Security Analyst - Hospital for Special Care : Job Details

Position Location:Hospital for Special CareScheduled Weekly Hours:40Work Shift:First ShiftDepartment:Information TechnologyWe are dedicated to creating an environment of care and engagement that makes us one of the most desirable places to work, providing exceptional care to each patient each and every day!Job Summary:The Technical Security Analyst is responsible for safeguarding the Hospital's information systems and data by implementing security measures and monitoring for potential threats. This role involves acting on vulnerability recommendations and network assessments and developing strategies to mitigate risks. The analyst will work closely with the IT security manager to ensure compliance with HSC's security policies. Additionally, the role will be responsible for responding to security incidents and conduct forensic investigations and be proficient in using network and application-level security scanning tools to discover vulnerabilities. Additionally, the Technical Security Analyst will stay updated on the latest security trends and technologies to enhance the organization's security posture. Strong analytical skills, attention to detail, and a proactive approach to problem-solving are essential for success in this role.Physical Demands:This position requires the ability to sit, walk, and stand as needed. It also requires the ability to lift/carry 1-50 pounds occasionally. The ability to be flexible in body positioning as in bending, squatting, balancing, reaching, and twisting. This position also requires frequent keyboarding and telephone use.Cognitive Demands:This position requires on a frequent basis the ability to problem solve issues of moderate complexity. The position also demands on a frequent basis the ability to exhibit strong written and verbal communication skills.Work Demands:This position requires the ability to work both independently, as well as in teams. The work environment is climate controlled and pleasant. Occasionally flexibility in schedule changes may be needed to accommodate fluctuation in business needs.Qualifications:

• Bachelor's degree (B.A./B.S.) or equivalent in Cyber Security, Computer Science or MIS.
• 2+ years of experience in IT required or equivalent 2-5 years of experience in an information security role or experience with security and internetworking devices and software, including at least two years' experience with mission-critical networks.
• Relevant information security and privacy certifications, such as CC or SSCP. Knowledge of HIPAA, HITRUST, and other information security regulatory requirements for healthcare entities.
• Working knowledge of network and application-level scanning tools such as Nessus.

Essential functions:

• Works closely with IT security manager on securing hospital resources.
• Perform security engineering analysis, configuration and develops functions for impactful and high-visibility tasks.
• Responsible for Server and port hardening on servers and endpoint devices.
• Work with managed firewall vendor to ensure firewalls are configured optimally. Have quarterly meeting that them to make any necessary changes.
• Working knowledge of all type of data encryption.
• Monitor the company's networks to keep an eye out for any security breaches and investigate it if one does occur. Ability to search for Indications of Compromise (IOC's).
• Understanding of Computer Networking to be able to Segment Internal VLans and networks
• Analyzing security alerts to identify and respond to any incidents or breaches.
• Research the latest in information technology security trends to keep up to date with the subject and use the latest technology to protect information.
• Conduct frequent testing of simulated cyber-attacks to look for vulnerabilities in the computer systems and take care of these before an outside cyber-attack.
• Participating in incident response activities as needed.
• Ensuring compliance with industry regulations and standards regarding IT security.