Cyber Risk Defense, Splunk Development Principal

Kaiser Permanente

Englewood, CO

JOB DETAILS
SKILLS
Algorithms, Architectural Services, Business Administration, Business Strategy, Clinical Information Systems, Coaching, Communication Skills, Computer Science, Computer Security, Consulting, Contingency Plans, Cross-Functional, Data Analysis, Data Science, Documentation, Healthcare, Identify Issues, Incident Response, Information/Data Security (InfoSec), Internet Privacy, Internet Security, Leadership, Machine Learning, Mathematics, Mentoring, Needs Assessment, Network Architecture/Engineering, Operations Processes, Policy Development, Problem Solving Skills, Procedure Development, Process Improvement, Python Programming/Scripting Language, Quality Assurance, Risk, Root Cause Analysis, Security Attacks, Security Information and Event Management (SIEM), Social Sciences, Splunk, Strategic Planning, Team Lead/Manager, Team Player, Unix Operating Systems, Use Cases
LOCATION
Englewood, CO
POSTED
3 days ago
Upon start, selected candidate must reside in CA, CO, GA, HI, MD, OR, VA, or WA.Technical Summary:

Kaiser Permanente is expanding our Cyber Risk Defense program and seeking a highly skilled individual which can facilitate department missions in the areas of data science and python development with deep expertise in the Splunk Enterprise platform. This unique role focuses on supporting the mission of Cyber Security and is a technical expert in developing advanced machine learning solutions to enhance cyber threat, privacy, and compliance across clinical systems. As the position requires significant individual contributions, the successful candidate will present with qualifications commensurate with the expert-level position, demonstrate knowledge of clinical systems/workflows, and possess hands-on experience building and maintaining anomaly detection models. Experience with machine-learning frameworks/algorithms like Random Forest, XGBoost, and creating solutions on Unix based systems with Python is necessary for success. E nabling secure healthcare delivery to tens of millions of people is mission-critical, and this position will create and manage enterprise-class, unsupervised machine learned cyber threat and privacy use cases on an enterprise-class Splunk platform.

Job Summary:

This senior level employee is primarily responsible for managing and directing the maintenance and protection of integrity and reliability of the security of data, systems and networks.


Essential Responsibilities:
  • Drives the execution of multiple work streams by identifying customer and operational needs; developing and updating new procedures and policies; gaining cross-functional support for objectives and priorities; translating business strategy into actionable business requirements; obtaining and distributing resources; setting standards and measuring progress; removing obstacles that impact performance; guiding performance and developing contingency plans accordingly; solving highly complex issues; and influencing the completion of project tasks by others.
  • Practices self-leadership and promotes learning in others by soliciting and acting on performance feedback; building collaborative, cross-functional relationships; communicating information and providing advice to drive projects forward; adapting to competing demands and new responsibilities; providing feedback to others, including upward feedback to leadership; influencing, mentoring, and coaching team members; fostering open dialogue amongst team members; evaluating and responding to the strengths and weaknesses of self and unit members; and adapting to and learning from change, difficulties, and feedback.
  • Leads team in the proactive monitoring and/or response to known or emerging threats against the KP network.
  • Effectively communicates investigative findings to non-technical audiences.
  • Provides consultation in regular operations meeting with Cyber Risk Defense Center (CRDC) teams.
  • Drives closed loop processes on security efforts by providing feedback to the TDA leads and/or leadership.
  • Demonstrates a consulting value by recommending adjustments to the collection strategy for deltas in scope, size, or emerging security threats. 3-3
  • Drives information fusion procedures across operations and engineering, including activities such as Use Case planning/development, Use Case quality assurance validation, and response procedure documentation.
  • Serves as a liaison between stage teams and upper management by identifying issues, improvement areas, or security/architectural gaps and suggesting appropriate improvements.
  • Drives the development of the CRDC intellectual capital by leading process or procedure improvements, consulting on brown bag training sessions, and leading the development of new training documents.
  • Builds partnerships with the CRDC Policy Engineers and Remediation teams to contain identified issues and determine the best approach for improving security posture.
  • Facilitates follow-up remediation design and review efforts related to highly complex security events.
  • Leads the investigation and triage of a wide variety of security events across cyber security domains.
  • Serves as a subject matter expert in performing complex data analyses to support security event management processes, including root cause analysis.
  • Coordinates the response and resolution of high impact or critical cyber security incidents.
  • Provides insight and influence in determining the strategic direction for the development and deployment of threat detection capabilities and/or incident response plans.
  • Drives the development and implementation of incident detection and/or handling processes which may include containment, protection, and remediation activities.

Minimum Qualifications:
  • Minimum four (4) years in an informal leadership role working with project or technical teams.
  • Bachelors degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and Minimum ten (10) years experience in IT or a related field, including Minimum four (4) years in information security or network engineering. Additional equivalent work experience may be substituted for the degree requirement.

Additional Requirements:

About the Company

K

Kaiser Permanente

At Kaiser Permanente, we are relentless in our pursuit of excellence. Driven by our mission to provide the highest quality preventive medicine, we are committed to eliminating health care disparities, and to making lives better through innovation, technology, and research. Our desire to deliver the best possible care inspires us to promote wellness among our members, communities, and each other. It also fuels our belief that everyone — regardless of circumstance — deserves access to affordable care, which further drives our motivation to expand our reach. Founded nearly 80 years ago, our unique business model sets us apart — positioning us to drive improvements across the industry and around the world.
COMPANY SIZE
10,000 employees or more
INDUSTRY
Healthcare Services
FOUNDED
1945
WEBSITE
http://www.kp.org/careers