Sharp HealthCare

IT Security Analyst I is an entry level position in the Information Technology Risk Management (ITRM) department that assists with: risk assessments of Sharp HealthCare's infrastructure, applications, services, and processes; the development and implementation of policies and minimum security standards; and implementation and monitoring of security controls throughout Sharp HealthCare's enterprise.. In case of a security breach or directed insider threat, IT Security Analyst I assists with incident response and investigative activities as necessary.. Certified Information Systems Security Professional (CISSP) - (ISC)² -PREFERRED. Incident Response and Investigations Develops and maintains skills in responding to system and data breaches by internal and external threat actors.. Demonstrates knowledge of the forensic requirements for collecting, preserving and presenting evidence (e.g. admissibility, quality and completeness of evidence, chain of custody).

information security analyst

Hours Shift Start Time: 8 AM Shift End Time: 5 PM Additional Shift Information: Weekend Requirements: As Needed On-Call Required: Yes Hourly Pay Range (Minimum - Midpoint - Maximum): $39.435 - $50.884 - $62.333 The stated pay scale reflects the range that Sharp reasonably expects to pay for this position.  The actual pay rate and pay grade for this position will be dependent on a variety of factors, including an applicant’s years of experience, unique skills and abilities, education, alignment with similar internal candidates, marketplace factors, other requirements for the position, and employer business practices. What You Will Do IT Security Analyst I is an entry level position in the Information Technology Risk Management (ITRM) department that assists with: risk assessments of Sharp HealthCare's infrastructure, applications, services, and processes; the development and implementation of policies and minimum security standards; and implementation and monitoring of security controls throughout Sharp HealthCare's enterprise. In case of a security breach or directed insider threat, IT Security Analyst I assists with incident response and investigative activities as necessary. Required Qualifications <ul><li>Bachelor's Degree In an applicable field. A degree in Computer Science or Electrical, Mechanical, or Computer Engineering is preferred. Experience in excess of five (5) years may be substituted in lieu of a degree. </li></ul>Preferred Qualifications <ul><li>Master's Degree </li><li>Certified Information Systems Auditor (CISA) - ISACA -PREFERRED</li><li>Certified Information Systems Security Professional (CISSP) - (ISC)² -PREFERRED </li></ul>Essential Functions <ul><li>Department support Ensures that information systems are designed, acquired, installed, implemented, documented and supported to provide the best business value to the ITRM program. Ensure that any applicable standards, workflows and processes associated with these solutions are documented and communicated to all team members. Demonstrates a strong understanding of Sharp HealthCare, IT, and ITRM business goals and objectives.</li><li>Data Loss Detection and Prevention Develops and maintains skills in establishing controls to monitor for inappropriate handling or distribution of Sharp HealthCare's sensitive data. Establishes appropriate controls to protect Sharp HealthCare's sensitive data, and monitors for potential loss of that data. Responds appropriately to issues discovered through established controls. Ensures that potential data breaches are communicated effectively to the appropriate management in a timely manner.</li><li>Risk Assessment and Security Architecture Develops and maintains skills in assessing risk, and creatively developing and communicating meaningful controls that align with Sharp HealthCare's business drivers. Acts as in-house consultant to stakeholders, and assists in performing risk assessments, delivering risk reports and recommended remediation guidelines, and ensuring issues are effectively tracked to an acceptable resolution. Assists in the assessment of risks, threats and vulnerabilities associated with new and existing systems and business processes. Assists in the recommendation of internal control solutions that are proportional to risk. Assists in the detailed review of architectural and technical risk assessments prepared by ITRM team members as requested. Demonstrates knowledge of regulatory requirements and their potential business impact from an IT security and risk management standpoint.</li><li>Security Event Monitoring Develops and maintains effective security event monitoring, controls, processes, and technologies that identify threats to Sharp HealthCare's infrastructure and systems so that patient care is not disrupted. Proactively monitors established controls for known threats and anomalous activity indicating potential risk to Sharp HealthCare's ability to deliver patient care. Responds to all security events within the required time period as defined by ITRM leadership. Ensures that all assigned aspects of security events are tracked to completion, and adequately resolved. Assists in the development, collection, and interpretation of key performance indicators and reports as to the efficacy of Sharp HealthCare's established controls.</li><li>Incident Response and Investigations Develops and maintains skills in responding to system and data breaches by internal and external threat actors. Performs forensic duties in support of Sharp HealthCare as necessary. Assists with the testing of forensic capabilities and processes for proper functionality. Assists other ITRM staff members and investigators in performing forensic collections and investigations, and delivering comprehensive reports of findings as requested. Demonstrates knowledge of the forensic requirements for collecting, preserving and presenting evidence (e.g. admissibility, quality and completeness of evidence, chain of custody). Assists with the compilation of investigation reports, supporting evidence and data, and other incident or investigative-related documentation as requested. </li></ul>Knowledge, Skills, And Abilities <ul><li>Ability to develop moderately complex applications utilizing common languages such as Java, Python, C, or C++, or develop automation scripts utilizing languages such as PowerShell is preferred.</li><li>Must have excellent customer service skills, and be a good communicator and team player.</li><li>Must be able to effectively work with Sharp management, staff, physicians, and vendors; to communicate accurately and effectively with people, verbally and in writing; to achieve results for the organization with and through people; to practice good time management and to demonstrate good leadership skills.</li><li>Demonstrates strong expertise in IT security principles and best practices, as applied to distributed systems, local area networks, clinical application systems, telecommunications, mobile devices and other IT disciplines.</li><li>Has a solid understanding of the legal, ethical, managerial and organizational principles and standards for acute care hospitals and multi-facility health systems in California, preferred. </li></ul>Sharp HealthCare is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, gender identity, sexual orientation, age, status as a protected veteran, among other things, or status as a qualified individual with disability or any other protected class

START NEW SEARCH