Apply on Employer Site

Emory Healthcare · 13 hours ago

Information Security Analyst (3rd Party Risk Assessments)

Atlanta, GA

Full-time

Hybrid

Mid Level

3+ years exp

Emory Healthcare is committed to providing a supportive environment for professional growth and offers comprehensive benefits. The Information Security Analyst role focuses on performing third-party vendor risk assessments using specialized software, while ensuring compliance with information security policies and standards.

Health CareMedical

H1B Sponsor Likely

Responsibilities

The Information Security Analyst will coordinate and perform information system and third-party risk assessments, following a NIST-based methodology

Assist in guiding business owners and end-users on the implementation of solutions that comply with IS security policies and standards

Assist in prioritizing departmental tasks including new risk assessments and cybersecurity variance requests according to departmental processes

Clearly document assessments, variances, findings, and remediation plans in Archer

Maintain a current knowledge of applicable federal and state privacy laws and accreditation standards, and monitor advancements in information privacy and security technologies to ensure adaptation and compliance

Maintain awareness of new technologies and related opportunities for impact on system or application security

Conduct information security research in keeping abreast of latest security issues and keeps abreast of testing tools, techniques, and process improvements in support of security event detection and analysis

Use/s the Emory Healthcare values to govern decisions, actions and behaviors. Performs other duties as assigned

Qualification

Information Security Risk AnalysisNIST 800-53HIPAA ComplianceCloud Security ConfigurationsInformation Security CertificationsWindows Operating SystemsUnix/Linux Operating SystemsInterpersonal SkillsTime ManagementProblem SolvingCommunication Skills

Required

Bachelor's degree (B.A. / B.S.) or equivalent from an accredited college or university required, with 3-5 years of experience in IT/IS

3-5 years of experience with information security risk analysis, security risk configuration development, or information security audit

Demonstrated understanding of common healthcare technology implementation architectures, common cloud security configurations, identity management solutions and, technologies and application of risk analysis

Demonstrable natural aptitude with object relationship and cause/effect

Skills/Abilities/Competencies: Possess strong interpersonal skills to effectively communicate with cross functional teams including staff at all levels of the organization

Outstanding time management and organizational skills required

An ability to work under the required guidelines and deliver on business/project requirements

Ability to work with both team members and staff in a professional manner

Comfortable working in a dynamic environment with multiple work streams, goals, and objectives

Possess ability to recommend to ISPO leadership team to prioritize project related tasks

Excellent vocabulary, written and verbal communication and effective interpersonal skills is critical

Understanding of Windows, Unix/Linux operating systems, security administration, virtualization, and TCP/IP networking concepts

Ability to work independently with minimal supervision

Ability to successfully negotiate and collaborate with others of different skill sets, backgrounds and levels within and external to the organization

Strong problem solving and negotiation skills

Ability to effectively conduct meetings, both formal and informal

Requires minimal direction from leadership and possesses the ability to learn quickly

Preferred

Demonstrable familiarity with HIPAA, GDPR, HITECH, and other appropriate information security and information privacy regulatory requirements for healthcare entities a plus

In depth knowledge of NIST 800-53, ISO 27K, GDPR, PCI-DSS is desirable

Any of the following certifications is a plus: ITIL, any of the following Information Security Certifications: CISSP, HCISSP, CISM, CISA, CIPP, CIPM, CIPT, CPHIMS, PCIP, GSEC, GCIH, GCFE, GCFA, CEH, GPEN

Benefits

Comprehensive health benefits that start day 1

Student Loan Repayment Assistance & Reimbursement Programs

Family-focused benefits

Wellness incentives

Company

Emory Healthcare

Glassdoor3.6

Emory Healthcare is the largest healthcare system in the state of Georgia., United States.

Founded in 1953

Atlanta, Georgia, USA

10001+ employees

http://www.emoryhealthcare.org/

H1B Sponsorship

Emory Healthcare has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (48)

2024 (68)

2023 (30)

2022 (25)

2021 (12)

2020 (7)

Funding

Current Stage

Late Stage

Leadership Team

Jennifer Schuck

Chief Executive Officer

Joon S Lee MD

Chief Executive Officer

Recent News

EIN Presswire

Atlanta's Voices of Note Welcomes New Board Leaders from Deloitte, Emory Healthcare, Netflix, and Olympus

2025-10-25

9to5mac

Apple @ Work: Emory’s first all-Apple hospital and Epic Mac app highlight company’s growing healthcare role

2025-09-27

MedCity News

Healthcare Moves: A Monthly Summary of Hires, Exits and Layoffs

2025-09-01

Company data provided by crunchbase