We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
NorthShore University HealthSystem jobs

IT Security Engineer III

NorthShore University HealthSystem
paid time off, tuition reimbursement, remote work
United States, Illinois, Skokie
4901 Searle Parkway (Show on map)
Jan 27, 2025

Position Highlights:

  • Position: IT Security Engineer III

  • Hourly Pay Range: $41.64 - $64.54. The hourly pay rate offered is determined by a candidate's expertise and years of experience, among other factors.

  • Location: Skokie, IL or Warrenville, IL

  • Full Time

  • Hours: Monday-Friday, 8am - 4:30pm

  • Hybrid Schedule: primarily remote work after initial onsite period

Job Summary:

As a Security Engineer III at Endeavor Health, you will drive the organization's compliance with the Payment Card Industry Data Security Standard (PCI DSS) while contributing to the overall cybersecurity posture. As this position involves PCI-DSS compliance, candidates should have hands-on experience with responsibility matrices, design, control implementation, management (e.g., training, evidence collection, ASV Scanning, reporting), and auditing of PCI DSS requirements for large-scale, Level 1 environments involving thousands of endpoints and card data handling devices.

Expertise in additional frameworks such as NIST 800-53 Rev. 5, NIST CSF, ISO 27001, vulnerability management, and incident response will provide a strong foundation for success in this position.

What you will do:

PCI Compliance and Audit Management

  • Develop and maintain PCI DSS compliance programs and ensure alignment with organizational goals.
  • Coordinate internal assessments and external audits, addressing identified gaps effectively.
  • Develop and communicate PCI-related security policies, procedures, and standards.

Risk Management and Decision-Making

  • Assess risks associated with PCI compliance and recommend appropriate actions, such as risk acceptance, mitigation, remediation, or transference.
  • Explain the "why" behind compliance requirements to stakeholders and IT teams, ensuring a clear understanding of risk implications.
  • Develop and promote risk management best practices across the organization.

Training and Awareness Programs

  • Design and execute PCI-related security awareness and secure coding training initiatives.
  • Educate teams on PCI DSS requirements to foster a culture of compliance and security.

Security Controls Design and Implementation

  • Implement security controls for applications, devices, and systems handling cardholder data.
  • Ensure seamless integration of PCI requirements across various endpoints and payment methods.

Vendor and Audit Collaboration

  • Manage relationships with vendors and consultants for merchant identification and PCI compliance support.
  • Collaborate with external auditors, internal audit teams, and the treasury department to ensure successful compliance initiatives.

Incident Response and Vulnerability Management

  • Collaborate with SecOps on investigations into security incidents related to cardholder data.
  • Manage vulnerability processes, addressing compliance risks proactively.

Collaboration and Governance

  • Partner with business units to ensure compliance with PCI requirements across diverse environments.
  • Provide guidance on compliance with frameworks such as PCI-DSS, NIST 800-53 Rev. 5 and ISO 27001.

What you will need:

  • Education: Bachelor's degree in information security, Computer Science, or a related field.
  • Certifications: Advanced security certification such as PCI Professional (PCIP), Internal Security Assessor (ISA), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM).
  • Experience:
  • Minimum of ten (10) years combined IT and cybersecurity experience, with at least seven (7) years focused on PCI DSS-related tasks.
  • Proven experience managing PCI DSS compliance programs and leading training initiatives. Previous experience as a Qualified Security Assessor (QSA) and/or providing consulting services related to PCI DSS is highly desirable.
  • Unique or Preferred Skills:
  • In-depth knowledge of PCI DSS requirements including application review and secure coding practices.
  • Proficiency in auditing and implementing PCI DSS controls.
  • Strong leadership, collaboration, communication, and project management skills.
  • Ability to manage multiple initiatives independently and deliver results efficiently.
  • Ability to communicate effectively with IT leadership, translating compliance controls into technical terms that IT teams can understand and implement.
  • Ability to assess risks, explain their impact, and recommend actions to address them effectively.

Benefits:

  • Career Pathways to Promote Professional Growth and Development
  • Various Medical, Dental, and Vision options
  • Tuition Reimbursement
  • Free Parking at designated locations
  • Wellness Program Savings Plan
  • Health Savings Account Options
  • Retirement Options with Company Match
  • Paid Time Off
  • Community Involvement Opportunities

Endeavor Health is a fully integrated healthcare delivery system committed to providing access to quality, vibrant, community-connected care, serving an area of more than 4.2 million residents across six northeast Illinois counties. Our more than 25,000 team members and more than 6,000 physicians aim to deliver transformative patient experiences and expert care close to home across more than 300 ambulatory locations and eight acute care hospitals - Edward (Naperville), Elmhurst, Evanston, Glenbrook (Glenview), Highland Park, Northwest Community (Arlington Heights) Skokie and Swedish (Chicago) - all recognized as Magnet hospitals for nursing excellence. For more information, visit www.endeavorhealth.org.

When you work for Endeavor Health, you will be part of an organization that encourages its employees to achieve career goals and maximize their professional potential.

Please explore our website (www.endeavorhealth.org) to better understand how Endeavor Health delivers on its mission to "help everyone in our communities be their best".

Endeavor Health is committed to working with and providing reasonable accommodation to individuals with disabilities. Please refer to the main career page for more information.

Diversity, equity and inclusion is at the core of who we are; being there for our patients and each other with compassion, respect and empathy. We believe that our strength resides in our differences and in connecting our best to provide community-connected healthcare for all.

EOE: Race/Color/Sex/Sexual Orientation/ Gender Identity/Religion/National Origin/Disability/Vets, VEVRRA Federal Contractor.

Applied = 0
MORE JOBS LIKE THIS

(web-6f6965f9bf-7hrd4)