fbpx

Cyber Security Analyst

2022-06-04T11:02:58-06:00May 17th, 2022|

CCRM Management

The Cybersecurity Analyst will play a key role in enhancing and improving the security posture across the CCRM organization. The Cybersecurity Analyst will be responsible for identifying and mitigating areas of vulnerability and potential exposure from a cybersecurity standpoint. The Cybersecurity Analyst will have hands-on and practical experience in areas of cyber and data security, cybersecurity methodologies and frameworks, including experience in establishing both technical and organizational controls to protect the confidentiality, integrity, and availability of data. The Cybersecurity Analyst will report to the Chief Information Officer.

ESSENTIAL FUNCTIONS:

  • Provides seamless customer service support to end users in relation to cybersecurity within the organization including, but not limited to the following:
  • Builds a security minded culture that keeps communication and transparency at the forefront of securing the organization.
  • Perform information security reviews and scans of designated systems to assess the effectiveness of overall system security, identify vulnerabilities and make mitigation recommendations.
  • Support the implementation, operation and maintenance of vulnerability management projects.
  • Proactively collaborate and communicate within the IT team to address and mitigate vulnerabilities actively leveraged by malicious actors.
  • Recommend and support the implementation, operation, testing and on-going sustainment of HIPAA and PCI security and compliance.
  • Constantly working to evolve and improve technologies and processes to ensure confidentiality, integrity and availability of data.
  • Perform enterprise vulnerability scanning, secure configuration baseline verification, tool validation, data and identity protection activities.
  • Detect and, as required, perform, or oversee remediation of information security vulnerabilities to minimize risks to operating environments.
  • Establish an agile approach for vulnerability management capability improvements to address threats and weaknesses in security.
  • Collaborates with external vendors and service providers, auditors or partner organizations to further cybersecurity objectives, reviews, mitigations and overall security posture improvements.
  • Seeks opportunities for additional responsibilities and growth within organization. Shows initiative and enthusiasm in suggesting and implementing new concepts and/or ideas for improvement.
  • These areas include IT cybersecurity support and troubleshooting, project management, system design and implementation.

REQUIRED KNOWLEDGE, SKILLS, AND ABILITIES:

  • Knowledgeable and deep understanding of vulnerability and risk management.
  • Strong verbal and written communication skills required, and problem-solving ability.
  • Experience with Tenable.sc/Nessus vulnerability scanning and reporting.
  • Ability to articulate raw vulnerability and audit data into executive reports.
  • Experience with patch management software.
  • Understanding of SEIM / Log Aggregation tools.
  • Familiar with attack and exploitation techniques involving operating systems, applications, and devices.
  • Experience in configuration management compliance baselines for Windows, Mac, and Linux.
  • Experience with Incident Response Team (IR/IRT) troubleshooting, root cause analysis and remediation verification.
  • Ability to successfully accomplish tasks with minimal oversight and management.
  • Knowledgeable of Identity Management and authorization, least privilege, and reducing unauthorized elevated access.
  • Understanding of Firewalls to include basic networking, sub-netting, IDS, NAT, ACL’s.
  • Working knowledge of Office 365, Electronic Medical Records (EMR) software, networked medical devices and other software and technologies supporting telehealth and clinical settings.
  • Proficiency in the use of computer equipment and software, including but not limited to, Windows environment (Word, Excel, Outlook – Intermediate to Advanced skills) required.
  • Strong interpersonal skills and ability to work both independently and as part of a team required.

EDUCATION AND EXPERIENCE:

  • Bachelor’s Degree in Computer Science, Healthcare Information Technology and/or relevant field or equivalent knowledge and skills obtained through a combination of education, training and experience required.
  • Minimum of five (5) years of experience in IT, information security, cyber risk management, compliance or a related field required; of which at least 3 years’ experience in information security is required.
  • One or more relevant information security-related certifications preferred. Examples include: CISSP, CISA, HCISPP, CCSP, CRISC, CISM, CGIH, GCFA, GNFA, GPEN, GSEC, QSA and CEH
  • Healthcare experience preferred.
  • HIPAA: 3 years (Required)
  • Information Security, Cyber Risk Management, Compliance: 5 years (Required)

LICENSE/CERTIFICATION:

  • GNFA, GPEN, GSEC, QSA, CEH Certification(s) (Required)
  • CISSP, CISA, HCISPP, CCSP, CRISC Certification(s) (Required)
  • CISM, CGIH, GCFA Certification(s) (Required)

WORK ENVIRONMENT

  • Prolonged periods of sitting at a desk and working on a computer.
  • Prolonged periods of standing, bending, sitting, kneeling.
  • Lift up to 50 pounds.
  • Professional office environment with daily use of standard office equipment such as computers, telephones, photocopiers, and scanners.
  • Occasional overnight travel may be required (up to 10%).

EQUAL EMPLOYMENT/ANTI-DISCRIMINATION

CCRM is an equal opportunity employer and does not discriminate on the basis of Race, Color, Religion, Creed, National Origin, Ancestry, Sex, Pregnancy, Age, Sexual Orientation (including transgender status), Physical or Mental Disability, Marriage to a Co-Worker, or for anyone engaging in Protected Activity (opposing a discriminatory practice or participating in an employment discrimination proceeding). Additionally, this employer does not tolerate any employees engaging in discriminatory behavior based on any of the aforementioned protected classes.

PRE-EMPLOYMENT REQUIREMENTS

All offers of employment by this employer are conditional upon the incumbent’s successful completion of pre-employment screenings, including a criminal background check, drug screen, educational and prior employment verification, professional reference checks, and verification of the incumbent’s eligibility and authorization to work in the United States.

Job Type: Full-Time
Compensation: $90,000.00 – $110,000.00 per year

To apply for this job please visit workforcenow.adp.com.

Book your appointment Call
CCRM