Security Analyst

Posted:
10/15/2024, 9:56:28 AM

Location(s):
Ohio, United States

Experience Level(s):
Junior ⋅ Mid Level

Field(s):
IT & Security

Workplace Type:
Hybrid

Agency:

Alternate Solutions Health Network

Our culture and people are what set us apart from other post-acute care providers. We’re dedicated to the growth and development of our team to set them up for success. We CARE for our patients like they are our own FAMILY.               

Note: The Centers for Medicare & Medicaid Services (CMS), in collaboration with the Centers for Disease Control and Prevention (CDC), require COVID-19 vaccinations for all Medicare and Medicaid certified providers.  Based on this regulation, all of our employees must be fully vaccinated or have a valid exemption.

SUMMARY:

The Security Analyst is responsible for monitoring, analyzing, and reporting security incidents, events, types, and sources. This role involves applying technical expertise and experiences to detect and respond to potential security incidents, including intrusions, data breaches, and other malicious activities. The Security Analyst will work to identify vulnerabilities, support incident response efforts, and enhance the overall security posture.

QUALIFICATIONS AND ATTRIBUTES:

  • Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.

  • Security+ or equivalent industry certifications required. CISSP certification is highly desirable.

  • A minimum of 2 years of experience in information security, with hands-on experience in endpoint management, intrusion detection/prevention systems, vulnerability assessment, and Security Information and Event Management (SIEM).

  • Experience in a healthcare or related environment is highly desirable.

  • Proficient in using ticketing systems and documenting procedures and incidents.

  • Experience in log analysis and security monitoring.

  • Familiarity with risk assessment methodologies and mitigation strategies.

  • Understanding of disaster recovery and business continuity planning.

  • Strong communication skills to convey technical information to non-technical audiences.

  • Ability to work both independently and collaboratively within a team.

  • Proficient in Microsoft Office Suite (Word, Excel, PowerPoint, Outlook).

  • Knowledge of networking concepts and computer hardware/software.

  • Ability to establish and maintain professional relationships with internal and external parties.

MAJOR AREAS OF RESPONSIBILITY:

  • Monitor security alerts and incidents, analyzing potential threats and vulnerabilities to the organization.

  • Determine associated indicators of compromise (IOC’s) to develop countermeasures to detect and prevent identified threats

  • Assist in the development and implementation of security policies and procedures.

  • Conduct risk assessments to identify and evaluate potential security threats.

  • Collaborate with IT and other departments to ensure compliance with security standards.

  • Investigate security incidents, document findings and recommend corrective actions.

  • Analyze log data from various security tools to identify patterns of malicious activity.

  • Support the development, maintenance, and execution of security awareness training for staff.

  • Maintain up-to-date knowledge of the latest security trends and emerging threats.

  • Provide recommendations for enhancing security infrastructure and processes.

  • Engage with stakeholders to define security requirements and address concerns.

  • Assist in the documentation and evaluation of existing security protocols to identify areas for improvement.

  • Participate in security audits and assessments to ensure adherence to best practices.

  • Maintain and assist in development of EDR Environment.

  • Evaluate New Applications and Security Risks within the current environment.

  • Ensure consistent and meaningful application of InfoSec policies for all users and customers.

  • Maintain and improve Information Security Program awareness and training.

  • Create and maintain General Security Policies and Guidelines.

  • Resolve Information Security related tickets & incidents.

  • Create and perform security evaluations related to risk assessment and mitigation.

  • Maintain and improve web security policies and environment.

  • Assist in training new ASHN team members.

  • Other duties as assigned.

MANAGEMENT RESPONSIBILITY: N/A

Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job with or without reasonable accommodations.

Below are minimal knowledge/physical requirements of this position.

Constantly (66%-100%):
Reading, Speaking, Writing English
Communications Skills
Computer/PDA Usage
Hand/finger dexterity
Hearing/Seeing
Hearing in person
Hearing on the phone
Talking in person
Talking on the phone
Vision for close work

Frequently (34%-66%)
Walking
Bending
Standing
Sitting
Stretching/Reaching

Occasionally (2%-33%)
Driving
Lifting up to 50 lbs. with or without assistance
Climbing
Stooping (bend at waist)
Distinguish smell/taste

Rarely (1% or less)
N/A

We’ll help you put your passion for patient care to work.  Apply today!

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Duties, responsibilities and activities may change or new ones may be assigned at any time with or without notice.

We are an Equal Opportunity Employer.