Apply on Employer Site

HCTec · 18 hours ago

Senior Information Security Analyst

Tulsa, OK

Full-time

Onsite

Mid, Senior Level

$100K/yr - $100K/yr

3+ years exp

HCTec is seeking a Senior Information Security Analyst to join their Information Security team. The role involves managing and mitigating information security risk by assessing, designing, and implementing systems and policies, while providing risk insight and guidance to management and peers.

Health CareHospitalInformation Technology

Hiring Manager

Amy van der Merwe

Responsibilities

Define, implement, and enforce information security policies, strategies, and procedures that align with healthcare laws and regulations, such as HIPAA. Conduct and/or support targeted risk assessment

Determine significant risk points and exercise process for risk assessment and risk acceptance

Review assessment results for vulnerabilities, gaps, control deficiencies, and work with key stakeholders to establish plans for sustainable resolution

Maintain an effective information security awareness program and educate internal teams on best practices

Ensures that business and clinical software applications include adequate information and security controls

Establish and maintain metrics based on the information security framework

Qualification

CISSPCRISCCISACyber security methodologyHIPAA complianceIntrusion detectionData loss preventionNetwork protocolsAnalytical skillsCommunication skillsOrganizational skillsInterpersonal skills

Required

Bachelor's degree in Computer Science, MIS, Computer Engineering, Cyber Security or related discipline

3 - 4 years related experience inclusive of two years working directly in an Information Services department and previous experience with HIPAA/PHI compliance programs, policies, procedures, risk assessments and audits

In-depth knowledge of cyber security methodology and security practices

Knowledge of HIPAA, PCI, SOX, ISO and NIST cybersecurity frameworks

Knowledge of intrusion detection and intrusion prevention systems, penetration and vulnerability testing

Knowledge of data loss prevention, anti-virus and anti-malware software tools

Knowledge of computer networking, TCP/IP, routing and switching, network protocols and packet analysis tools

Knowledge of Windows, UNIX and Linux operating systems

Excellent problem solving and analytical skills

Excellent written and oral communication skills

Excellent organizational and interpersonal skills

Ability to work independently as well as in a team setting