Information Security Analyst

About The Position

Requirements

• Degree in Cybersecurity/IT or equivalent experience
• Minimum 2 years progressive experience
• Knowledge of networking, operating systems, and security principles
• Familiarity with PHI protection
• Commitment to workplace of dignity and respect
• Compliance with all Equal Employment Opportunity rules and guidelines
• Ability to work with others cooperatively and cordially in a spirit of teamwork
• Ability to appear at work as scheduled, mindful of the company’s attendance policies
• Ability to accept direction from managers and supervisors in a respectful and collaborative manner
• Valid driver's license
• Must pass level II background and drug screen
• Must maintain current training as required by Operation PAR, Inc. policies
• Ability to write accurately and legibly
• Moderate proficiency in the use of Microsoft Windows based computers
• Ability to accurately type at least 40 words per minute.
• Ability to sit at a desk and view a display screen for extended periods of time
• Ability to bend, stoop and reach
• Ability to sit in meetings for extended periods of time
• Ability to move throughout program facilities both indoors and outdoors
• Ability to lift and carry 10 pounds
• Good hearing and vision

Nice To Haves

• Security+ or CISSP certification
• Healthcare or nonprofit experience
• Experience with SIEM, EDR, cloud security
• Familiarity with NIST CSF or HITRUST

Responsibilities

• Monitor security tools (SIEM, EDR, IDS/IPS, email security platforms)
• Analyze security alerts and respond appropriately
• Conduct log analysis across systems
• Participate in vulnerability scanning and remediation tracking
• Support incident response lifecycle
• Document incidents and maintain evidence
• Assist in ransomware preparedness exercises
• Collaborate with IT and business units
• Assist in HIPAA risk assessments
• Maintain security policies and procedures
• Support compliance with HIPAA, HITECH, 42 CFR part 2, and NIST CSF
• Participate in audits as required
• Support phishing simulations and training
• Educate staff on PHI handling
• Promote cybersecurity awareness
• Maintain IAM and MFA controls
• Support encryption and DLP strategies
• Review access for least privilege
• Work with IT, clinical teams, and other departments across the organization to ensure compliance
• Stay current on threats
• Recommend security improvements

Benefits

• 9 paid holidays per year
• 3 weeks of PTO per year (on top of holidays). PTO increases to 4 weeks/year after 2 years of employment, and then to 5 weeks/year after 5 years of employment.
• Medical/Dental/Vision/Life Insurance
• 401k matching
• Tuition reimbursement
• Continuing education, reimbursement for professional certifications, licensure and qualified supervision.