IT Security Analyst

Cromwell, Connecticut

Posted: 10/15/19 Category: Healthcare IT Job Number: 8272

Position: IT Security Analyst
Location:  Cromwell, CT
Type: Full Time
Interview: Phone and In Person Required

Job Description:

The IT Security Analyst works under the direction of the Manager of Cyber and Information Security to support security operations for the enterprise.  The core functions of this role include planning, implementing, upgrading and monitoring enterprise security solutions for the protection of computer networks, assets and information. Tasks will include supporting enterprise security solutions, and assisting with and conducting vulnerability audits and security assessments while supporting day to day operations.  
Responsibilities
Strategy & Planning
Acquisition & Deployment
Job Activities
Education & Certification

Knowledge, Skills & Experience

  • Support the implementation of the Security roadmap and solutions.

  • Support the agency wide security awareness training program.

  • Participate in the creation and maintenance of enterprise security documents (policies, standards, baselines, guidelines and procedures).

  • Conduct and Monitor compliance with Industry standards (HIPAA, PCI, NIST)

  • Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.

  • Participate in the selection and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise’ s existing procurement processes.

  • Support the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’ s security documents specifically.

  • 40-hour on-site work week with on-call and travel availability.

  • Collaboration with others to resolve information technology issues.

  • Coordinate project activities with other personnel or departments.

  • Assist in development of computer and information security policies or procedures.

  • Implement security measures for computer and information systems.

  • Troubleshoot issues with security solutions and systems.

  • Maintain knowledge of emerging industry and technology trends.

  • Maintain confidentiality, integrity and availability of data and services residing on or transmitted to/from/through enterprise workstations, servers and other systems and in databases and other data repositories.

  • Monitor security related tools and functions, investigate/escalate incidents using subject matter expertise as they occur and work with the security architect and other business units to mitigate risks to acceptable levels.

  • Support vulnerability assessments, penetration tests and security audits per standards and   policies.

  • Support the execution of regular security awareness training for all employees to ensure consistently high levels of compliance with enterprise security documents.

  • Engage in ongoing communications with peers in the Systems and Networking groups as well as the various business groups to ensure enterprise wide understanding of security goals, to solicit feedback and to foster co-operation.

  • Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.

  • Perform risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures.

  • Train users and promote security awareness to ensure system security and to improve server and network efficiency.

  • Implementation of security solutions including staffing and vendor coordination.

  • Document computer security and emergency measures policies, procedures, and tests.

  • Bachelor’ s degree in the field of computer science or management information systems or a related field, is required.

  • One or more of the following certifications is preferred:

    • CompTIA Security +

    • GIAC GSEC

    • GIAC GCIH

    • ISACA Certified Information Security Analyst

    • Microsoft Certified Systems Engineer: Security

    • (ISC)2 SCCP

    • (ISC)2 CISSP

    • (ISC)2 ISSAP

  • 3-5 Years experience working in an IT Security role responsible for information security, network administration, systems administration, router, firewall and switch security.

  • Experience with vulnerability and patch management.

  • Experience with mobile device management.

  • Advanced understanding of penetration testing and vulnerability assessments.

  • Experience with security testing of enterprise networks through ethical hacking.

  • Experience with Automation, Scripting and programming.

  • A strong networking background.

  • Experience with incident handling including knowledge of common probing and attack methods, network/service discovery, system auditing, viruses, and worms.

  • Experience working in a regulated industry dealing with sensitive data preferred.

  • Strong analytical and problem solving skills.

  • Good interpersonal, organizational, writing and communications skills.

  • Ability to work well in a team environment as a whole.

  • Self-motivator who monitors the news and threat reports in order to ascertain the potential risks to the company

Meg McLeish
Technical Recruiter

Contact Meg to learn about this great opportunity!

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.