug screening, shall be borne by the applicant and not the Hawaii Health Systems Corporation.

PHYSICAL EXAMINATION REQUIREMENT: Offers of employment will be conditioned on the results of a complete physical examination, which includes a drug screening. For certain job categories, applicants may be referred to an HHSC-designated physician, rather that the applicant’s personal physician of choice. The cost for all physical examinations, except the cost for the drug screening, shall be borne by the applicant and not the Hawaii Health Systems Corporation. The Hawaii Health Systems Corporation shall bear the cost of the drug screening.

CRIMINAL/BACKGROUND, CREDENTIALING CHECKS: Applicable checks will be conducted periodically and any associated costs may be borne by the applicant. If a job, offer is made or employment is begun prior to completion of all applicable checks, any offer of employment or continued employment is contingent upon satisfactory return of all required checks.

IMPORTANT APPLICATION/EMPLOYMENT INFORMATION

Administrative Review, subsequent appeals: If you do not agree with a decision made by the Employment Office as to your non-qualification or non-selection for a position, you may complete a Request for Administrative Review form (available on the HHSC website) or you may submit a written request within twenty (20) days from the date of your sent notice to the Regional Chief Executive Officer/Designee. Your letter requesting the Administrative Review must include: 1) The job title(s) and recruitment number(s), 2) the specific reason(s) you are requesting the review noting if there is statute or rule violation, and 3) any additional information you want to submit to substantiate your request. If you do not submit your request within the twenty (20) days deadline, no Administrative Review will be conducted. Since the Administrative Review is a prerequisite to subsequent steps, failure to utilize this process will make you ineligible for subsequent appeals. The administrative review, formal complaint and/or appeals hearing will not necessarily postpone the recruitment process and/or rescind a selection. If you do not agree with the Administrative Review, you may file a Formal Compliant and then, if you are still not satisfied, you can appeal to the HHSC Merit Appeals Board.

CONTACT INFORMATION: The Corporate office of the Hawaii Health Systems Corporation is located at Leahi Hospital, 3675 Kilauea Avenue, Honolulu, HI 96816. For employment opportunities, please contact the (808) 733-4158, email jobs@hhsc.org or visit our website at https://www.hhsc.org/.

Persons with Disabilities may contact the Recruitment Office to discuss special needs in applying at (808) 733-4158, (Voice/TT), Toll Free (800) 845-6733, e-mail: jobs@hhsc.org.