Homeoffice Information Security Analyst - Full Time bei Connecticut Children's Medical Center
Connecticut Children's Medical Center · Hartford, Vereinigte Staaten Von Amerika · Remote
- Professional
Reporting to the Director of Information Security, the Security Analyst manages security mechanisms to protect computer assets against hackers, external and internal breaches, viruses, spyware and malware by establishing, enforcing and monitoring appropriate security controls, responds to security incident, investigates violations, provisioning of users accounts and recommends enhancements to mitigate risk. The Security Analyst is also an active participant in disaster preparedness and business continuity.
Responsibilities
• Establishes system controls by developing framework for controls and levels of access; recommending improvements.
• Creates and maintains user accounts and user account access levels using systems tools and by providing information, resources, and technical support to the end user environment.
• Ensures authorized access through investigating of proper access levels assigned and required by manager levels and above; revoking access; reporting violations; monitoring information requests and recommending improvements.
• Establishes computer and physical security by developing standards, policies, and procedures; coordinating with facilities security; recommending improvements.
• Monitors and advises on Information Security issues related to the systems and workflow at Connecticut Children’s to ensure internal controls for Connecticut Children’s are appropriate and operating as intended.
• Safeguards computer files by participation in and disaster preparedness and business continuity exercises; recommending improvements.
• Conducts data classification assessment by collaborating with data owners to ensure appropriate security access levels for end users.
• Promotes security awareness by assisting in security awareness programs, educational programs, and on-going communication.
• Coordinates response to information security incidents.
• Updates job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
• Accomplishes information systems and organization mission by completing related results as needed.
• Determines security violation and inefficiencies by actively auditing and monitoring of computer systems and accounts.
• Actively participates in auditing of all Information Systems in the Information Systems environment and audit of Application Access in the end user environment; this includes all workforce members including volunteers, contracted workers, subcontractors, temporary workers, vendors and any personnel that would require accesses to Connecticut Children’s computer systems.
• Perform other related duties as assigned.
Supervisory Responsibilities:
None
Qualifications
Education and/or Experience:
• BA degree in Computer Science or other related degree is preferred with 3-5 years of Information security; years of experience can be substituted for degree level.
• Experience with Epic and background in Healthcare is highly desired.
License and/or Certification Preferred:
• Certified Information Security Auditor (CISA) or Security+ certification is a plus.
Knowledge, Skills and Abilities:
Knowledge:
• Workstation, Application and Database security, experience.
• Knowledge of principles for risk identification and analysis.
• Knowledge of regulatory standards such as HIPAA Privacy and Security Rule, HITECH, SOX, and PCI/DSS.
• Experience and knowledge of Information Security Policies .
• Must have knowledge of and experience with the following: Microsoft Operating systems Windows Server, Windows XP and Windows 7 Desktop operation systems, some database knowledge is preferred, knowledge and use of Microsoft Office Suite, Security Incident and Event Management processes and Change Control.
• Management process.
Skills:
• Excellent Communication Skills (Oral and Written),
• Process Improvement skills and experience .
• Project Management skills.
• Strong analytical and problem solving skills.
Abilities:
• Must also have the ability to work independently and complete task in a timely manner.