Sr. Information Security Analyst - Hybrid bei Vitalant

At Vitalant, every role contributes to our life-saving mission of connecting donors to patients who depend on blood and biotherapies. As a Sr. Information Security Analyst, you’ll help protect the systems and data that make this mission possible. In this critical role, you’ll identify and assess threats to Vitalant’s digital environment, strengthen our defenses through best practices and secure architecture, and serve as a trusted advisor across teams and with vendors. Your expertise will help ensure the security and integrity of the technology that supports our donors, staff, and patients every day.

• Medical, dental, and vision insurance 
• 401K + 5% company match 
• Tuition assistance up to $5k per year 
• Free basic life and AD&D insurance 
• Free short-and-long-term disability insurance 
• Paid time off 
• Employee Resource Groups 
• Recognition and perks 

As a Sr. Information Security Analyst, you'll get to:

• Support information security functions across the enterprise.
• Define and promote security best practices, guiding application and infrastructure teams toward continuous improvement.
• Evaluate proposed application solutions for compliance with company policies, standards, and regulations.
• Maintain familiarity with Vitalant’s IT security tools, including firewalls, MFA, Intune, and network security systems.
• Partner with Infrastructure Operations to reduce risks through encryption, access controls, network segmentation, and vulnerability management.
• Participate in incident response, investigations, and compliance reviews related to security and privacy events.
• Analyze attack trends and implement proactive technical and process countermeasures.
• Assess emerging technologies to strengthen and align with Vitalant’s security architecture.
• Support phishing prevention, detection, and employee awareness initiatives.
• Oversee aspects of threat detection, response, and vulnerability management, including IoT and SIEM integration.
• Manage vendor contracts and relationships with key security partners and agencies.
• Identify and advance goals within the information security roadmap and maintain assigned sections of the risk register.