The Security Engineering unit provides for access control and analysis of the OHSU IT Network and applications environments for risks and threats. This unit also ensures that proposed and existing systems and network security architectures are engineered for and aligned with and operated according to OHSU security policies and standards as well as industry best practices, and develops mitigation strategies, techniques and processes for security breaches. As detailed below, the individual positions within this work unit will be required to collaborate and assist staff in other technology work units.
As members of the Security Engineering work unit, the Systems Analyst/Engineer provides a high level, broad spectrum of systems analysis, engineering, and project management for OHSU ITG technology platforms that support Enterprise services and missions. Specifically, this position provides for Systems Analysis, Systems Administration, Systems Engineering, Security Administration and Project Management. The primary work for this position is in support of enterprise wide integrated information technology security systems solutions that ensure protection and integrity of proprietary/confidential data. This position supports underlying security technology platforms and processes including intrusion prevention and detection systems, firewalls, audit tools, and breach mitigations tools. In addition, this position will provide back-fill to other TeSD work units that utilize the Systems Analyst/Engineer. Members of these work units will routinely work with, augment and backfill members of other work units that have several overlapping responsibilities. The incumbent will have primary responsibilities for one or more technology platforms and secondary responsibility for other technologies. This position also provides for communications and technical feedback between customers, Field Technical Services, and other ITG work units and provides "Tier III" support and technical escalation for design and problem resolution.
This position is distinguished by a hybrid combination of technology roles that include Systems Analyst, Systems Administrator, Systems Engineer, and Project Manager. These are multi-tasking, broadly based positions that require a unique combination of analytic, engineering, project management, and customer service skills to provide ITG systems support across all OHSU healthcare, academic and research missions. Incumbents must be proficient in troubleshooting and root cause analysis using the scientific method of refining a problem statement, and queuing up a series of increasingly specific tests to isolate the problem. Necessarily, this requires specialized knowledge for the equipment and services for which the analyst/engineer is directly responsible. In addition, expert broad knowledge is used to troubleshoot integrated applications suites, services running across hybrid network architectures, virtualized servers or desktops, load balanced web farms, firewalled VPNS, etc.
The Systems Analyst/Engineer is also distinguished by a broad spectrum and high degree of technical skills/experience, and the ability to effectively multi-task across job roles and across multiple technology platforms. The Security Engineering work unit comprises the core of the ITG Information Security Incident Response Team (ISIRT). Lastly, this position is distinguished by a requirement to rapidly and dynamically respond to a continuously changing technology environment and threat landscape.