System Security Analyst (full-time; primarily remote)

About The Position

Requirements

• Associate's degree in the field of Computer Science, Information Technology, or Cybersecurity or related field (or equivalent experience).
• Three (3) years experience in information security, network administration, or systems analysis

Nice To Haves

• Bachelor’s Degree in the field of Computer Science, Information Technology, or Cybersecurity
• Experience working in information services role in a health care environment or medical setting.
• Systems Security Certified Practitioner (SSCP), Certified Information Systems Auditor (CISA), Cisco CyberOps Professional or related course work.

Responsibilities

• Collaborate with stakeholders with respect to security leadership on risk assessments, policies and procedures, security initiatives, and testing controls.
• Coordinate and deploy system updates and hot fixes in accordance with patch management program.
• Monitor and restrict access to sensitive, confidential, or other high-security data.
• Plan and conduct user training to provide data security and promote security awareness.
• Oversee backup solution of company data in case of disaster or data loss.
• Manage user access controls, authentication systems, and identity management processes.
• Stay updated with emerging security trends, technologies, and threat intelligence
• Recommend process improvement and strategic initiatives related to security assessment.
• Ensure the efficient and effective implementation and support of security solutions; application security design, assessments, testing and remediation.
• Collaborate with IT teams to ensure secure design and deployment of systems, networks, and applications.
• Develop and enforce security policies, procedures, and standards in compliance with regulatory requirements (e.g., ISO 27001, NIST, GDPR, HIPAA).
• Conduct vulnerability assessments, penetration tests, and risk analyses to identify and mitigate potential security gaps.
• Articulate security findings internally a variety of stakeholders, including both technical and non-technical stakeholders.
• Provide defensible recommendations on technical, physical, and administrative control implementations based on assessment findings while balancing the cost versus benefits.
• Respond to and investigate security incidents, including malware infections, data breaches, and unauthorized access attempts.
• Prepare detailed reports and documentation for audits, incident responses, and management reviews.
• Monitor network and system activity for security breaches, unusual behavior, and potential threats.
• Implement, manage, and maintain security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus software, and endpoint protection solutions.
• Perform system and network hardening to ensure secure configurations.
• Participate in on-call rotation.

Benefits

• Competitive health and dental insurance options
• Flexible paid time off to balance work and life
• Retirement plan with immediate vesting and employer match
• Discounted membership to our state-of-the-art fitness facility
• Generous tuition reimbursement
• Employer provided life and disability insurance
• Free parking at facility