UofL Physicians

  • IT Security Engineer - Intermediate

    Job ID
    # of Openings
    Information Systems
  • Overview

    IT Security Engineer - Intermediate


    Under general direction, performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction. Interfaces with user community to understand their security needs and implements procedures to accommodate them. Ensures that user community understands and adheres to necessary procedures to maintain security. May require familiarity with domain structures, user authentication, and digital signatures. Conducts accurate evaluation of the level of security required. May require understanding of firewall theory and configuration. Must be able to weigh business needs against security concerns and articulate issues to management. Frequently reports to an IT Security Manager.



    • Able to draft and explain a Root Cause Analysis (RCA) report.
    • Use up-to-date technical insight on current threat and attack vectors to identify vulnerabilities and risks in the design of ULP infrastructure (networks, systems, applications) and use this information to draft, discuss, and implement solutions; with the ability to adjust the solution quickly based on new information.
    • Identify, draft, maintain, and discuss security policies, guidelines, procedures, and documentation based on industry standards.
    • Work with other teams on monitoring solutions, prevention tools, penetration testing, Incident Response
    • Ability to answer highly technical questions and explain elaborate system designs to other team members, management, and C-level.
    • Ability to teach, improve, and mentor team members.
    • Determine security requirements based on business needs or strategies, and utilize this evaluation to research hardware/software solutions, vendor tools, and other items that may need to be procured to protect the company.
    • Conduct security scans, vulnerability analysis, risk assessments, 
    • Maintain a high security posture by assuring adherence to compliance and standards, policies and procedures.
    • Maintain a high security posture by monitoring the systems, hardware/software, and infrastructure.
    • Work with other teams to develop end user security awareness and training.
    • Prepare reports in clear and concise methods by collecting data, analyzing trends, and summarizing the information.


    • Preferred 8 - 12 years of experience in the IT/IS field with experience in network security standards.
    • Support, design, implement, and secure network systems (wired and wireless), data center infrastructure, telephony, and OS/software.
    • Exceptional written and verbal communication skills.
    • Strong analytical and troubleshooting skills
    • Solid understanding of Operating system security concepts and hardening.
    • In depth knowledge of spam, worms, trojans, malware, emerging threats, attacks, and other vulnerabilities.
    • Hands on experience in security systems, such as firewalls, IDS/IPS, anti-virus, anti-malware, authentication systems, log management, SIEM, content filtering, forensics, etc.
    • Certified Information Systems Security Professional (CISSP) preferred.
    • Certified Ethical Hacker (CEH) highly preferred.
    • CompTIA A+/Network+/Security+ highly preferred.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed