Senior Information Security Analyst
Company: VanderHouwen
Location: Vancouver
Posted on: February 21, 2021
|
|
Job Description:
Description
Job ID: 48205
Senior Information Security Analyst Responsibilities
Responsible for leading the design, planning, facilitation,
evaluation and implementation of information security-related
policies, procedures, standards and controls across the
company.
Assists in the development of the goals, strategy, methodologies
and outcomes of the Information Security Program and related
technologies.
Provides leadership, expertise and technical direction in
collaboration with peers, junior team members and caregivers from
adjacent departments, such as Information Technology (IT),
Compliance, Privacy, Legal, Communications and Operations.
Responsible for the successful coordination, delivery and tracking
of outcomes related to 3-5 significant initiatives and contributes
to multiple smaller efforts concurrently.
Responsible for the day-to-day operations of multiple information
security-related program areas or technology systems.
Prepares and presents detailed and high-level reports to internal
and external stakeholders at multiple levels (up to Director).
Acts as subject matter expert in the integration of systems,
applications, processes, access controls, go-lives, upgrades,
enhancements and technologies, based on business and technical
requirements.
Assigns work, plans and manages priorities, provides technical
assistance, oversees staff schedules, monitors quality of work,
monitors team projects, mentors staff, provides constructive
feedback, oversees staff training, ensures quality improvement,
provides leadership feedback on staff performance, and assists with
goal setting for the team.
Assists in recruitment, development, and training of security
staff.
Provides on-call after-hours support as assigned.
Essential Functions
Leads the design, engineering, implementation and operation of
information security processes, policies, procedures, standards,
systems and controls based on business and technical
requirements.
Analyzes and correlates data from information security technology
sources, such as endpoint protection, intrusion detection, security
event monitors and secure proxies, to identify potential threats
and defend company against threats.
Protects information and information systems by analyzing public
and private information sources to develop effective defensive
techniques, policies, procedures and standards.
Leads information security, technology teams and business
stakeholders to respond to and remediate identified vulnerabilities
and gaps in security controls, policies, procedures and
standards.
Leads the design and implementation of security response
automation, integrating various information and information
security tools to create fast, intelligent responses to common
and/or critical cyber incidents.
Effectively communicates technical issues and investigative
findings to technical and non-technical audiences in written and
verbal form.
Leads information sharing and integration procedures across
information security through the exchange of threat intelligence
and cyber security vulnerability assessment data.
Leads information security assessment activities in collaboration
with technical and non-technical teams across the organization.
Proactively identifies and develops recommendations related to
information security gaps and vulnerabilities in collaboration with
stakeholders across the organization.
Serves as an advisor and subject matter expert on identified
information security issues, projects, or any other initiative that
may have an information security implication.
Leads and facilitates information security work groups, including
project management, scheduling, coordination, follow up, status
reports and report outs.
Leads and responds to security-related investigations and other
information security requests across company.
Leads the development of information security intellectual capital
by making process or procedure improvements, enhancing team
documentation, conducting informal team training sessions, and
creating new team training documents.
Develops, promotes and implements information security education
and awareness policies, procedures, standards and controls in
collaboration with stakeholders across the organization.
Analyzes, designs, builds and manages role-based access controls
for users of applications and systems.
Develops and leads user access review processes.
Develops and generates reports and metrics (e.g., system/control
metrics, status updates, risk assessment reports, remediation
reports) to support information security measurement and reporting
objectives.
Provides support and assistance to caregivers across the
organization related to information security related technology and
programs.
Provides on-call after-hours support on a rotational basis as
assigned, including evenings, weekends, and holidays.
Performs other duties as assigned.
Senior Information Security Analyst Qualifications
Bachelor's Degree in Computer Science, Healthcare Information
Technology, or relevant field or equivalent knowledge and skills
obtained through a combination of education, training and
experience required.
Minimum of ten (10) years of experience in IT, information
security, cyber risk management, compliance or a related field
required; of which at least 5 years' experience in information
security is required.
Healthcare Experience Preferred.
Leadership experience working with project or technical teams
required.
Two or more relevant information security-related certifications
required. Examples include: CISSP, CISA, HCISPP, CCSP, CRISC, CISM,
CGIH, GCFA, GNFA, GPEN, GSEC, CEH, and Epic Security
Coordinator.
Ability to work independently across multiple
initiatives/technologies and seek guidance as needed.
Excellent project management, written and oral communications
skills.
Ability to create and present information in various forms such as
textual, graphical and statistical.
Ability to collect and analyze data to guide decision making while
under potentially intense pressure to address security
incidents.
Ability to work collaboratively with and lead a broad range of
constituencies and respond to their needs and collaborate
effectively towards solutions.
Ability to lead matters of high sensitivity and confidentiality
with both professionalism and discretion.
Hands-on experience implementing and operating three or more common
information security tools, such as endpoint protection, intrusion
detection, security event monitors, secure proxies, firewalls,
encryption, single sign-on, multi-factor authentication, etc.
Hands-on experience implementing and operating three or more common
information security methodologies, such as incident response, risk
management, data protection, identity and access management, role-
based access control, etc.
Ability to identify and correlate cyber threats and
vulnerabilities.
Strong understanding of adversarial tactics and techniques.
Hands-on experience with cybersecurity, ethics and privacy
principles, along with related regulatory requirements and industry
frameworks (e.g., NIST CSF).
Strong understanding of government and other regulatory
requirements for medical billing and benefit verification as they
pertain to access and user management.
Knowledge of Microsoft Azure cloud and security services.
Ability to effectively lead others informally and formally.
This is a remote position
About VanderHouwen
VanderHouwen is an award-winning, Women-Owned, WBENC certified
professional staffing firm. Founded in 1987, VanderHouwen has been
successfully placing experienced professionals throughout the
Pacific Northwest and nationwide. Our recruitment teams are highly
specialized in either Technology and IT, Engineering, or Accounting
and Finance career markets. Our recruiters value building
meaningful, professional relationships with each candidate as well
as developing honed knowledge of companies' staffing needs and
workplaces. Partner with us to land your next exciting career.
VanderHouwen is an Equal Opportunity Employer and participates in
E-Verify. VanderHouwen does not discriminate on the basis of race,
color, religion, sex, national origin, age, disability, or any
other characteristic protected by applicable local, state or
federal civil rights laws.
Keywords: VanderHouwen, Vancouver , Senior Information Security Analyst, Accounting, Auditing , Vancouver, Washington
Click
here to apply!
|
Didn't find what you're looking for? Search again!
Other Accounting, Auditing JobsSenior Revenue Accountant Description: Thank you for considering a career at FinancialForce. Please take a minute to fill out the Company: FinancialForce Location: Portland Posted on: 02/25/2021 accounting specialist - Local Company Description: This Accounting Specialist Position Features: br Local Company br Consistent Schedule br Continued Training br Company: Location: Portland Posted on: 02/25/2021 Senior Development Manager Description: Senior Development Manager -- br US,--Portland-----Management-----Full-Time-- - ID:-- 12629 -- As the global leader in sustainable energy solutions, we're always looking for new talented colleagues (more...) Company: Vestas Deutschland GmbH Location: Portland Posted on: 02/25/2021 Accounts Payable Manager Description: Responsibilities include but are not limited to:-- ul li Ensure Shilo vendor privacy is respected and confidential. li Manage the corporate checking account, including writing checks, making (more...) Company: Shilo Management Corporation Location: Portland Posted on: 02/25/2021 Experienced Tax Accountant - Remote Description: Job Description Overview Do you have a minimum of 3 season of paid Tax Preparation experience, Company: Intuit Location: Portland Posted on: 02/25/2021 Earn cash this Winter. Deliver with Uber! Description: Deliver with Uber. Earn on your schedule. Work on your schedule. Deliver for a few hours in the mornings, every night, or just on weekends it's up to you. Earn Good Money. You'll earn by bringing people (more...) Company: Uber Eats Location: Brightwood Posted on: 02/25/2021 AR/AP Assistant - Great Company! Description: This AR/AP Assistant Position Features: br Stable Company br Paid Vacation br Great Benefits br Great Pay to 25K Company: Location: Portland Posted on: 02/25/2021 Mail Processor - Postal Service Description: MAIL PROCESSOR - POSTAL SERVICE NO EXPERIENCE REQUIRED - PAID TRAINING PROVIDED - JOB SECURITY br br br The Postal Service is the largest government related agency in terms of employees. The Postal (more...) Company: USA Labor Services Location: Oregon City Posted on: 02/25/2021 General ledger/Payroll Description: Accounting/Payroll-Posts to and balances general or subsidiary ledgers, processes payments and compiles segments of monthly closings, Company: Location: Portland Posted on: 02/25/2021 Senior Commercial Underwriter Description: br Underwrites new and renewal C I and CRE credit requests comprised of working capital lines of credit, asset-based lines of credit, commercial real estate loans Owner Occupied and Investor and (more...) Company: Acuren Group Inc Location: Portland Posted on: 02/25/2021 |