Community Health Systems

Cyber Security Specialist, Threat Intelligence (Remote)

Community Health Systems · United States

  • Hybrid
  • Full-time
  • $120,000 / year
  • United States

Job highlights

  • Lead intelligence infrastructure design and optimization.
  • Map adversary behaviors to MITRE ATT&CK framework.
  • Develop SOAR playbooks for threat hunting.
  • Serve as expert for threat modeling and security.
  • Create intelligence products for diverse audiences.

About the role

Cyber Security Specialist Threat Intelligence

In this role, the Threat Intelligence Specialist leads the design, implementation, and continuous optimization of the organization’s Intelligence Infrastructure, specifically overseeing Threat Intelligence Platforms (TIP) and the integration layers required to aggregate diverse internal and external telemetry. You will drive the mapping of global adversary behaviors to the MITRE ATT&CK® framework and work to determine the relevance and impact of real world threats to CHS, contextualizing TTPs into actionable intelligence for key stakeholders at all levels of the organization. By spearheading Automation and Orchestration initiatives, you will develop sophisticated SOAR playbooks that ingest Indicators of Compromise (IOCs) and Indicators of Behavior (IOBs) to trigger proactive blocking or rapid threat hunting workflows.

Beyond technical execution, you will serve as the primary Subject Matter Expert for Threat Modeling, evaluating emerging technologies and business initiatives to identify high-value targets attractive to threat actors and recommending defenses and detections. A critical component of this position involves Intelligence Dissemination, where you will lead the creation of technical, tactical, and strategic intelligence products tailored for audiences ranging from front-line SOC analysts to executive leadership. Finally, you will bridge the gap between intelligence and action through Advanced Detection Engineering, providing actionable intelligence to Security Operations and Incident Response teams for Threat Hunting or to convert into high-fidelity detections.

Essential Functions

  • Lead the design, development, configuration, and implementation of solutions to resolve complex technical and business issues related to Cybersecurity across multiple functions.
  • Lead efforts in assessing and mitigating Cybersecurity risks, reviewing and consulting on the security of technology solutions to address intricate challenges, and ensuring compliance with organizational standards.
  • Leading the design, development, and implementation of new solutions, integrating them into both existing and newly defined architecture.
  • Lead the design and integration of new security solutions into existing and newly defined architecture.
  • Work across multiple, high-complexity cybersecurity functions, driving strategic initiatives and improvements.
  • Serve as a subject matter expert (SME) for multiple high-complexity technical and process solutions, providing strategic guidance and leadership across the organization.

Qualifications

  • H.S. Diploma or GED required
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or related field preferred
  • 8-10 years of progressive experience in Cybersecurity engineering or architecture
  • Proven experience leading enterprise-scale initiatives with measurable outcomes
  • CISSP, GIAC, OSCP, or other relevant advanced certification preferred

Knowledge, Skills And Abilities

  • Exceptional ability to architect, design, and implement solutions for the most complex technical and Cybersecurity challenges.
  • Advanced skills in identifying, troubleshooting, and resolving highly complex issues with ability to create long-term solutions that align with business objectives.
  • Expert knowledge of security principles, techniques, and implementations across multiple Cybersecurity domains, influencing strategic decisions and organizational policy.
  • Exceptional ability to lead strategic initiatives, guide multifunctional teams through the systems development lifecycle, and ensure the successful execution of enterprise-scale projects.
  • Ability to communicate highly complex technical concepts in clear, concise terms for diverse audiences and influence decision-making across all levels of the organization.
  • Strong leadership skills to build cross-functional relationships, mentor junior staff, and represent Cybersecurity at the organizational level.

Key skills/competency

  • Cyber Security Specialist
  • Threat Intelligence
  • Cybersecurity Engineering
  • Cybersecurity Architecture
  • MITRE ATT&CK
  • SOAR Playbooks
  • Threat Modeling
  • Intelligence Dissemination
  • Detection Engineering
  • CISSP

Skills & topics

  • Cyber Security Specialist
  • Threat Intelligence
  • Cybersecurity Engineering
  • Cybersecurity Architecture
  • MITRE ATT&CK
  • SOAR
  • Threat Modeling
  • Intelligence Analysis
  • Detection Engineering
  • Remote

How to get hired

  • Tailor your resume: Highlight your experience in threat intelligence, cybersecurity architecture, and leading enterprise-scale initiatives.
  • Showcase certifications: Emphasize CISSP, GIAC, or OSCP if you hold them, aligning with CHS's preferred qualifications.
  • Demonstrate leadership: Provide examples of leading cross-functional teams and communicating complex technical concepts.
  • Research CHS: Understand their mission in healthcare technology and how threat intelligence supports it.
  • Prepare for technical questions: Be ready to discuss threat modeling, SOAR, and MITRE ATT&CK.

Technical preparation

Master MITRE ATT&CK framework and adversary TTPs.,Build and optimize Threat Intelligence Platforms (TIPs).,Develop SOAR playbooks for automation.,Practice threat modeling and analysis techniques.

Behavioral questions

Describe a complex cybersecurity challenge you solved.,How do you communicate technical threats to non-technical audiences?,Share an experience leading a strategic cybersecurity initiative.,How do you stay updated on emerging cyber threats?

Frequently asked questions

What are the key responsibilities for a Cyber Security Specialist, Threat Intelligence at Community Health Systems?
The Cyber Security Specialist, Threat Intelligence at Community Health Systems is responsible for designing, implementing, and optimizing the intelligence infrastructure, including Threat Intelligence Platforms (TIP). This role involves mapping adversary behaviors to the MITRE ATT&CK framework, developing SOAR playbooks, performing threat modeling, creating intelligence products, and supporting advanced detection engineering.
What qualifications are required for the Cyber Security Specialist, Threat Intelligence position at Community Health Systems?
A High School Diploma or GED is required. A Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field is preferred. Candidates should have 8-10 years of progressive experience in Cybersecurity engineering or architecture and proven experience leading enterprise-scale initiatives. Relevant advanced certifications like CISSP, GIAC, or OSCP are preferred.
Is the Cyber Security Specialist, Threat Intelligence role at Community Health Systems remote?
Yes, the Cyber Security Specialist, Threat Intelligence role at Community Health Systems is a remote position.
What technical skills are most important for a Threat Intelligence Specialist at Community Health Systems?
Key technical skills include architecting and implementing complex cybersecurity solutions, advanced troubleshooting, expertise in security principles, knowledge of MITRE ATT&CK, SOAR playbook development, and experience with Threat Intelligence Platforms (TIP).
How does Community Health Systems use threat intelligence in their security operations?
Community Health Systems uses threat intelligence to proactively identify and mitigate cybersecurity risks. They contextualize real-world threats into actionable intelligence for various stakeholders, develop SOAR playbooks for automated responses, conduct threat modeling to identify vulnerabilities, and use intelligence to engineer advanced detections for Security Operations and Incident Response teams.
What kind of intelligence products does the Threat Intelligence Specialist create at Community Health Systems?
The Threat Intelligence Specialist creates technical, tactical, and strategic intelligence products. These are tailored to different audiences, ranging from front-line SOC analysts to executive leadership, ensuring relevant and actionable insights are disseminated effectively.
Does Community Health Systems prefer specific cybersecurity certifications for this role?
Yes, Community Health Systems prefers advanced certifications such as CISSP, GIAC, or OSCP for the Cyber Security Specialist, Threat Intelligence role.