System Security Analyst (full-time; primarily remote)

Looking to be part of a team that provides extraordinary healthcare from the heart? You Belong Here.

POSITION SPECIFICS

Title:  System Security Analyst (primarily remote)

FTE:  1.0 FTE

Schedule:  Monday to Friday 8:00am to 4:30pm; off-hours as needed

Holiday Rotation:  As needed

Weekend Rotation: As needed

On Call Requirements: On-call rotation

Location: Can work remotely; onsite as needed

POSITION SUMMARY

Under general leader direction, responsible for protecting the organization’s computer systems, networks, and data from security breaches, cyberattacks, and other threats. This role involves monitoring systems, conducting risk assessments, implementing security measures, and ensuring compliance with security standards and policies, as well as supporting the overall efforts to improve the IT security program, threat and vulnerability tasks, identity management, and application security assessments.

POSITION TECHNICAL RESPONSIBILITIES

• Collaborate with stakeholders with respect to security leadership on risk assessments, policies and procedures, security initiatives, and testing controls.
• Coordinate and deploy system updates and hot fixes in accordance with patch management program.
• Monitor and restrict access to sensitive, confidential, or other high-security data.
• Plan and conduct user training to provide data security and promote security awareness.
• Oversee backup solution of company data in case of disaster or data loss.
• Manage user access controls, authentication systems, and identity management processes.
• Stay updated with emerging security trends, technologies, and threat intelligence
• Recommend process improvement and strategic initiatives related to security assessment.
• Ensure the efficient and effective implementation and support of security solutions; application security design, assessments, testing and remediation.
• Collaborate with IT teams to ensure secure design and deployment of systems, networks, and applications.
• Develop and enforce security policies, procedures, and standards in compliance with regulatory requirements (e.g., ISO 27001, NIST, GDPR, HIPAA).
• Conduct vulnerability assessments, penetration tests, and risk analyses to identify and mitigate potential security gaps.
• Articulate security findings internally a variety of stakeholders, including both technical and non-technical stakeholders.
• Provide defensible recommendations on technical, physical, and administrative control implementations based on assessment findings while balancing the cost versus benefits.
• Respond to and investigate security incidents, including malware infections, data breaches, and unauthorized access attempts.
• Prepare detailed reports and documentation for audits, incident responses, and management reviews.
• Monitor network and system activity for security breaches, unusual behavior, and potential threats.
• Implement, manage, and maintain security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus software, and endpoint protection solutions.
• Perform system and network hardening to ensure secure configurations.
• Participate in on-call rotation.

POSITION REQUIREMENTS

Education:

• Required:  Associate's degree in the field of Computer Science, Information Technology, or Cybersecurity or related field (or equivalent experience).
• Preferred:  Bachelor’s Degree in the field of Computer Science, Information Technology, or Cybersecurity

Experience:

• Required:  Three (3) years experience in information security, network administration, or systems analysis
• Preferred:  Experience working in information services role in a health care environment or medical setting.

Licenses and Registrations:

• Required:  None
• Preferred:  None

Certification(s):

• Required:  None
• Preferred:  Systems Security Certified Practitioner (SSCP), Certified Information Systems Auditor (CISA), Cisco CyberOps Professional or related course work.

BENEFIT SUMMARY

• Competitive health and dental insurance options
• Flexible paid time off to balance work and life
• Retirement plan with immediate vesting and employer match
• Discounted membership to our state-of-the-art fitness facility
• Generous tuition reimbursement
• Employer provided life and disability insurance
• Free parking at facility

#IND100