Apply on Employer Site

Martin's Point Health Care · 15 hours ago

Associate Information Security Analyst

Portland, ME

Full-time

Onsite

Entry Level

1+ years exp

Martin's Point Health Care is an innovative, not-for-profit health care organization offering care and coverage to the people of Maine and beyond. The Associate Information Security Analyst will contribute to security policies, monitor and analyze traffic and logs, and assist in protecting the organization's IT systems from malicious activity and technology breaches.

FitnessHealth CareInsuranceMedicalNon Profit

No H1B

Responsibilities

Monitors SIEM, IDS/IPS, endpoint protections, and identity management solutions

Assists in the administration and engineering of the security infrastructure including the single sign-on, multi-factor authentication, business continuity, and GRC tools

Assists coordinating group-wide and company-wide information security matters such as incident response, intrusion detection management, and cyber security advisories

Identifies information and IT security risks including IT technical implementations or business processes

Under general direction, monitors and audits information systems, networks, and databases to identify and isolate occurrences of unauthorized activity; prepares and coordinates corrective actions

Assists with conducting security assessments and audits, penetration testing, IT forensic investigations and incident management

Assists with performing and/or coordinating regular security assessments of existing or new infrastructure or applications

Coordinates response to information security incidents and threats

Assesses and coordinates information and cyber vulnerabilities throughout the organization

Reviews and enforces information security policy, standards and guidelines for business operations and technology implementations

Qualification

Information security technologiesIncident responseSIEMVulnerability managementHealthcare experienceGIAC certificationSecurity+ certificationOSCP certificationCEH certificationProcess improvementTroubleshooting skillsCommunication skillsProject managementContinuous learning

Required

Bachelors degree in CIS, CS, Business Administration, or similar, or combination of equivalent education and experience

1+ years' experience with information security technologies, security monitoring, incident response, open-source technologies, and various operating systems

Thorough understanding of SIEMs, incident response, disaster recovery, contingency planning, encryption technologies, intrusion detection/prevention systems, and/or vulnerability management

Knowledge of Microsoft and Linux operating systems

Project management and documentation skills

Interpersonal and communication skills and the ability to work effectively with a wide range of constituencies in a diverse community

Maintains industry awareness regarding all information and cyber security trends and directions

Ability to organize and prioritize multiple tasks independently

Thorough understanding of traditional and mobile operating systems and applications

Ability to test and analyze complex system, network, and database security settings

Understands security protocols and monitoring tools

Has knowledge of how best practices integrate with company objectives

Preferred

Healthcare experience and familiarity with HIPAA/HITECH, PCI-DSS, and NIST 800-53 is highly desirable

Global Information Assurance Certification (GIAC), Security+, Offensive Security Certified Professional (OSCP), and/or Certified Ethical Hacker (C|EH) is a plus