Cybersecurity Associate Analyst

Overview

CommonSpirit Health was formed by the alignment of Catholic Health Initiatives (CHI) and Dignity Health. With more than 700 care sites across the U.S. from clinics and hospitals to home-based care and virtual care services CommonSpirit is accessible to nearly one out of every four U.S. residents. Our world needs compassion like never before. Our communities need caring and our families need protection. With our combined resources CommonSpirit is committed to building healthy communities advocating for those who are poor and vulnerable and innovating how and where healing can happen both inside our hospitals and out in the community.

The purpose of the Cybersecurity Associate Analyst position is to support the entire Cybersecurity department, enterprise staff, and vendors for CommonSpirit Health. The Cybersecurity Associate Analyst has an important responsibility to provide 24x7 threat and vulnerability triage and analysis of identity and security logs across the enterprise. This program is responsible for cyber security ticket response and investigation including preparation, documentation, workflow, operational support, and coordination with other teammates and teams, assisting with eradication and recovery, and any necessary post-incident activities. The Cybersecurity Associate Analyst also provides Incident Response support when threats are confirmed, and the organization goes into containment and eradication modes. In addition to real-time threat detection and analysis, Associate Analysts also analyze and respond to hardware and software issues and vulnerabilities as well as ensure all user reported issues to Security Operations are properly documented, managed and investigated. The Associate Analyst may also act as 'security advisors' to the organization and its associates, coordinate with Threat Intelligence, other Security Operations Analysts, and help teams contain or remediate cyber threats and vulnerabilities as needed.

The Associate Cybersecurity Analyst, Security Operations position will report to the System Manager, Security Operations as part of the overall Security Operations focused on identifying, protecting, responding and containing threats and Vulnerabilities to the overall CommonSpirit organization.

Responsibilities

• Rotating on-call

• Collaborate with internal stakeholders, providing assistance and support of basic complexity as requested to Security Engineering, IDM Engineering, Network Engineering, Security Risk Management and/or other IT teams.

• Triage inbound incidents for/from partner teams

• Proactively identifies and escalates security issues, risks, or operational performance concerns.

• Performs investigative tasks of basic level complexity on specific incidents.

• Responsible for incident communications with affected business stakeholders, including senior management.

• Manages workload, prioritizing tasks and documenting time, and other duties as directed by management, as well as assisting other team members.

• Assist in Continual Service Improvement efforts by identifying opportunities for process improvement.

• Maintain records of reported issues, security monitoring and incident response activities, utilizing case management and ticketing technologies

• Pursue continuing education to grow and maintain knowledge of best practices, compliance, requirements, threats and trends in information security, translating into operational action items, policies, procedures, standards and guidelines.

• Supports initiatives participating in the collection and documentation of departmental knowledge artifacts, participates in the population of knowledge management and collaboration systems for the Cyber Security team.

• Communicates technical information and acts as a mentor for other team members.

• Interface with a variety of associates pertaining to reported issues or in the resolution of security events in a polite, positive, and professional manner.

• Respond in a timely manner (within documented SLA) to support tickets and promptly handle incoming Security Operations escalation calls.

• Prepare details and/or reports, as requested, of analysis methodology and results.

• Adhere to policies, procedures, and security practices.

• Recommend needed updates to Standard Operating Procedures and other similar documentation.

• Act as a security advocate for adherence to CommonSpirit Health policies and industry best practices.

• Remote eligible.

Qualifications

Qualifications:

• Bachelors preferred
• 0-2 years job related experience required

Preferred:

• 2-4 years job related experience preferred

• Knowledge of one or more of the following: Python, Powershell, Crowdstrike, Rapid7, GCP, Splunk, CyberArk EPM