U.S. News & World Report has, for the fifth time, ranked Inova Fairfax Hospital #1 in the Washington, DC metro area. (Inova Fairfax has also been ranked #3 in the state of Virginia this year.) In addition, all five Inova hospitals have been awarded either a regional or specialty ranking this year.
Inova is Northern Virginia's leading nonprofit healthcare provider, employing more than 18,000 team members and serving more than 2 million individuals annually through an integrated network of hospitals, primary and specialty care practices, emergency and urgent care centers, outpatient services and destination institutes such as the Inova Heart and Vascular Institute, Inova Schar Cancer Institute and Inova Neuroscience and Spine Institute. Our mission is to provide world-class healthcare - every time, every touch - to each person in every community we have the privilege to serve. Founded in 1956 as the Fairfax Hospital Association, Inova has grown with its surrounding community and the region to provide a full spectrum of health services, including Northern Virginia's only Level 1 Trauma Center and Level 4 Neonatal Intensive Care Unit. Its hospitals have a total of 1,800 licensed beds.
The Cybersecurity Investigator , reporting to the Director of Cybersecurity Operations, will be able to identify, alert, respond to, and mitigate critical computer security incidents; will be expected to lead and participate in computer forensic investigations, data recovery, and electronic discovery activities; will frequently monitor and keep abreast of industry trends in threat intelligence, compliance, existing laws and regulations, emerging threats, and incidents; will recommend policies and processes that enable Inova Health to establish consistent, effective, and efficient computer security incident response and threat mitigation; will be responsible for the development and implementation of state- of-the-art incident response best practices and adhere to regulatory and compliance requirements that impact security for the enterprise; will coordinate technical resources for quick response and resolution of critical incidents; will perform after- incident case reviews, lessons learned, and collect incident metrics; will maintain, manage and update the process for handling and responding to computer security incidents; will perform complex collection and analysis of data for investigations using Security Information and Event Manager (SIEM) and other cybersecurity defense tools; will review computer security incidents, reports, and documentation to ensure that each are properly recorded in management and compliance systems; will maintain forensic hardware and software for digital forensic lab practices and procedures and coordinate use of forensic field kits in accordance with industry best practices and NIST standards; will provide forensic and computer incident management security subject matter expertise to all corporate departments; will participate in on-call rotation for reported incidents and security events; will work directly with the Cybersecurity Director, Information Security governance, risk, and compliance teams as well as IT Security Managers and staff personnel to facilitate cybersecurity investigations, security incident response, litigation support, and computer and information system forensics; will be responsible for designing, implementing and coordinating an institution-wide comprehensive forensics and incident response capability, enhancing and fostering information system security awareness; will conduct cybersecurity incident response; will conduct security event triage and incident response escalation; will recommend policies and processes that enable Inova Health to establish consistent, effective, and efficient computer security incident response and threat mitigation; will maintain key stewardship relations with transformational, principle and major business unit and business process owners; and will work closely with IT leadership peers, the CISO, and the CIO to inform the enterprise of threat risk.
The ideal candidate will preferably have: a Master's Degree in Digital Forensics ; a Bachelor's Degree in Information Technology or a related field; additional industry standard security certifications ; 5+ years experience in Information Security or Cybersecurity Defense, or strong experience in network or server administration; law enforcement or other investigative training, training and experience in intelligence field covering human intelligence or signals intelligence, knowledgeable with IBM QRadar, specifically, and log and traffic collection and analysis in general, will possess strong knowledge and experience of security controls, such as HIPAA, HITECH, and PCI-DSS; excellent organizational skills and the ability to work with multiple leadership styles, attention to detail, strong written communication skills and the ability to work in a team environment, and excellent follow through; and 1+ security certifications required: CISSP, ACE, CFA, or CCFE.
Internal Number: 48729BR
About Inova Health System
Inova is a global leader in personalized health, which leverages precision medicine to predict, prevent and treat disease, enabling individuals to live longer, healthier lives. At Inova, we serve more than two million people each year from throughout the Washington, DC, metro area and beyond. Inova's mission is to improve the health of the diverse community it serves through excellence in patient care, education and research. At Inova, more than 16,000 employees demonstrate their commitment every day to providing the community with expert, world-class, compassionate patient care.