Information Security Analyst II

Sonora Quest Laboratories - Phoenix, AZ

posted 3 months ago

Full-time
Phoenix, AZ
Ambulatory Health Care Services

About the position

The Information Security Analyst II is responsible for the planning and organization of day-to-day management of information technology security projects and applications. This role involves participating in the development and implementation of IT strategies aimed at achieving desired outcomes for information technology security. The incumbent is expected to collaborate with management across various departments and locations to pursue system-wide solutions and approaches. As a member of the Incident Response Team (IRT), the analyst will respond to emergency calls during non-business hours as needed. The position requires active participation in projects, leading small initiatives, performing problem resolution, conducting incident support, and monitoring communications within the Security Operations Center (SOC). All functions must be performed in accordance with established policies, procedures, regulatory and accreditation requirements, and applicable professional standards. The core functions of this role include leading and managing projects for company-wide IT security system implementations, conducting meetings with department representatives, coordinating security requirements with vendors, and prioritizing security updates based on production requirements. The analyst will implement and maintain information security programs to protect critical corporate information assets, evaluate and recommend new security technologies, and monitor security systems to reduce risks to corporate computing resources. Additionally, the analyst will establish and document security programs and procedures to support network security standards, provide security education and training to employees, and perform complex security analysis and design. The role also involves participating in information security response activities, conducting security reviews, evaluations, and risk assessments, and developing recommendations as necessary. The analyst will maintain technical system, network, and application security baselines and standards, ensuring that all appropriate parties are informed of plans, progress, and status. This position requires a holistic approach to problem-solving and the ability to guide change effectively, along with strong communication and interpersonal skills.

Responsibilities

  • Leads and manages projects for company-wide IT security system implementations.
  • Conducts meetings with appropriate department representatives and coordinates security requirements with vendors and partners.
  • Implements and maintains information security programs for the protection of critical corporate information assets.
  • Evaluates and recommends new information security technologies and countermeasures against threats.
  • Monitors and evaluates information security systems and processes to reduce risks to corporate computing resources.
  • Establishes and documents information security programs and procedures to support network security standards.
  • Provides security education and training to employees through orientation classes and educational material distribution.
  • Performs complex security analysis and design, project planning, control, and implementation.
  • Participates in information security response and provides audit/compliance and forensic activities as needed.
  • Conducts security reviews, evaluations, risk assessments, and develops recommendations.

Requirements

  • Associate degree in business, computer science or related field.
  • 3 years relevant experience in IT, Information Security, Compliance, or Risk Management.
  • Certification in one of the following areas: CISSP, SSCP, HCISSP, PCI-ISA, CompTIA Security+, HIPAA Security, Information Security Technology Fundamentals, Internet Security, or ITAA Information Security Awareness.
  • Expert level knowledge of current network architecture & IT Security.
  • Strong verbal/written communication skills.
  • Excellent interpersonal skills.
  • Troubleshooting and complex problem-solving abilities.
  • Sound judgement and decision-making skills.
  • Efficient time management skills.
  • Excellent project management and organizational skills.

Nice-to-haves

  • Experience in the Laboratory or Healthcare Industry, and with PHI (protected health information).
  • Demonstrated familiarity with six-sigma concepts.
  • IT Security Certification (CISSP or similar).
  • PCI-DSS Internal Security Assessor certification.
  • (ISC)2 HCISPP certification.
  • (ISC)2 Systems Security Certified Practitioner certification.
  • (ISC)2 Security Assessment and Authorization Certification (CAP).
  • Additional related education and/or experience.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service