IT Security Analyst Sr.

Children's Memorial Hospital Chicago , IL 60602

Posted 2 months ago

Overview

The IT Security Analyst is primarily responsible for the implementation and support of enterprise security for both the data and technology infrastructure utilized by Lurie Children's Hosptial thereby ensuring that Lurie Children's maintains a protected Information Technology (IT) infrastructure. Therefore this individual is must be literate in current security practices, threat awareness, and other applications of the security process to the organization's needs.

Knowledge of Cisco, Microsoft, and other client/server network and application technologies is also needed as the security infrastructure exists in support of these systems and applications. This position performs tasks in association with IM application and network systems teams and is expected to perform in a consultative fashion to all parties regarding information security related IT issues. Duties may be performed directly or coordinated with external technology and/or service partners. The IT Security Analyst is expected to be self-directed and perforn responsbilities with minimal supervision.

Responsibilities

1.Advises management of potential IT security threats and mitigation strategies.

2.Functions as a technical lead on multiple IT security systems and infrastructure projects.

3.Maintans Cisco and other technology vendors wired and wireless network security equipment and software. a. Reviews multiple metrics, correlates anomalies that impact multiple systems, determines root causes, and implements corrective action. b.

Performs security troubleshooting and analysis utilizing Network General Sniffer and other inspection tools c. Works with the IT Security Analyst SR, IT Network Engineer /Engineer and the Manager of IT Security for policy and design needs related to network infrastructure security.

4.Performs a backup role for the IT Network Engineer(s) as needed.

5.Participate in other department or organizational project tasks as required.

6.Completes assigned Help Desk support tickets within IM Department standards

7.Serves as liaison to vendors for equipment and software maintenance

8.Develops and documents procedures covering all aspects of enterprise-wide security infrastructure

9.Performs ongoing capacity and performance planning for enterprise security infrastructure and related technologies.



  1. Assumes on-call responsibility for data center equipment operations, per the schedule.

  2. Performs other duties as assigned.


Qualifications

1.Comprehensive knowledge of Cisco and other security and network technologies: a. 1-3 years of experience working with of the following IT security functions: VPN, firewall, anti-virus protection, two-factor authentication, intrusion detection, disk/file encryption, vulnerability assessments and mitigation, risk assessments, platform hardening, and incident response/reporting. b. 1-3 years of experience working with Microsoft, HP-UX, Solaris, and Windows client/server based equipment/operating systems and applications in a complex enterprise network environment highly desired. c. 1-3 years experience with the following technologies desired: Cisco ASA firewall/VPN, Cisco Secure IDS, Cisco MARS, Microsoft AD, RSA SecureID, Websense Internet monitoring and MacAfee Webshield appliance. d. 1-3 years experience with enterprise wireless technology and security.

2.Education: Bachelor's Degree in Information Systems/Technology/Computer Science (or equivalent work experience).

3.Certifications in the following technologies a plus: CCSP certification (Cisco Certified Security Professional), CISSP (Certified Information Systems Security Professional) and/or MCSA (Microsoft Certified Systems Administrator) or MCSE (Microsoft Certified Systems Engineer) with security specialization.

4.Demonstrated project management skills from a team member role.

5.Programming or scripting skills necessary to assist in server and client management tasks highly desired.

6.Analytical thinking for effective problem determination and correction within the department and in the user community is essential. The ability to work independently, make decisions under pressure, while providing timely and responsive services are the keys to this position.

7.Excellent time and project management skills, customer service and interpersonal skills, system diagnostic and communication (written and oral) are critical for success in this position.



icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Information Security Analyst

Fay Servicing

Posted Yesterday

VIEW JOBS 11/24/2020 12:00:00 AM 2021-02-22T00:00 About Fay: Fay Financial, originated in 2007, is a full-scale real estate services company that offers mortgage servicing, property renovations, business purpose lending, insurance, and more to homeowners, investors, and clients nationwide. Fay handles a wide range of mortgage loan solutions for prospective homeowners with varying credit histories and also offers refinancing for existing mortgages. Fay Financial is made up of separate business units offering a complete range of home ownership products and services that provide customers with solutions to navigate the challenges of home ownership while helping them build toward their long-term financial goals. Fay Cares! "While others in our industry focus on collecting money-or else-we take a kinder, more humane approach when homeowners fall short," explains CEO Ed Fay. "We consider the people behind those mortgages, and work hard to give them the best chance possible to stay in their homes." The Fay-Constructive Foundation was established to fulfill the philanthropic mission of Fay Financial employees to serve the communities in which they live and work. Over 80% of employees across Fay, Constructive, and GenStone affiliate companies make voluntary contributions to the Foundation. Each quarter, their contributions are donated to organizations focused on improving education opportunities, combating poverty, and supporting military service members and first responders. Come join us on our journey to serve our customers and be the leader in our industry! As the Senior Information Security Analyst, you will manage the process and tools in Information Security Risk Management; handle IT due diligence requests as well as compliance to policies and procedures. You will work with key stakeholders in IT, Compliance, Internal Audit, and Legal to review and provide security guidance on current and new processes, maintain evidence and artifacts for internal and external audits. You will also need to have outstanding problem-solving skills, a meticulous attention to detail, and a sound understanding of cybersecurity. What you will do for Fay: * Identify and analyze new and emerging requirements for policy impacts; develop and update policies, procedures, standards and guidelines * Be the primary point of security risk management activities, including but not limited to, analyzing, quantifying, and tracking identified information security risks as well as reviewing, documenting, and tracking risk exception requests * Manage and track cybersecurity audit engagements and due diligence activities. Utilize working knowledge of information security best practices to ensure sufficient IT controls are in place to meet our external audit and client requirements * Evaluate and recommend improvements to the company's information systems control environment, risk management and IT audit processes to reduce duplicate audit requests in addition to minimizing Process Owner dependency to obtain control evidence * Work closely with the IT Policy and Process Owners to create, modify, validate, and decommission policies / procedures * Ensure compliance with established IT policies and procedures by examining IT records, reports, operating practices, and documentation * Create and maintain dynamic dashboards and/or scorecard for visibility of Information Security Governance activities * Coordinate disaster recovery planning, testing and execution. Update and maintain disaster recovery plans * Performs other related duties as assigned by management What you will bring to Fay: * Background in Information Security, IT Risk Management, or IT Audit * Minimum three (3) years of experience supporting Information Technology compliance programs to meet regulatory or compliance requirements * Proven experience in proactively identifying potential IT controls risks, issues and opportunities through analytical thinking and offering sustainable recommendations that address root cause rather than symptoms * Strong understanding of information security standards, best practices for securing computer systems within applicable laws and regulations * Experience with Governance Risk & Compliance (GRC) tools and policy/procedure development * High level of personal integrity, and the ability to professionally handle confidential matters while exuding appropriate level of judgment and maturity * Ability to blend exceptional attention to detail with an ability to retain strategic direction within a rapidly evolving entrepreneurial business culture * Very strong team player yet self-motivated and able to make progress independently * Demonstrated strong organization skills * Experience with various MS Office tools (Word, Excel, PowerPoint, Visio) and ITSM platform (Jira is a plus) * Experience working in highly regulated industry (financial services or health care) desired * CISSP, CISA, CISM, CEH, Security+ and / or similar certifications is a plus * Bachelor's degree in Information Technology/Computer Information Systems or related field * Strong understanding of security and control frameworks, such as FFIEC, NIST, COBIT, ISO control framework * Ability to extract and analyze data for helping drive continual operational improvement in meeting the business needs We don't just accept diversity - we support it, celebrate it, and thrive on it for the benefit of our employees, our customers and our company. We are proud to be an equal opportunity workplace where we strive to think outside, and not simply check, the box. Fay Servicing Chicago IL

IT Security Analyst Sr.

Children's Memorial Hospital