Information Security Analyst - Intermediate (IAM)
About The Position
Under general direction, the Intermediate Information Security Analyst for Identity Access Management is involved in supporting IAM and Information Security management. Responsible for assisting with implementation and management of the Information Security Management System (ISMS) and IAM Systems by maintaining security policies and procedures, generating standard operating procedures, assisting with identifying network security baseline, monitoring, measuring and reporting on changes in the environment, training end-users and distributing security alerts, responding to incidents, and evaluate and recommend security products for various platforms in the network environment. Demonstrate respect, dignity, kindness and empathy in each encounter with all patients, families, visitors and other employees regardless of cultural background.
Requirements
- Bachelor’s degree. Bachelor degree requirement can be waived if the candidate has four or more years’ experience supporting a security framework such as NIST, ISO 27002 or HITRUST.
- Knowledge of computer hardware, software, programming, and data communications.
- Knowledge of security tools such as SEIM, Anti-virus, Web Content Filter, Data Loss Prevention, Intrusion Detection and Prevention, Encryption etc.
- Two years’ experience administering Infosec Frameworks.
- Experience collecting and reviewing system logs, maintaining security appliances and monitoring tools.
- Experience with regulatory compliance and incident management.
- Experience supporting enterprise data infrastructure systems.
Responsibilities
- Assist with management and implementation of the Information Security Management System (ISMS) and IAM Systems.
- Documents security incidents to include scope of the incident, necessity for reporting and impact of the exploit. Determine containment processes and evaluate remediation strategies. Document lessons learned and recommend methods for future avoidance.
- Administer, monitor and measure operations of the security tools to include, Anti-virus, Content Filtering, Vulnerability Scanning, and others as implemented. Assist the Security manager in recognizing and reacting to new security vulnerabilities publicly reported.
- On a regular basis or when major changes warrant, perform risk analysis to ensure that the organization is informed of security risks and possible remediation. Documents risks assessments for legal and regulatory purposes.
- Alert the users to possible security risks. Inform users of security best practices to include safe browsing on the Internet, how to recognize malicious email, proper storage and use of PHI and other level IV data.
- Enhance professional growth and development through in-service meeting, educational programs and workshops. Maintain membership to vulnerability notification services.
- Performs other duties as assigned.
Benefits
- Competitive pay and comprehensive health coverage within the first 30 days.
- Generous paid time off and flexible work schedules
- Retirement savings with employer match
- Tuition reimbursement and professional development opportunities
- Wellness, mental health, and recognition programs
- Career advancement through mentorship and internal mobility
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
1,001-5,000 employees
