Impact Lives, Impact Community

Family Health Centers of San Diego (FHCSD) is passionate about providing exceptional health care to all, especially underserved communities with limited health care options. Founded by a Latina grandmother/community advocate over 50 years ago in Barrio Logan, FHCSD has grown into one of the largest community health systems in the country. With over 90 sites, over 227,000 patients, and over 1.1 million healthcare visits last year, we provide a wide variety of health care and outreach services to a very diverse patient population. We are proud of our mission, our lasting community impact, and the cultural and individual diversity of our staff

SOC Engineer

Job Profile Summary

The Security Operations Center (SOC) Engineer designs and administers cybersecurity information technology systems, and partners with other IT departments to review and implement cybersecurity best practices to applications, hardware, networking equipment, integrations and other infrastructure for the organization. This infrastructure is comprised of Windows and Linux servers, MS SQL, IIS, Apache, Azure SaaS/PaaS, Microsoft 365, Exchange Online, VMware virtualization, EntraID, Active Directory, layer-2 and layer-3 networking equipment, wireless access points, and IoT medical devices. This position will plan, design, install, monitor, and administer all cybersecurity tools and systems, lead in-depth troubleshooting and root cause analysis of incidents involving these systems, investigate cybersecurity incidents, and conduct threat hunting activities.

The SOC Engineer performs tasks related to our IT Security policies and Incident Response Plan's processes to maintain a strict security posture and comply with HIPAA, PCI-DSS, and CCPA regulations. The SOC Engineer plans, develops and executes cybersecurity configuration changes on systems (network, hardware, software); assures security, reliability, and availability of the infrastructure to support the continued growth of the organization; performs capacity planning and analysis; participates in 24/7 on-call rotations; provides guidance and mentorship to SOC Analysts, NOC Technicians and all IT Technical Support staff; works in a highly collaborative and fast paced work environment with other SOC and Network Operations Center (NOC), Technical Support, Telecom, Project Management and Product Development staff.

General Job Description

Job Roles

• Triage, investigate, and remediate cybersecurity incidents.
• Conduct proactive threat hunting using a SIEM, EDR and other relevant tools.
• Assist in networking and infrastructure hardening activities.
• Oversee and coordinate vulnerability management and patching remediation activities.
• Assist in asset discovery and validation of asset visibility for vulnerability scanning processes.
• Analyze and coordinate the remediation of infrastructure and penetration testing scan results to enhance security posture.
• Utilize OSINT methodologies and additional resources to identify and mitigate potential security threats.
• Design, install, monitor, integrate, and fine-tune cybersecurity tools and systems, including but not limited to, SIEM, SOAR, EDR, email security gateways, network and DAST/SAST scanning tools.
• Conduct cybersecurity hardening for enterprise applications, network appliances, and systems by developing and implementing policies, rules, and configurations.
• Recommend, develop, and implement data governance best practices with data sensitivity label policies.
• Plans, designs, and coordinates legacy service deprecation such as LDAP binds and NTLM.
• Act as an escalation point for SOC Analysts, NOC, and IT Technical Support staff for any cybersecurity related issues.
• Perform other duties as assigned.

Experience/Specialized skills (including Language)

• At least 5 years of experience in Cybersecurity with an emphasis on data and security event correlation, incident response, and the installation, configuration, administration, and management of cybersecurity tools such as SIEM, SOAR, firewalls, DAST/SAST scanners, and hardening of IT infrastructure in compliance with cybersecurity frameworks.
• Or equivalent combination of education and experience that provides the skills, knowledge and ability to perform the essential job duties, and which meets any required state or federal certification requirements.
• Expert level knowledge and training in cybersecurity event correlation, incident response, threat hunting.
• Must be detail-oriented and committed to providing work of consistently high quality.
• Must be self-sufficient, innovative, and able to work under minimal direct supervision.
• Advanced level knowledge in cybersecurity systems implementation and integration.
• Advanced level knowledge in IT infrastructure hardening.
• Expert level troubleshooting and diagnostic skills.
• Advanced level knowledge of and demonstrated competency in applying current concepts of network, system, application, and cloud security.
• Advanced level knowledge of and demonstrated competency in applying current concepts of vulnerability and risk management; CIS hardening, patch management, GPO.
• Advanced knowledge of and demonstrated competency in applying current concepts of identity and access management; Just in Time Access, Just Enough Access, identity Provider/SSO, conditional access, MFA.

Education/Certifications/Licenses/Registrations

• Bachelor's degree in Cybersecurity, or equivalent experience.
• CISSP, CEH, CompTIA CySA+, CCNA, and Microsoft Certified: Azure Security Engineer Associate preferred.
• Ability and means to travel as needed in a timely manner within San Diego County, to locations that may have limited access to public transportation; proof of liability and property damage insurance on vehicle used is required. DRIVER REQUIREMENTS: Licensed for a minimum of 3 years; No more than 2 violations and/or accidents within 3 years.

Physical Requirements/Working Environment

Bending (neck): OCCASIONALLY (1 - 3 HRS)

Bending (waist): OCCASIONALLY (1 - 3 HRS)

Carrying 0 - 10 lbs: OCCASIONALLY (1 - 3 HRS)

Carrying 11 - 25 lbs: RARELY (0-1 HRS)

Carrying 25 - 50 lbs: RARELY (0-1 HRS)

Carrying 51 - 75 lbs: NEVER

Carrying 75 lbs: NEVER

Climbing (ladder): NEVER

Climbing (stairs): OCCASIONALLY (1 - 3 HRS)

DRIVING: OCCASSIONALLY DRIVING (3-4 DAYS/WEEK)

Exposure to blood borne pathogens and biohazards: NO

Exposure to dust, gas, fumes, or chemicals: Office equipment

Fine manipulation: FREQUENTLY (3 - 6 HRS)

Kneeling: FREQUENTLY (3 - 6 HRS)

Lifting 0 - 10 lbs: OCCASIONALLY (1 - 3 HRS)

Lifting 11 - 25 lbs: RARELY (0-1 HRS)

Lifting 25 - 50 lbs: RARELY (0-1 HRS)

Lifting 51 - 75 lbs: NEVER

Lifting over 75 lbs: NEVER

Power Grasping: OCCASIONALLY (1 - 3 HRS)

Pulling 0 - 10 lbs: OCCASIONALLY (1 - 3 HRS)

Pulling 11 - 25 lbs: RARELY (0-1 HRS)

Pulling 25 - 50 lbs: RARELY (0-1 HRS)

Pulling 51 - 75 lbs: NEVER

Pulling over 75 lbs: NEVER

Pushing 0 - 10 lbs: OCCASIONALLY (1 - 3 HRS)

Pushing 11 - 25 lbs: RARELY (0-1 HRS)

Pushing 25 - 50 lbs: RARELY (0-1 HRS)

Pushing 51 - 75 lbs: NEVER

Pushing over 75 lbs: NEVER

Reaching (above shoulder level): OCCASIONALLY (1 - 3 HRS)

Reaching (below shoulder level): OCCASIONALLY (1 - 3 HRS)

Repetitive use of hand: FREQUENTLY (3 - 6 HRS)

Simple Grasping: FREQUENTLY (3 - 6 HRS)

Sitting: FREQUENTLY (3 - 6 HRS)

Standing: FREQUENTLY (3 - 6 HRS)

Twisting: OCCASIONALLY (1 - 3 HRS)

Use of Personal Protective Equipment: NO

Walking: FREQUENTLY (3 - 6 HRS)

Working around equipment and machinery: Office equipment

Ages of Patients Served: N/A

In the spirit of pay transparency, we are excited to share the base range for this position, exclusive of fringe benefits.

If you are hired at Family Health Centers of San Diego, your final base salary compensation will be determined based on factors such as geographic location, jurisdictional requirements, skills, education, and/or experience. In addition to these factors - we believe in the importance of pay equity and consider internal equity of our current team members as a part of any final offer. Please keep in mind that the range mentioned above is what we reasonably expect to pay for the role. Hiring at the maximum of the range would not be typical in order to allow for future and continued salary growth. We also offer a generous compensation and benefits package (more information on our benefits offerings is available here: FHCSD Wellness - Employee Hub (gobenefits.net)