Homeoffice Information Security Analyst - Full Time bei Connecticut Children's Medical Center

•    Establishes system controls by developing framework for controls and levels of access; recommending improvements.
•    Creates and maintains user accounts and user account access levels using systems tools and by providing information, resources, and technical support to the end user environment.
•    Ensures authorized access through investigating of proper access levels assigned and required by manager levels and above; revoking access; reporting violations; monitoring information requests and recommending improvements.
•    Establishes computer and physical security by developing standards, policies, and procedures; coordinating with facilities security; recommending improvements.
•    Monitors and advises on Information Security issues related to the systems and workflow at Connecticut Children’s to ensure internal controls for Connecticut Children’s are appropriate and operating as intended.
•    Safeguards computer files by participation in and disaster preparedness and business continuity exercises; recommending improvements.
•    Conducts data classification assessment by collaborating with data owners to ensure appropriate security access levels for end users.
•    Promotes security awareness by assisting in security awareness programs, educational programs, and on-going communication.
•    Coordinates response to information security incidents.
•    Updates job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
•    Accomplishes information systems and organization mission by completing related results as needed.
•    Determines security violation and inefficiencies by actively auditing and monitoring of computer systems and accounts.
•    Actively participates in auditing of all Information Systems in the Information Systems environment and audit of Application Access in the end user environment; this includes all workforce members including volunteers, contracted workers, subcontractors, temporary workers, vendors and any personnel that would require accesses to Connecticut Children’s computer systems.
•    Perform other related duties as assigned.
Supervisory Responsibilities:
None
 

Education and/or Experience:
•    BA degree in Computer Science or other related degree is preferred with 3-5 years of Information security; years of experience can be substituted for degree level. 
•    Experience with Epic and background in Healthcare is highly desired.
License and/or Certification Preferred:
•    Certified Information Security Auditor (CISA) or Security+ certification is a plus.
 

Knowledge, Skills and Abilities:
Knowledge:
•    Workstation, Application and Database security, experience.
•    Knowledge of principles for risk identification and analysis.
•    Knowledge of regulatory standards such as HIPAA Privacy and Security Rule, HITECH, SOX, and PCI/DSS.
•    Experience and knowledge of Information Security Policies .
•    Must have knowledge of and experience with the following: Microsoft Operating systems Windows Server, Windows XP and Windows 7 Desktop operation systems, some database knowledge is preferred, knowledge and use of Microsoft Office Suite, Security Incident and Event Management processes and Change Control.
•    Management process.
 

Skills:
•    Excellent Communication Skills (Oral and Written), 
•    Process Improvement skills and experience .
•    Project Management skills.
•    Strong analytical and problem solving skills.

Abilities:
•    Must also have the ability to work independently and complete task in a timely manner.