Our client is looking for an Information Security & Systems Analyst that will play a dual role in strengthening their security posture while supporting critical systems administration functions. This position combines security operations with hands-on systems administration expertise to protect and maintain our client's healthcare technology infrastructure. The role requires deep technical knowledge, strong analytical skills, and the ability to balance security requirements with operational needs in a healthcare environment.
The ideal candidate will be a self-motivated professional who can balance security requirements with operational needs while maintaining the integrity and availability of our healthcare systems and data.
ESSENTIAL FUNCTIONS:
1. Security Operations (50%)
- Perform security monitoring, threat detection, and incident response across the client's infrastructure and cloud environments
- Conduct vulnerability assessments, security testing, and remediation of identified issues
- Implement and maintain security tools, including SIEM, EDR, and network security solutions
- Manage identity and access management systems, including Active Directory and SSO implementations
- Monitor and respond to security alerts, performing initial triage and investigation
- Support security audits and compliance initiatives (HIPAA, SOC 2)
- Maintain and enhance security documentation and procedures
- Participate in security awareness training and phishing campaigns
2. Systems Administration (50%)
- Administer and maintain Windows Server environments, Active Directory, and related infrastructure
- Support cloud infrastructure in AWS, including security configurations and best practices
- Manage backup and disaster recovery systems
- Implement and maintain system monitoring and alerting
- Perform routine system maintenance, patching, and updates
- Provide escalated technical support for complex system issues
- Assist with infrastructure automation and scripting
- Support IT projects and system upgrades
QUALIFICATIONS:
1. Minimum Requirements
- Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field
- 4-6 years of combined experience in information security and systems administration
- Strong knowledge of Windows Server administration, Active Directory, and Group Policy
- Experience with security tools (SIEM, vulnerability scanners, EDR)
- Working knowledge of networking concepts and security (TCP/IP, firewalls, VPNs)
- Experience with cloud security and administration (preferably AWS)
- Understanding of HIPAA security requirements and healthcare compliance
- Proficiency in PowerShell or Python scripting
- Experience with security incident response and vulnerability management
- Strong analytical and problem-solving skills
- Excellent written and verbal communication abilities
2. Preferred Qualifications
- Security certifications (Security+, CISSP, SSCP, or similar)
- Systems administration certifications (MCSA, AWS certifications)
- Experience with SIEM platforms and security analytics
- Knowledge of SOC 2 compliance requirements
- Experience with identity and access management solutions
- Familiarity with healthcare systems and EMR/EHR platforms
- Experience with automation and infrastructure as code
- Background in healthcare IT environments
3. Technical Skills
- Operating Systems: Windows Server 2016/2019, Linux
- Security Tools: SIEM, EDR, vulnerability scanners, network security tools
- Cloud Platforms: AWS (required), Azure (preferred)
- Networking: TCP/IP, DNS, DHCP, VPN, firewalls
- Identity Management: Active Directory, Azure AD, SSO
- Scripting: PowerShell, Python, Bash
- Monitoring Tools: System monitoring, security monitoring, log analysis
- Backup and DR: Enterprise backup solutions, disaster recovery planning
ENVIRONMENT and COGNITIVE/PHYSICAL DEMANDS:
- Office environment with periodic on-call responsibilities
- Ability to read, hear, speak, keyboard, and problem solve
- Strong critical thinking and analytical capabilities
- Excellent communication skills in written, verbal, and presentation format
- Requires prolonged sitting and computer work
- Requires the use of standard office equipment
- May require occasional lifting up to 15 pounds
- May require occasional after-hours work for maintenance or incident response
REPORTING RELATIONSHIP:
- Reports to: Manager, Information Security
- This is a hands-on individual contributor role