Information Security Analyst (Hybrid Onsite/Some Remote) - Northwell Health : Job Details

Req Number 148220

Job Description

Analyzes, verifies, tracks and assesses information risk and facilitates remediation of identified vulnerabilities with the organization network, systems, and applications. Collaborates with IT Security management in the development of organization security assessment tools and policy and procedures. Reports on findings and recommendations for corrective action.

Job Responsibility

• Develop, document, and maintain comprehensive disaster recovery plans, including procedures for data restoration, and system recovery. Regularly review and update plans to reflect changes in technology and recovery requirements.

• Plan and execute regular disaster recovery tests and exercises to validate the effectiveness of the plans and identify areas for improvement. Document test results and implement necessary changes.

• Maintain effective communication with IT teams, business units, and external vendors during disaster recovery events. Coordinate recovery efforts and provide regular updates to stakeholders.

• Conduct training for IT staff and business users on disaster recovery procedures and responsibilities. Promote awareness of disaster recovery best practices throughout the organization.

• Analyzes, verifies, tracks and performs vulnerability assessments as assigned utilizing IT Security tools and methodologies; summarizes risk posture across the organization or within specific business units.

• Collaborates with IT Security management in the development of organization security assessment tools and policy and procedures.

• Identifies opportunities to reduce risk, detects and remediates vulnerabilities and ensures compliance and audit readiness.

• Makes recommendations for corrective action and documents management decisions regarding acceptance or mitigation of risk scenarios.

• Facilitates and monitors performance and compliance of risk remediation tasks; reports on findings.

• Liaises with partners and vendors regarding the security maintenance of their systems and applications.

• Creates and presents changes related to risk mitigation, as needed.

• Provides weekly status on project status, including outstanding issues.

• Participates in the development of 'security awareness' education and training, as necessary.

• Operates under general guidance and work assignments are varied and require interpretation and independent decisions on course of action.

• Performs related duties as required. All responsibilities noted here are considered essential functions of the job under the Americans with Disabilities Act. Duties not mentioned here, but considered related are not essential functions.

Job Qualification

• Bachelor's Degree required, or equivalent combination of education and related experience.

• 1-3 years of relevant experience, required.

Highly Preferred Skills

• Strong understanding of IT infrastructure components, including servers, storage, networking, and applications.

• Knowledge of disaster recovery technologies and methodologies, such as data replication, failover, and recovery time objectives (RTOs) and recovery point objectives (RPOs).

• Experience with disaster recovery testing and exercising.

• Experience with disaster recovery management tools, such as Assurance Continuity Manager, is a plus.

*Additional Salary Detail

The salary range and/or hourly rate listed is a good faith determination of potential base compensation that may be offered to a successful applicant for this position at the time of this job advertisement and may be modified in the future. When determining a team member's base salary and/or rate, several factors may be considered as applicable (e.g., location, specialty, service line, years of relevant experience, education, credentials, negotiated contracts, budget and internal equity).

The salary range for this position is $75,020-$126,250/year

It is Northwell Health's policy to provide equal employment opportunity and treat all applicants and employees equally regardless of their age, race, creed/religion, color, national origin, immigration status or citizenship status, sexual orientation, military or veteran status, sex/gender, gender identity, gender expression, disability, pregnancy, genetic information or genetic predisposition or carrier status, marital or familial status, partnership status, victim of domestic violence, sexual or other reproductive health decisions, or other characteristics protected by applicable law.