Tenet is seeking a Senior Security Information & Event Management (SIEM) Engineer.

OVERVIEW

This role is part of an Infrastructure Security team that delivers in-depth technical security services for our most critical applications and infrastructure to ensure that they are highly resilient against existing and emerging cybersecurity threats.

REPORTING STRUCTURE & WORK SETTING

This position may be located in Dallas, Texas, or may be considered for remote support. The position will report to the Cybersecurity Security Operations Manager, within the Corporate Cybersecurity team.

RESPONSIBILITIES

The SIEM Engineer serves as engineering, architect, & operational support management for the SIEM technologies area of corporate Cybersecurity. This position ensures that all system components are maintained, updated, monitored, accessible, and available according to Cybersecurity standards, while partnering with other engineers in the evaluation, testing, and implementation of diverse solutions. Other key responsibilities include:

• Serve as subject matter expert for cybersecurity operations team and primary escalation point for SIEM platform issues, contribute to root-cause analysis, troubleshooting, and service restoration procedures.
• Contribute to the development of enterprise-wide cyber security strategy by contributing to efforts with other stakeholders and working directly with Tenet service providers.
• Reporting security gaps to leadership as applicable with appropriate recommendations
• Providing strategic direction for Tenet Corporate, Tenet Healthcare Facilities, and Tenet related business lines regarding data security, incident response, emerging cyber security technologies and industry best practices
• Design SIEM systems to meet growth while maintaining balance between performance, stability, and agility
• Interface with cybersecurity engineers, governance, and IT teams to assist in obtaining data analytics or data protection reports and correlations
• Develop effective correlation rules and perform ongoing development for additional use cases
• Tune SIEM components to ensure maximum reliability and reduce false positives
• Integrate SIEM with a wide variety of data sources and industry leading commercial security tools
• Assist and perform testing of implemented solutions, recommend improvements, and support the deployment of changes following Tenet's change and release management process.
• Perform maintenance and optimization of existing SIEM deployments
• Promptly respond to requests for assistance from SIEM users and others
• Adhere to relevant policies, procedures, standards and security good/accepted practices
• Resolve problems independently and understand escalation procedure
• Respond in a timely manner to all requests for access or other security exceptions requiring approval or involvement from the information security team
• Generate custom dashboards and/or report as directed by Cybersecurity leadership
• Assist with investigations and/or incidents as requested
• Represent Tenet on external & internal risk and information security groups, as necessary.
• Create formal documentation such as reports, training material, slide decks, and architecture diagrams

QAULIFICATIONS:

WORK EXPERIENCE AND EDUCATION

• 10+ years Information Technology experience
• 5+ years Cybersecurity experience specializing in SIEM design and implementation
• BS in Computer Science or equivalent field preferred. Related job experience may substitute
• GIAC-GCED, GCIH, GDSA or other equivalent industry standard security certifications required

SPECIALIZED KNOWLEDGE, SKILLS & ABILITIES:

• Must be fluent in English.
• Working knowledge of MITRE ATT&CK and other common Tactics, Techniques, and Procedures
• Working knowledge of CIS Top 20, NIST or other security frameworks
• Ability to interact and negotiate across various departments
• Excellent management and communication skills
• Experience negotiating contracts and working with vendors
• Experience with security incidents and forensic investigations
• Knowledge of and experience with risk management and mitigation

Tenet Healthcare/USPI complies with federal, state, and/or local laws regarding mandatory vaccination of its workforce. If you are offered this position and must be vaccinated under any applicable law, you will be required to show proof of full vaccination or obtain an approval of a religious or medical exemption prior to your start date. If you receive an exemption from the vaccination requirement, you will be required to submit to regular testing in accordance with the law.

Employment practices will not be influenced or affected by an applicant’s or employee’s race, color, religion, sex (including pregnancy), national origin, age, disability, genetic information, sexual orientation, gender identity or expression, veteran status or any other legally protected status. Tenet will make reasonable accommodations for qualified individuals with disabilities unless doing so would result in an undue hardship.