Connecticut Children's

Information Security Analyst

Connecticut Children's

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Job Level

Mid-LevelSenior

About the role

  • Manage security mechanisms to protect computer assets against hackers, external and internal breaches, viruses, spyware and malware.
  • Establish, enforce, and monitor appropriate security controls; recommend improvements.
  • Respond to information security incidents and investigate violations; coordinate incident response.
  • Provision, create and maintain user accounts and access levels; revoke access and report violations.
  • Develop and maintain standards, policies, and procedures for computer and physical security; coordinate with facilities security.
  • Monitor and advise on information security issues related to systems and workflow.
  • Participate in disaster preparedness and business continuity exercises to safeguard computer files.
  • Conduct data classification assessments with data owners to ensure appropriate access levels for end users.
  • Promote security awareness through security awareness programs, educational programs, and ongoing communication.
  • Actively audit and monitor computer systems and accounts; participate in auditing of all Information Systems and Application Access across workforce members.
  • Update job knowledge via educational opportunities, professional publications, and professional organizations.
  • Perform other related duties as assigned.

Requirements

  • BA degree in Computer Science or other related degree preferred; years of experience can be substituted for degree level.
  • 3-5 years of Information security experience.
  • Experience with Epic and background in Healthcare is highly desired.
  • Certified Information Security Auditor (CISA) or Security+ certification is a plus.
  • Workstation, Application and Database security experience.
  • Knowledge of principles for risk identification and analysis.
  • Knowledge of regulatory standards such as HIPAA Privacy and Security Rule, HITECH, SOX, and PCI/DSS.
  • Experience and knowledge of Information Security Policies.
  • Experience with Microsoft Operating systems Windows Server, Windows XP and Windows 7 Desktop operating systems.
  • Some database knowledge preferred.
  • Knowledge and use of Microsoft Office Suite.
  • Experience with Security Incident and Event Management processes and Change Control.
  • Management process experience.
  • Excellent communication skills (oral and written).
  • Process improvement skills and experience.
  • Project management skills.
  • Strong analytical and problem solving skills.
  • Ability to work independently and complete tasks in a timely manner.