CyberSecurity Senior Analyst

$70,000 - $90,000/Yr

Partners in Health - Boston, MA

posted 2 days ago

Full-time - Mid Level
Boston, MA
Religious, Grantmaking, Civic, Professional, and Similar Organizations

About the position

The Cybersecurity Senior Analyst (CSA) assumes a pivotal role in shaping, coordinating, and fortifying the organization's cybersecurity infrastructure. This individual is instrumental in championing and implementing robust security measures across diverse technological landscapes, including both on-premise and cloud-based systems. The Cybersecurity Senior Analyst is a highly technical, hands-on individual contributor to the Information Technology (IT) department and subject matter expert. The CSA is responsible for implementing best practice security methods and identifying existing processes within the organization for security improvements where possible. The CSA will work with a team of IT members within the U.S. as well as the Partners In Health (PIH) global care delivery IT members to support and maintain the organization's security posture. The CSA will be part of a team working towards the U.S. Department of Commerce's National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) implementation within the organization. The CSA will lead security implementations across on-premise and Cloud platforms managed and maintained by the PIH IT team.

Responsibilities

  • Lead technical evaluation of security technologies that address current and future needs based on emerging threats and industry trends.
  • Lead the implementation of a unified identity platform and access management.
  • Lead security efforts in bringing PIH in line with NIST CSF framework.
  • Design improvements to the security architecture around the organizational environment, applying the principle of least privilege to improve identity and access management.
  • Design, manage and maintain monitoring & alerting platform to proactively secure potential risks across the organizational landscape.
  • Build automation to manage and maintain security updates across various applications, operating systems including vulnerability management.
  • Manage and maintain security tools and technologies such as SIEM, EDR, IDS/IPS, firewalls, and antivirus solutions. Configure and fine-tune these tools to maximize their effectiveness in detecting and preventing threats.
  • Participate in conducting gap analyses, security and risk assessments with both internal and external stakeholders.
  • Coordinate with multiple departments to identify, triage, and remediate gaps in current security posture.
  • Work with a variety of security efforts that span areas such as cloud infrastructure, application, system, and network level initiatives.
  • Document processes and implementations across the plethora of environments and systems managed by the IT team.
  • Responsible for maintaining and maturing the security posture of the organization.
  • Respond to and act on security incidents and lead security audits of various platforms utilized across the organization landscape.
  • Provide training and awareness programs to educate employees about cybersecurity best practices, policies, and procedures. Promote a culture of security throughout the organization.
  • Other duties assigned to ensure the proper functions of the team & meet organizations needs as identified.

Requirements

  • Bachelor (4-year) degree, with a technical major, such as engineering or computer science.
  • Work experience in place of Bachelor degree (2 years as System Engineer or equivalent).
  • 5-8 years of Information Security discipline experience.
  • Experience with NIST, CIS, CMMC, ISO 27001/2, GRC frameworks and their implementation process.
  • Certifications related to CSSP, CISSP, CEH.
  • Knowledge of Zero Trust model and their implementation process.
  • Strong problem-solving skills.
  • In-depth knowledge of computer and network systems.
  • Ability to travel up to 2-4 weeks per year.
  • Ability to lift up to 50 lbs without assistance.
  • Ability to describe technical information in easy-to-understand terms.
  • Exemplary interpersonal skills; ability to collaborate effectively with culturally diverse staff across departments and country.

Nice-to-haves

  • Interest in social justice strongly desirable.

Benefits

  • Eligible employees may enroll in a 401(k) plan with employer match.
  • Organization-sponsored medical, dental, vision, short-term and long-term disability insurance.
  • Basic life insurance plans for the employee and the employee's eligible dependents.
  • Full time employees will receive 15 days of vacation, 12 sick days, 3 personal days, and 3 volunteer days.
  • Paid time off during the week between Christmas and New Year's Day, the week of July 4th, and 11 additional holidays annually.
Job Description Matching

Match and compare your resume to any job description

Start Matching

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service