Fair Haven Community Health Care 

For over 54 years, FHCHC has been an innovative and vibrant community health center, catering to multiple generations with over 165,000 office visits across 21 locations. Guided by a Board of Directors, most of whom are patients themselves, we take pride in being a healthcare leader dedicated to delivering high-quality, affordable medical and dental care to everyone, regardless of their insurance status or ability to pay. Our extensive range of primary and specialty care services, along with evidence-based programs, empowers patients to make informed choices about their health. As we expand our reach to underserved areas, our commitment to prioritizing patient needs remains unwavering. FHCHC's mission is to enhance the health and social well-being of the communities we serve through equitable, high-quality, and culturally responsive patient-centered care.

Job purpose

The Cybersecurity Specialist supports and advances Fair Haven Community Health Center’s (FHCHC) cybersecurity program, including email security, vulnerability management, incident response, data loss prevention, and the implementation of enterprise security initiatives. This role ensures the confidentiality, integrity, and availability of FHCHC systems, networks, and data

Duties and responsibilities

Reporting to the Assistant Director of IT, the Cybersecurity Specialist will monitor, analyze and detect cyber events and incises within information systems and networks. Typical duties include but are not limited to:

Security Monitoring & Incident Response

• Monitor networks, systems, applications, and infrastructure for threats using SIEM, IDS/IPS, EDR, and related tools.
• Investigate and respond to security incidents, breaches, and malware infections, ensuring timely remediation and reporting.
• Provide after-hours incident response as part of an on-call rotation.

• Perform vulnerability scanning, assessment, remediation, and penetration testing (e.g., Nessus, Wazuh).
• Conduct risk assessments and recommend mitigation strategies to reduce exposure to cyber threats.
• Patch, update, and harden systems to address vulnerabilities and operational risks.

• Implement and maintain security technologies including firewalls, access controls, IDS/IPS, endpoint protection, and DLP.
• Manage IAM functions, including Active Directory authentication, authorization, and account security.
• Support CI/CD security processes, including analysis, testing, and deployment.

• Configure, deploy, migrate, and troubleshoot VMware and Microsoft Hyper‑V environments, including load balancing, NIC teaming, and failover.
• Maintain network equipment and core IT infrastructure to ensure secure, reliable operations.
• Automate operational and security tasks using PowerShell and other scripting tools.

• Develop, maintain, and enforce cybersecurity policies, standards, and procedures.
• Provide operational and security reporting to senior leadership, including risk assessments and incident impact analysis.
• Deliver cybersecurity awareness programs, training, and workshops to promote a security-first culture.
• Offer technical guidance and training to IT staff to support secure operational practices

• Work with internal teams and external vendors to implement security best practices and evaluate new technologies.
• Identify system or workflow deficiencies and recommend improvements.
• Contribute to planning, development, and deployment of major IT and cybersecurity projects.
• Provide expertise in workflow design, system architecture, testing, and implementation.

• Bachelor’s degree in Cybersecurity, Computer Science, IT, or related field required, a Master’s Degree preferred.
• Industry certifications preferred (e.g., security, cloud, security +, or infrastructure-focused).

• A minimum of 4 years of progressive experience in cybersecurity or IT operations.
• Healthcare environment experience preferred, including familiarity with HIPAA/PHI requirements.
• Hands-on experience with security monitoring, incident response, and threat mitigation.

• Proficient with Microsoft Windows 11, Windows Server, and Microsoft 365/Office 365 security tools.
• Strong understanding of OS security, IAM, Active Directory, authentication, and access control.
• Solid networking knowledge: TCP/IP, DNS, VPNs, firewalls, routers, switches, and cabling.
• Experience managing and supporting cybersecurity technologies (EDR, SIEM, IDS/IPS, DLP, firewalls).
• Familiarity with common attack vectors (malware, phishing, social engineering) and encryption methods.
• Ability to configure, monitor, and maintain security systems to detect and mitigate threats.

• Strong analytical thinking, problem-solving, and attention to detail.
• Demonstrated curiosity, initiative, and a proactive approach to identifying risks and improvements.
• Effective written and verbal communication skills, including documentation and translating technical concepts for non-technical audiences.
• Ability to work independently and collaboratively in a team-oriented environment.

• None

American with Disabilities Requirements:

External and internal applicants, as well as position incumbents who become disabled, must be able to perform the essential job specific functions (listed within each job specific responsibility) either unaided or with the assistance of a reasonable accommodation to be determined by the organization on a case by case basis.

Fair Haven Community Health Care is an Equal Opportunity Employer. FHCHC does not discriminate on the basis of race, religion, color, sex, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.