Profiles search
Justin Bohm
Principal Information Security System Engineer at Sanford Health
Sioux Falls, SD, United States
Details
Experience:
Facilitate the building, configuring, and maintaining of cybersecurity systems to ensure our operational environments stay compliant and secure. Proficient in the implementation of security controls using industry best practices across numerous technologies including, but not limited to SIEM, email filtering, web and content filtering, firewall, IPS/IDS systems, identity and access management, SSO/MFA, vulnerability management, and data protection. Facilitate the maintenance of existing security systems including implementing new features, performing upgrades, and managing technical configurations/policies across a variety of business-critical systems. Facilitate the monitoring and response to security system health alerts. Provides expert level writing and maintenance of documentation that can be used by all team members and other employees.
Deliver security consulting services to other Sanford health groups. Provide technical and tactical expertise to a 24x7 team of dedicated security engineers focused on maintaining operational stability while reducing risk. Build and maintain key vendor and supplier relationships. Manage the IS Engineering ticket queue. Prioritize and complete tickets according to impact to Sanford Health business functions. Mentor others within the team on tools, processes, and the Sanford Health organization.
Works under limited guidance due to previous experience/breadth of knowledge of processes and organizational knowledge. Acts independently to determine methods and procedures on new assignments. Regularly presented with new assignments and projects that require the application of independent judgement/interpretation of policies/practices. Checks own work and the work of other team members.
2023 : Present
Sanford Health
Principal Information Security System Engineer
Implement methods for improving and establishing controls for critical processes.
Implement security controls using industry best practices across numerous technologies including, but not limited to SIEM, email filtering, web and content filtering, firewall, IPS/IDS systems, anti-virus / endpoint security, strong authentication, and data protection.
Prioritize and work on strategic project initiatives ensuring the processes and procedures are handed off to IS System Administration to maintain any new or existing tools.
Maintain existing security systems including implementing new features, performing upgrades, and managing technical configurations / policies across numerous technologies.
Partner closely with the Security Operations Center to ensure a cohesive strategy and execution of security controls.
Provide responses to written and oral requests and security consultations in a timely fashion.
Make strategic recommendations to enhance and improve overall security posture.
Develop working relationships and trust with other teams by acting in a consistent, genuine manner.
Assist team in prioritization of existing workload and provide guidance, as necessary.
Evaluate methods to increase efficiency of current toolsets (such as script automation or process improvement recommendations).
2020 :
Sanford Health
Senior IT Security Engineer
2019 : 2020
Sanford Health
IT Security Engineer
2017 : 2019
The Evangelical Lutheran Good Samaritan Society
Information Security and Compliance Senior Analyst
Network Monitoring and Vulnerability Assessment
• Monitor, investigate and interpret SIEM logs and MSSP alarms for Information Security events.
• Investigate network anomalies and other cyber security events to determine the cause and extent of exposure and overall risk to the environment.
• Respond to any security related alerts and incidents.
• Create security reports and metrics for management and auditor review.
• Monitor security events from sources including, but not limited to : SIEM, IDS/IPS, Network and web application firewalls, Anti-Virus/Malware, Web content filtering, file integrity monitoring.
Vulnerability scanning
• Perform internal and external vulnerability scanning and phishing to verify proper security protocols are being followed.
• Work with system owners for remediation in a timely manner.
• Investigate and document gaps in existing controls.
Incident Response
• Lead and manage security incidents to ensure timely mitigation and remediation efforts are completed.
• Document investigations.
• Review required documentation for adherence to Information Security standards and processes.
• Recommend effective process changes to enhance defense and response procedures.
Threat Detection
• Analyze and interpret malware, exploit and threat activities.
• Assist with intrusion remediation and strategy development and implementation.
• Identify emerging vulnerabilities and evaluate associated risks.
2017 : 2017
The Evangelical Lutheran Good Samaritan Society
Information Security Analyst
Deliver security consulting services to other Sanford health groups. Provide technical and tactical expertise to a 24x7 team of dedicated security engineers focused on maintaining operational stability while reducing risk. Build and maintain key vendor and supplier relationships. Manage the IS Engineering ticket queue. Prioritize and complete tickets according to impact to Sanford Health business functions. Mentor others within the team on tools, processes, and the Sanford Health organization.
Works under limited guidance due to previous experience/breadth of knowledge of processes and organizational knowledge. Acts independently to determine methods and procedures on new assignments. Regularly presented with new assignments and projects that require the application of independent judgement/interpretation of policies/practices. Checks own work and the work of other team members.
2023 : Present
Sanford Health
Principal Information Security System Engineer
Implement methods for improving and establishing controls for critical processes.
Implement security controls using industry best practices across numerous technologies including, but not limited to SIEM, email filtering, web and content filtering, firewall, IPS/IDS systems, anti-virus / endpoint security, strong authentication, and data protection.
Prioritize and work on strategic project initiatives ensuring the processes and procedures are handed off to IS System Administration to maintain any new or existing tools.
Maintain existing security systems including implementing new features, performing upgrades, and managing technical configurations / policies across numerous technologies.
Partner closely with the Security Operations Center to ensure a cohesive strategy and execution of security controls.
Provide responses to written and oral requests and security consultations in a timely fashion.
Make strategic recommendations to enhance and improve overall security posture.
Develop working relationships and trust with other teams by acting in a consistent, genuine manner.
Assist team in prioritization of existing workload and provide guidance, as necessary.
Evaluate methods to increase efficiency of current toolsets (such as script automation or process improvement recommendations).
2020 :
Sanford Health
Senior IT Security Engineer
2019 : 2020
Sanford Health
IT Security Engineer
2017 : 2019
The Evangelical Lutheran Good Samaritan Society
Information Security and Compliance Senior Analyst
Network Monitoring and Vulnerability Assessment
• Monitor, investigate and interpret SIEM logs and MSSP alarms for Information Security events.
• Investigate network anomalies and other cyber security events to determine the cause and extent of exposure and overall risk to the environment.
• Respond to any security related alerts and incidents.
• Create security reports and metrics for management and auditor review.
• Monitor security events from sources including, but not limited to : SIEM, IDS/IPS, Network and web application firewalls, Anti-Virus/Malware, Web content filtering, file integrity monitoring.
Vulnerability scanning
• Perform internal and external vulnerability scanning and phishing to verify proper security protocols are being followed.
• Work with system owners for remediation in a timely manner.
• Investigate and document gaps in existing controls.
Incident Response
• Lead and manage security incidents to ensure timely mitigation and remediation efforts are completed.
• Document investigations.
• Review required documentation for adherence to Information Security standards and processes.
• Recommend effective process changes to enhance defense and response procedures.
Threat Detection
• Analyze and interpret malware, exploit and threat activities.
• Assist with intrusion remediation and strategy development and implementation.
• Identify emerging vulnerabilities and evaluate associated risks.
2017 : 2017
The Evangelical Lutheran Good Samaritan Society
Information Security Analyst
Company:
Sanford Health
Profile Photo
