Senior Security Analyst

POSITION OVERVIEW:

The client is seeking a highly motivated Senior Security Analyst to join the Security and Access Control Team. This is an exciting opportunity to join a highly skilled and visible team. This individual will be responsible for ensuring the agency's enterprise information resources are secure from unauthorized access, protected from inappropriate alteration, physically safe, and available to users in a timely fashion. This position will be responsible for designing, implementing, supporting, and maintaining policies and security solutions operationally and for software technologies.

DETAILED LIST OF JOB DUTIES AND RESPONSIBILITIES:

• Provide support for IT projects, such as risk and security analysis and actions necessary for remediation, including recommendations for logical access controls, secure application configuration, and general secure data handling and processes.

• Process systems access requests for the provisioning and de-provisioning of user accounts, groups, and roles accessing MassHealth enterprise applications in accordance with the MassHealth Account Profile Matrix.

• Provide administration support to MAHIX (Massachusetts Health Insurance Exchange), including creating new user accounts and deleting and modifying HIX accounts.

• Document all work related to account requests through the CA ticketing system.

• Lead efforts to develop, implement, and maintain security policies/procedures to ensure alignment with EOHHS standards and industry best practices.

• Troubleshoot problems reported by users and assist in the root-cause analysis related to security issue resolution.

• Contribute to designing, reviewing, and testing systems roles and administration UIs to ensure compliance with security and privacy standards.

• Contribute to the continual process improvement of routine audits and security processes and document standard operating procedures and tools.

• Respond to security incidents by providing in-depth analysis and accessing evidence to support forensic analysis.

• Facilitate oversight of vulnerability scanning applications, including configuring scan sites, scheduling scans, reporting results, and remediation where applicable.

• Develop and maintain ad hoc and routine reports.

• ct as Security Lead backup as needed.

• Provide quality assurance for all accounts created.

• Execute special projects as needed .

QUALIFICATIONS:

• Minimum of 3-5 years of experience working as a Security Analyst, with working knowledge of audit and security management processes required.

• Strong technical background; ability to effectively communicate technical and non-technical information (both written and verbally) to all staff and external customers.

• Experience working with internal and external auditors, stakeholders, and leadership teams.

• Proficient Microsoft Office skills, Outlook, Word, PowerPoint, and Excel.

• Excellent analytical skills; providing analysis of findings and proposing recommendations.

• Excellent communication and customer service skills required.

• Knowledge and understanding of applications and network infrastructure is preferred.

• Strong organizational and interpersonal skills.

• bility to prioritize daily work, supporting multiple initiatives simultaneously.

• Previous Government or Healthcare industry experience is a plus.

Education and Certifications:

• Bachelor's degree in Computer Science, Computer Information Systems, Information Management, or equivalent work experience.

• Information Security certifications such as CISM, CISA, and CISSP are strongly preferred but not required .

EEO:

"Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans."