What are the responsibilities and job description for the Sr IT Security Analyst position at MyMichigan Health?
Summary
NOTE: This position is NOT a remote position, candidate would need to be onsite.
GENERAL SUMMARY
Reporting to the Chief Information Security Officer, the Senior Security Analyst has responsibility for assessing information risk, reporting on and facilitating remediation of identified vulnerabilities for IT security and IT risk across the health system. Manages the continuous protection of systems and information assets by contributing to or leading teams in the execution and implementation of information security defense improvements involving architecture, processes, tools and automation. Assists in establishing, reviewing and maintaining security related policies, plans, processes and procedures to contribute toward the protection of critical business functions from disruption due to system failure or unavailability and to ensure enterprise applications have appropriate protections in place. Collaborates with IT staff to monitor the security posture of all networked systems and leads efforts to take appropriate steps to quickly deal with any identified vulnerabilities. Provides network and security expertise and guidance for all aspects of information assurance. Maintains a high level of technical expertise on server/network hardware and software and appropriate security tools. Assists in the selection, evaluation, and implementation of information system security infrastructure and strategic and operational planning. Supports efforts to meet HIPAA and PCI requirements utilizing established security framework, leading/contributing efforts toward assessment completion and action plan follow though.Performs duties in compliance with and accordance to organizational policies and procedures, regulatory requirements and sound business practices. (50%)* Lead and/or contribute to security and access management planning meetings, project teams, and workgroups as required. Refine and improve security management practices. Develop and maintain policies, procedures and standards that meet existing and newly developed policy and regulatory requirements including HIPAA, HITECH and PCI. Assist with maintenance and execution of the security incident response plans and processes.
(35%)* Report, review, and audit adherence to established security policies and standards for assigned areas. Work with internal and external audit teams to deliver timely responses to data collection requests and address questions for audits and examinations. Perform vulnerability assessments as assigned utilizing IT security tools and methodologies. Facilitate and monitor the performance of risk remediation tasks, changes related to risk mitigation and report on findings.
(10%)* Manage access privileges to systems, applications and functions for assigned areas of responsibility. Serve as an escalation point for the IT Service Center, End User Device Support, and Server/Infrastructure teams for security-related incidents. Provide weekly project status reports, including outstanding issues. Deploy critical security updates to system workstations and servers utilizing patch management software. Develop and maintain metrics to measure and regularly report on security posture, including progress in areas such as patch management.
(5%)* Provide in-depth gathering, analysis and interpretation of data from IT systems as needed to aid in investigations of security-related incidents.
OTHER DUTIES AND RESPONSIBILITIES
Following security best practices, monitors system capacity, availability and performance and makes recommendations for improvements.
Investigates opportunities and develops proposals to take advantage of system and network security technologies that best meet needs of the organization.
Leads and participates in teams to implement projects throughout the organization.
Leads troubleshooting and problem solving efforts for a range of IT technical issues involving security.
Consults with users, IT staff and others on system issues and capabilities and other areas within expertise.
Develops, maintains and tests incident response plans against a variety of scenarios.
Develops and implements security strategies appropriate to application tier and user needs.Working with system administrators and vendors, analyze, recommend, plan and provision appropriate types of security technology to meet requirements.
Ensures that security options are properly configured, well documented, tested and successfully executed to maximize the overall benefit for the organization. Adheres to Change Management standards.
Participates in call rotation for IT security when required.
REQUIRED EDUCATION, EXPERIENCE, TRAINING AND SKILLS
* Bachelor’s Degree from an accredited university or college in Computer/Information Science/Business required.
* Minimum of ten (10) years of technical experience in an enterprise-wide system, network or security-related IT position. Equivalent combination of experience and education (min Bachelors) may be considered.
Enterprise-wide Network/System Administration or Engineering experience.
Leadership, project management, use of methodology, time management and organizational skills to direct security efforts with the project team.
Demonstrated ability to lead high visibility projects, to work effectively and carefully under pressure, to meet project deadlines, to learn independently, to communicate effectively with a variety of people and to write well is required.
Excellent troubleshooting and problem solving skills are required.
Interpersonal and presentation skills needed to communicate successfully both orally and in writing with individuals / groups and interact with people at all levels to communicate ideas and concepts in a clear and understandable manner.
Expert level knowledge of and extensive experience with the following are preferred:
Windows and Linux operating systems, networks and network security technologies (IPS, firewalls, etc.), TCP/IP network communication structure, protocols and processes, Internet protocols and connectivity methods, vulnerability scanning, penetration testing and user authentication technologies.
Attention to detail and ability to work collaboratively with both technical and non-technical individuals.
PHYSICAL/MENTAL REQUIREMENTS AND TYPICAL WORKING CONDITIONS:
Exposure to stressful situations, including those involving public contact, as well as, trauma, grief and death.
Able to wear personal protective equipment that includes latex materials or appropriate substitute if required for your position.
Is able to move freely about facility with or without an assisted device and must be able to perform the functions of the job as outlined in the job description.
Overall vision and hearing is necessary with or without assisted device(s).
Frequently required to sit/stand/walk for long periods of time.
May require frequent postural changes such as stooping, kneeling or crouching.
Some exposure to blood borne pathogens and other potentially infectious material.
Must follow MidMichigan Health bloodborne pathogen and TB testing as required.
Ability to handle multiple tasks, get along with others, work independently, regular and predictable attendance and ability to stay awake.
Overall dexterity is required including handling, reaching, grasping, fingering and feeling.
May require repetition of these movements on a regular to frequent basis.
Physical Demand Level: Sedentary. Must be able to occasionally (0-33% of the workday) lift or carry 0-10 lbs.