The Information Security Analyst I works under the guidance and direction of the Chief Information Security Officer (CISO) and works closely with IT Staff to provide support for and to coordinate security-related activities, including but not limited to, completing third-party risk assessments, and improving security of the existing Identity Access Management program. Additionally, this role supports the CISO with other assigned security tasks and projects.
Security Analyst I will support new and existing security technologies protecting Sturdy Memorial from unauthorized access. Security Analyst I will participate in the third party IT Security Risk Management process, helping Sturdy Memorial to formally identify, document and address risk across third party partners. Security Analyst I will also develop a functional understanding of current IAM procedures for Sturdy Memorial applications and will work closely with the IT team, customers, business analysts, applications teams and general workforce to ensure that critical IAM procedures are documented, functional and defined by the principle of least privilege. In addition to leading security reviews of these procedures Security Analyst I will participate in daily user administration tasks on a limited basis, as needed. These systems include, but are not limited to, Active Directory, Workday, Cerner, and Outlook. With a focus on Risk Management, this position complements the operational efforts around account management with a focus on the security implications.
Reports to: Manager, IT Security/ISO Manages: N/A
Education/Training: - Bachelor's or Associate Degree in Computer Science, Education, Business, Management, Information Technology, Engineering, Information Security, Technical, Information Systems, Technology
Licenses/Certification: • Security+, CISSP, HCISPP, CISA, GISP, CAMS desirable but not required
Required Qualifications and Skills: - At least two years of experience in IT Security, access management, auditing or a related field. (Healthcare preferred)
- Excellent communication and project administration skills.
- Strong analytical skills.
- Good organizational skills and attention to detail.
- Familiarity with best practices for cyber security and IAM.
- Microsoft Active Directory/O365 User Management
- Proficient in using spreadsheets and word processing software, such as Microsoft Excel and Microsoft Word.
- Familiarity with database concepts and relational databases, such as Microsoft SQL Server.
- Ability to work individually and as part of a team.
Other duties: Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
AGE AND DIVERSITY RELATED CRITERIA: Consistently treats patients, colleagues and visitors with the dignity and respect, while being sensitive to the differing needs of all age groups, backgrounds, characteristics and cultures.
ABILITY TO FULFILL JOB EXPECTATIONS: Must have the ability to the perform essential functions of the position, including required work hours, locations and physical demands, without posing a direct threat to the health and safety of themselves or other individuals in the work place, and with or without reasonable accommodation.
PHYSICAL DEMANDS: Physical demands refer to the level and duration of physical exertion generally required to perform critical tasks in support of critical job functions, for example - sitting, standing, walking, lifting, carrying, reaching, pushing, and pulling.
Sturdy Memorial Hospital is an equal employment opportunity employer. There is no discrimination because of race, color, creed, age, gender, sexual orientation, national origin, veteran status or disability.