The Information Security Analyst I works under the guidance and direction of the Chief Information Security Officer (CISO) and works closely with IT Staff to provide support for and to coordinate security-related activities, including but not limited to, completing third-party risk assessments, and improving security of the existing Identity Access Management program. Additionally, this role supports the CISO with other assigned security tasks and projects.
Security Analyst I will support new and existing security technologies protecting Sturdy Memorial from unauthorized access. Security Analyst I will participate in the third party IT Security Risk Management process, helping Sturdy Memorial to formally identify, document and address risk across third party partners. Security Analyst I will also develop a functional understanding of current IAM procedures for Sturdy Memorial applications and will work closely with the IT team, customers, business analysts, applications teams and general workforce to ensure that critical IAM procedures are documented, functional and defined by the principle of least privilege. In addition to leading security reviews of these procedures Security Analyst I will participate in daily user administration tasks on a limited basis, as needed. These systems include, but are not limited to, Active Directory, Workday, Cerner, and Outlook. With a focus on Risk Management, this position complements the operational efforts around account management with a focus on the security implications.
Interface with CISO and external IT Security partners to protect healthcare systems and data. Identify and resolve risks related to third party relationships and identity access management. Monitor user access and other security telemetry across multiple platforms. Follow process and procedures to ensure compliance with policies. Document access management procedures for assigned platforms, databases and applications. Address requests processed via the ServiceDesk Plus application and Help Desk.
Experience
- At least two years of experience in IT Security, access management, auditing or a related field. (Healthcare preferred)
- Excellent communication and project administration skills.
- Strong analytical skills.
- Good organizational skills and attention to detail.
- Familiarity with best practices for cyber security and IAM.
- Microsoft Active Directory/O365 User Management
- Proficient in using spreadsheets and word processing software, such as Microsoft Excel and Microsoft Word.
- Familiarity with database concepts and relational databases, such as Microsoft SQL Server.
- Ability to work individually and as part of a team.
Licensing Or Certifications
Security+, CISSP, HCISPP, CISA, GISP, CAMS desirable but not required
Education
Bachelor's or Associate Degree in Computer Science, Education, Business, Management, Information Technology, Engineering, Information Security, Technical, Information Systems, Technology
The Security Analyst I reports to the IT Security Administrator/CISO.
Sturdy Memorial Hospital is an equal employment opportunity employer. There is no discrimination because of race, color, creed, age, gender, sexual orientation, national origin, veteran status or disability.