This site uses cookies. To find out more, see our Cookies Policy

Cyber Security Engineer in Mesa, AZ at KEPRO

Date Posted: 1/26/2018

Job Snapshot

  • Employee Type:
  • Location:
    Mesa, AZ
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:

Job Description



JOB TITLE:            CyberSecurity Engineer

DEPARTMENT:  InformationTechnology Services

FLSA STATUS:     Exempt

Summary Description:

Assists in the development of and administers ITS policy andcorporate guidance for KEPRO’s information and physical security strategies.Work to maintain and improve the current posture and plans for continued growthand integrity of KEPRO’s security policies and procedures. Areas of primaryresponsibility include PC/server/network security, database security, applicationsecurity, systems security administration and user access securityadministration. Most importantly the Cyber Security Engineer will help preventattacks through their expertise and knowledge of databases, networks, hardware,firewalls and encryption. They keep computer systems running smoothly, preventthe theft of financial and personal information, and block intruders fromaccessing and divulging proprietary data.


  • Responsible for developing, implementing,communicating, and supporting IT Security technologies, programs, policies andstrategies to protect KEPRO’s information and technology assets.
  • Collaborates with ISSM to ensure accurate andtested Policies and Procedures are implemented.
  • Establishes and monitors adherence to sound ITsecurity controls, policies and procedures. 
  • Develops plans to maintain IT service continuityin the event of emergencies or disasters.
  • Collaborates with ISSM to ensure accurate andtested Policies and Procedures are implemented.
  • Ensure that all IT systems and services arecompliant with all applicable industry regulations (i.e. HIPAA, ISO, DIACAP,URAC, FISMA).
  • Collaborates with ISSM to ensure regulatorycompliance

The list of accountabilities is not intended to beall-inclusive and may be expanded to include other duties that management maydeem necessary from time to time.


  • Required: Bachelor’s degree from an accredited college or university inInformation Management, Computer Science or related field or any equivalentcombination of relevant work experience and training.
  • Required: CISSP Certification
  • Certifications highly desirable: ITIL, CISA,CISM, CGEIT, GSNA, GSNA, GCPM, GSTRT or other security certification.

Skills, KnowledgeAbilities

                Positionrequires a broad-based understanding of the KEPRO’s business and itsinformation security needs and risks; demonstrated skills in managing secure ITservices.

Knowledge of:

  • Firewalls, intrusion detection systems,anti-virus software, data and device encryption and other industry-standardtechniques and practices
  • In-depth technical knowledge of network, PC, andplatform operating systems
  • Applicable regulatory security requirements(NIST, FISMA, and/or HIPAA) essential
  • Working technical knowledge of systems software,protocols, and standards.
  • Strong knowledge of TCP/IP and networkadministration/protocols.
  • Hands-on experience with devices such as hubs,switches, and routers.
  • Strong knowledge of network packet analysistools (ex, WireShark).
  • Forensics experience, tools, and processes.
  • Incident response and reporting.
  • Security Governance
  • Audit and Assessment
  • Vulnerability Management
  • Security Operations 


  • Intuition and keen instincts to pre-emptattacks.
  • High level of analytical and problem-solvingabilities.
  • Research, evaluate and report on new andemerging threats and technology solutions, to combat said threats, and protectour assets and data.
  • Strong understanding of the organization’s goalsand objectives.
  • Strong interpersonal and oral communicationskills.
  • Highly self-motivated and directed.
  • Strong organizational skills.
  • Excellent attention to detail.
  • Ability to effectively prioritize and executetasks in a high-pressure environment.
  • Able to work in a team-oriented, collaborativeenvironment.
  • Maintain strict confidentiality ofhighly-sensitive corporate information
  • Demonstrates ability to exercise independentjudgment and strong decision making skills.
  • Administer security platforms
  • Advanced administration and troubleshooting ofsupported security systems and services.
  • Strong documentation skills to assist increating departmental procedures, policies and guidelines.
  • To manage and perform periodic recovery testingof DR plans and update those plans.
  • Performs limited staff supervision of technicalobjectives.
  • Implement network security policies, applicationsecurity, access control and data safeguards.
  • Update secure configurations and documentationby routinely reviewing vendor sites, bulletins, and notifications for securityinformation.
  • Analyze and establish security requirements foryour networks.
  • Train fellow employees in security awareness andprocedures.
  • Conduct security audits and make policyrecommendations.               


  • 5 years of progressive security experience in ahealthcare Information Technology environment.
  • 3 years preforming a full audit/assessment withthe following security frameworks: HIPAA, HITECH, FISMA, NIST.
  • 3 years security governance experiencemaintaining policies and deliverables.
  • 3 years working in an ITIL ticketing systemrecording all tasks.
  • 3 years working with a Security InformationManagement System (SIMS).
  • 3 years preforming pen test using OWASP top 10and other frameworks

Mental and physicalrequirements

The physical demands described here are representative ofthose that must be met by an employee to successfully perform the essentialfunctions of this job.  Reasonableaccommodations will be made as required by law in attempt to enable anindividual with a disability to perform the essential functions of thisjob.  While performing the duties of thisjob, the employee is regularly required to sit for prolonged periods of time;key and/or control objects; interact extensively with internal and externalcustomers; occasionally lift and/or move objects weighing up to 40 pounds; andoccasional travel within the state.