Risk Analyst I Information Security

$89,000 - $118,000/Yr

NewYork-Presbyterian Hospital - New York, NY

posted 12 days ago

Full-time - Entry Level
New York, NY
Hospitals

About the position

The Risk Analyst I position at NewYork-Presbyterian Hospital focuses on participating in the system-wide information security risk assessment program. This role is integral to the Risk Management team, which conducts assessments of applications, technology initiatives, business associates, and suppliers to ensure compliance with security standards and regulations. The position offers an opportunity to contribute to the development and improvement of risk analysis tools and frameworks, while also maintaining documentation and collaborating with various stakeholders.

Responsibilities

  • Participating in risk assessments for the NYP system-wide information security risk management program.
  • Participating in development and continual improvement of framework and risk analysis tools.
  • Maintaining inventory and historical record of risk assessment reports and related documentation using the NYP GRC platform.
  • Interpreting security vulnerability scanning reports and communicating findings to system custodians.
  • Collaborating with users, systems, and other technical personnel in feasibility studies, implementation plans and project management.
  • Following NYP risk assessment practices required by federal and state regulations, including Meaningful Use and HIPAA, and regulatory standards including PCI DSS.

Requirements

  • Bachelor's degree in Computer Science or equivalent experience.
  • 2+ years of relevant work experience in IT Risk Management, Information Security, internal audit, Information Technology, risk management, compliance or other relevant field.
  • Knowledge and experience with the HIPAA Security, Meaningful Use, and HITECH.
  • Demonstrated knowledge and understanding of information technology, systems and architecture.
  • Excellent communications and presentation skills, with strong attention to detail and follow through.

Nice-to-haves

  • Knowledge and experience with IT audit frameworks like: COBiT, ITIL and NIST.
  • Familiarity with PCI DSS.
  • Security+, A+, Network+ or equivalent certification.
  • Familiarity with Governance, Risk, and Compliance (GRC) platforms.
  • Exposure to simulated phishing platforms like Cofense or KnowBe4.

Benefits

  • Comprehensive and competitive benefits that support employees and their families in every aspect of life.
  • Opportunities for personal and professional growth.
  • Dynamic work environment that embraces diversity and inclusion.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service