SUMMARY

We are looking to add a cyber security analyst team member to our IT Department. The cyber security analyst will play a key role in enhancing and improving the security posture across the organization. You will be responsible for identifying and mitigating areas of vulnerability and potential exposure from a cyber security standpoint. The successful candidate will have hands-on and practical experience in areas of cyber and data security, cyber security methodologies and frameworks, including experience in establishing both technical and organizational controls to protect the confidentiality, integrity, and availability of data.

RESPONSIBILITIES

• Provides seamless customer service support to end users in relation to cyber security within the organization.

• Works closely with operations staff, IT management and information security teams.

• Builds a security minded culture that keeps communication and transparency at the forefront of securing the organization.

• Demonstrate working knowledge in the following: Networks and Network Security, Identity & Access Management, Data Management, Incident Management and Threat & Vulnerability Management.

• Perform information security reviews and scans of designated systems to assess the effectiveness of overall system security, identify vulnerabilities and make mitigation recommendations.

• Support the implementation, operation, and maintenance of vulnerability management projects.

• Proactively collaborate and communicate within the IT team to address and mitigate vulnerabilities actively leveraged by malicious actors.

• Recommend and support the implementation, operation, testing and on-going sustainment of HIPAA and PHI/PII security and compliance.

• Constantly working to evolve and improve technologies and processes to ensure confidentiality, integrity and availability of data.

• Perform enterprise vulnerability scanning, secure configuration baseline verification, tool validation, data and identity protection activities.

• Detect and, as required, perform, or oversee remediation of information security vulnerabilities to minimize risks to operating environments.

• Collaborates with external vendors and service providers, auditors or partner organizations to further cyber security objectives, reviews, mitigations and overall security posture improvements.

• Seeks opportunities for additional responsibilities and growth within organization. Shows initiative and enthusiasm in suggesting and implementing new concepts and/or ideas for improvement.

• These areas include IT cyber security support and troubleshooting, project management, system design and implementation.

• Other duties as assigned.

REQUIREMENTS AND EXPERIENCE

• Bachelor's Degree in Computer Science, Healthcare Information Technology, or relevant field or equivalent knowledge and skills obtained through a combination of education, training and experience required.

• Knowledgeable and deep understanding of vulnerability and risk management.

• Experience with NIST frameworks preferred.

• Strong verbal and written communication skills required, and problem-solving ability.

• Minimum of 3 years of experience with vulnerability scanning and reporting assessment tools.

• Ability to articulate raw vulnerability and audit data into executive reports.

• Experience with patch management software.

• Understanding of SEIM / Log Aggregation tools.

• Familiar with attack and exploitation techniques involving operating systems, applications, and devices.

• Minimum of five (5) years of experience in configuration management compliance baselines for Windows, Mac, Linux.

• Minimum of three (3) years of experience with Incident Response Team (IR/IRT) troubleshooting, root cause analysis and remediation verification.

• Knowledgeable of Identity Management and authorization, least privilege, and reducing unauthorized elevated access.

• Understanding of Firewalls to include basic networking, sub-netting, IDS, NAT, ACL's.

• Deep knowledge of Office 365, Azure Security concepts and best practices.

• Minimum of five (5) years of experience in IT, information security, cyber risk management, compliance or a related field required; of which at least 3 years' experience in information security is required.

• Healthcare experience preferred.

• Strong interpersonal skills and ability to work both independently and as part of a team required

Certification:

• One or more relevant information security-related certifications preferred. Examples include: CISSP, CISA, HCISPP, CCSP, CRISC, CISM, CGIH, GCFA, GNFA, GPEN, GSEC, QSA and CEH.

• Microsoft AZ-500 preferred.

PHYSICAL DEMANDS AND WORK ENVIRONMENT

• Must have use of sensory skills to effectively communicate and interact with other employees and the public through use of the telephone, email, video conference and face to face contact

• Must have manual dexterity, visual acuity and hearing acuity to effectively use and operate office related equipment such as but not limited to a computer, copier, scanner, camera, phone, headset, keyboard and mouse

• Must be able to sit for extended periods of time at a keyboard and workstation with low periods of reaching and standing

EQUAL EMPLOYMENT OPPORTUNITY STATEMENT

Ingenovis Health is an equal opportunity employer that is committed to diversity and inclusion in the workplace.  We prohibit discrimination and harassment of any kind on the basis of race, color, national origin, religion, gender, gender identity, sexual orientation, disability, genetic information, pregnancy, age, or any other protected status set forth in federal, state, or local laws.  This policy applies to all employment practices within our organization.

RESERVATION OF RIGHTS

Essential functions contained within this job description are listed above; they are subject to change at any time due to reasonable accommodation or other reasons set forth by management.   

SIGNATURE

Employee signature below constitutes employee’s understanding of the requirements, essential functions and duties of the position.

Employee Name:

Employee Signature:

Date:

Compensation Range

Benefits include: health, dental, vision, FSA/HSA, company-paid life insurance, 401K with discretionary match, paid time off, paid parental leave, and tuition reimbursement.

Job will remain open until position is filled.