Senior Information Security Analyst

Pay Range: $46.90/hr - $55.11/hr - $63.31/hr# *Please note, the highest starting rate as a new hire is $55.11/hr, based on applicable experience POSITION SUMMARY: Under the direct supervision of the Information Security Manager, the Senior Information Security Analyst assists the Organization with understanding, applying, and implementing information security and privacy standards. #This position is responsible for maintaining the confidentiality, integrity, and availability of organizational information systems, as well as the integration of information security best practices with other business efforts to comply with the California Data Protection regulations and the HIPAA Security Rule and HITECH Act. # Provides analytical support and documentation related to the latest changes to HealthCare IT regulations and mandates, along with their impacts to existing systems and potential new projects. #The Senior Information Security Analyst is responsible for implementing controls in the areas of governance, risk management, program development, program management, and incident and response management.

Ensures the confidentiality, integrity and availability of all data transmitted or stored by information technology. Leads projects that implement appropriate information security technical controls such as audit logging, vulnerability scanning, authentication, and encryption. #Develops and implements enterprise wide information security education and awareness. Responsible for improving the Organization#s Information Security Program. #Researches information security technologies, develops requirements, and evaluates and recommends solutions.

EDUCATION / TRAINING / EXPERIENCE: Minimum:

• Bachelor#s degree in Management Information Systems, Computer Science, or related field.

• Eight years of working technical experience in an enterprise environment.# * Six years of experience working in an Information Security role.

• Experience related to security technologies such as encryption, firewalls, end-point protection, and vulnerability scanning.

Desired:

• Experience with HIPAA compliance programs, policies, procedures, and risk assessments or information security audits.

• Experience managing complex information technology projects.

• Comprehensive understanding of the regulatory environment including HIPAA/HITECH, PCI; and information security frameworks i.e. NIST, ITIL, FIPS, FISMA, ISO, and Cobit.# * Knowledge of design, implementation, and maintenance of: security incident and event management (SIEM), firewalls, Active Directory, group policy, vulnerability scanning, encryption, IDS/IPS, web filtering, LDAP, multi-factor authentication, data loss prevention, anti-virus, email filtering, exploits and hacker techniques, cybersecurity threat hunting, and network and operating system security principles.# LICENSES / CERTIFICATIONS: Minimum:

• Security Certification such as CISSP or GAIC (dept tracks)

Desired:

• Project Management Certification such as PMP SKILLS / KNOWLEDGE / ABILITIES: Must have knowledge of the HIPAA Security Rule and HITECH Act. #Must be able to apply logic to the analysis, development, and implementation of information security standards.
  
  Strong organizational and multi-tasking skills are essential for working in a complex and varied work environment. #Change management skills are necessary to lead implementations that will result in significant changes to workflow processes for hospital and clinic staff throughout the Organization. Wide knowledge of information technologies including servers, networks, telecommunications, software, databases, and hardware. #Excellent verbal and written communications skills. Strong technical aptitude and technical problem resolution skills.
  
  Knowledge and skills in project management methods with an ability to demonstrate methods when needed to lead projects. Ability to use discretion when handling confidential information. Adaptability in working with professional and non-professional staff in a team-oriented environment.
  
  Outstanding critical thinking and problem-solving skills while demonstrating a high degree of objectivity, diplomacy and tact. Knowledge of health care trends, policy, regulatory, and compliance issues. Ability to work productively in a fast paced, rapidly changing environment.6/27/22 added sf