**Careers With Purpose** **Sanford Health is one of the largest and fastest-growing not-for-profit health systems in the United States. We're proud to offer many development and advancement opportunities to our nearly 50,000 members of the Sanford Family who are dedicated to the work of health and healing across our broad footprint.** **Facility:** Stevens Center Building **Location:** Sioux Falls, SD **Address:** 900 East 54th St N, Sioux Falls, SD 57104, USA **Shift:** 8 Hours - Day Shifts **Job Schedule:** Full time **Weekly Hours:** 40.00 **Salary Range:** $34.50 - $57.00 **Pay Info:** Pay starts at $34.50 and increases according to years of applicable experience. **Department Details** An ideal candidate will exhibit the following qualities: Strong technical expertise in security risk assessments, security exception management, and policy development. Proven ability to mentor and support junior team members. Experiences with frameworks like NIST CSF v2.0, HIPAA, PCI/DSS. Ability to provide guidance with security metrics reporting. Strong process improvement skills to enhance advisory and governance workflows. Exceptional attention to detail, particularly in written and oral communications. Has the ability to effectively communicate complex technical concepts in clear, concise, and executive-friendly language. This role is an opportunity to make a meaningful impact on the organization's security posture while contributing to a dynamic and collaborative team. Key areas of responsibly include: 1. Third-Party Security Assessments Evaluate the security posture of third-party vendors and service providers. Review and validate responses to third-party security questionnaires. Ensure third-party relationships comply with internal security requirements and regulatory standards. Ensure the technical feasibility of assessed products meets or exceeds standards. 2. Security Exception Management Review and assess security exception requests to evaluate potential risks and mitigation strategies. Collaborate with requestors and stakeholders to ensure exceptions are documented, approved, and monitored effectively. Provide guidance on timelines and conditions for resolving exceptions to ensure compliance. Manage expired security exceptions and ensure timely resolution. 3. Policy and Standards Management Assist in creating, reviewing, and updating security policies, standards, and guidelines. Ensure alignment with industry best practices, emerging threats, and organizational goals. Educate stakeholders on security policies and assist with policy enforcement. 4. Continuous Improvement Proactively identify opportunities to enhance security processes, tools, and frameworks. Stay updated on emerging security threats, technologies, and regulatory changes. Recommend and support the implementation of new security tools and best practices. **Job Summary** Responsible for executing enterprise cybersecurity focusing on the processes and tools that support Security Operations’ threat prevention, threat hunting, vulnerability assessments, and incident response. Also is responsible for providing insight and direction to minimize identified threats and risks to the organization through collaboration with other IS and Sanford technological groups. Perform real-time and forensic log and EDR monitoring and analysis to provide network, data, and asset security for Sanford Health. Perform vulnerability assessments and report results to application and asset owners. Provide consulting services to owners relating to response activities. Perform and collaborate on Incident Response activities including the collection, preservation, and interpretation of digital evidence. Build, administer, and support the IS Security Operations tools, processes, and services. Identify and complete improvements and metrics to Security Operations processes and services. Manage the IS Security Operations ticket queue. Prioritize and complete tickets according to impact to Sanford Health business functions. Provide security consulting services to other Sanford Health groups. Evaluate critical systems, prioritize workflow, and determine solutions. Research and advise on SOC trends and capabilities. Use data analysis to drive service improvement. Learn new tools, processes, and work methods based on business needs. Communicate via written, verbal, and presentation style to individuals of varying technical abilities and job function. **Qualifications** Bachelor’s degree required, in lieu of education, leadership may consider an Associates degree plus 3 years of applicable experience in computer science, cyber security or an information technology related field. Minimum of at least 2 years experience in the cyber security field. Security Certifications are desired. **Benefits** Sanford Health offers an attractive benefits package for qualifying full-time and part-time employees. Depending on eligibility, a variety of benefits include health insurance, dental insurance, vision insurance, life insurance, a 401(k) retirement plan, work/life balance benefits, and a generous time off package to maintain a healthy home-work balance. For more information about Total Rewards, visit https://sanfordcareers.com/benefits . Sanford is an EEO/AA Employer M/F/Disability/Vet. If you are an individual with a disability and would like to request an accommodation for help with your online application, please call 1-877-673-0854 or send an email to talent@sanfordhealth.org . Sanford Health has a Drug Free Workplace Policy. An accepted offer will require a drug screen and pre-employment background screening as a condition of employment. **Req Number:** R-0213834 **Job Function:** Information Technology **Featured:** No