Security Analyst I

---

Job description

Job Description:

Under the general direction of the Security Administrator of Information Technology, is responsible for the maintenance, monitoring and support of information security initiatives, password management, Single Sign-On initiatives, Role Based Access Controls initiative and maintenance, the destruction and tracking of electronic media containing sensitive information, assesses security associated with mobile devices, conducts research during audit activities, conducts security monitoring, intrusion detection, communication controls, and device security. Identifies, develops, and implements security changes and enhancements, in coordination with Network and Systems teams that address prevention, detection, and remediation of security vulnerabilities and breaches.

Required Skills:

1. Highly effective written and oral communication skills
2. Ability to work and effectively prioritize in a highly dynamic work environment.
3. Demonstrates ability to utilize creativity, judgment and initiative in solving complex technical and project issues.
4. Familiar with government healthcare laws and regulations pertaining to security of information to include the HIPAA guidelines
5. Excellent interpersonal skills.
6. Excellent creative problem solving and troubleshooting techniques.
7. Excellent business and system analysis skills. Ability to translate user requirements into applicable support systems and processes that exceed end users expectations.
8. Proficient in project management techniques and project management tools (MS-Project or other similar tools)
9. Proficient in the use of documentation and design techniques.
10. Ability to handle stressful situations and multiple tasks in a support role.
11. Ability to work in a consultative manner with people from varying disciplines and degrees of technical experience.
12. Ability to negotiate and manage project deadlines and project scope.
13. Extensive knowledge of security hardware and software products that comply with current industry standards.
14. Knowledge and understanding of technology-related state and federal healthcare regulations is preferred.

Required Experience:

A. Work Experience
Two years experience serving as a Security Analyst in an IT organization comparable to UMC and/or Systems Analyst responsible for the application security in a comparable environment. Experience addressing security requirements of large, complex business applications utilizing web application technology (e.g., IBM WebSphere), reporting systems (e.g., Cognos) and identity management systems (e.g., Tivoli Identity Manager). Experience applying industry standard methodologies to the practice of security. Experience with establishment of application role based access control on Clinical or Financial Systems (such as Lawson, Invision, Cerner). Able to serve as an effective member of the technical and business teams and to communicate security concepts to a broad range of technical and non-technical staff.

B. Education and Training
Bachelors Degree in Computer Science, Information Management or equivalent experience. CNE, MCSE, CCNA, or CCNE is preferred. HIPAA education/knowledge is a plus.

<!– job description page –>