IT Security Analyst 3 - IS - Data Security - FT - Day - Remote SoCal
About The Position
Position Summary: The data security analyst will play a leading role in driving information security analysis, vulnerability remediation and performing risk assessments. This role is a key business enabler to provide information security risk analysis and strategic recommendations for the ongoing improvement of Information Security for the UCI School of Medicine, Health Research and UCI Health as needed. In this role, you will be engaging with program employees, researchers, stakeholders, and executives to ensure appropriate and up-to-date security management. Remote Work: This position will be predominantly work from home but is required to work onsite depending on the needs of the School of Medicine from the Irvine or Orange Campus locations.
Requirements
- Understanding of security baselines and configuration standards for healthcare IT systems
- Must possess the skill, knowledge and ability essential to the successful performance of assigned duties
- Must demonstrate customer service skills appropriate to the job
- Excellent written and verbal communication skills in English
- Ability to review contractual language and Business Associate Agreements
- Ability to review and interpret vulnerability assessment reports and prioritize findings based on risk
- Ability to recommend risk mitigation strategies and controls based on risk assessment findings
- Ability to maintain a work pace appropriate to the workload
- Ability to deliver clear, actionable, and timely risk reports tailored for both technical staff and non-technical stakeholders
- Ability to conduct security awareness training and compliance & management
- Ability to assess levels of risk
- Ability to analyze, support and maintain numerous proactive risk program
- 5+ years working in a heterogeneous IT environment
- 5+ years of experience in academic and/or healthcare IT environments
- 2+ years of experience in data security assessment and audit
Nice To Haves
- Understanding of cloud security risks and controls for platforms such as Microsoft Azure, AWS, or Google Cloud
- Knowledge of risk management frameworks and methodologies such as NIST RMF, NIST CSF, ISO 27001, or FAIR
- Knowledge of medical center and academic IT environments
- Knowledge of HIPAA/HITECH, NIH, FISMA, CMS, CPHS, dbGaP, PCI-DSS and other State and Federal data security requirements and regulations
- Industry certifications such as Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), HealthCare Information Security and Privacy Practitioner (HCISPP), Security+, or related GRC credentials
- Familiarity with enterprise IT environments and common technology risks
- Experience with GRC platforms or risk management tools (e.g., ServiceNow GRC, Archer, LogicGate)
Responsibilities
- driving information security analysis
- vulnerability remediation
- performing risk assessments
- provide information security risk analysis
- strategic recommendations for the ongoing improvement of Information Security for the UCI School of Medicine, Health Research and UCI Health as needed
- engaging with program employees, researchers, stakeholders, and executives to ensure appropriate and up-to-date security management
Benefits
- medical insurance
- sick and vacation time
- retirement savings plans
- access to a number of discounts and perks
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
101-250 employees
