39 applicants

Company

Point32Health · 13 hours ago

Lead Information Security Analyst

United States

Full-time

Remote

Senior Level

6+ years exp

Maximize your interview chances

Health CareInsurance

Insider Connection @Point32Health

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Provides leadership in planning, designing, assessing, and/or implementing strategic security program improvements through:

Providing advanced information security consultation for all aspects of information security, compliance, policy, risk management, and remediation

Identifying process improvements and developing plans to meet or exceed security best practices

Ensure the confidentiality, integrity, and availability of the information residing on or transmitted to/from/through the enterprise’s devices, servers, and other systems and data repositories.

Providing technical expertise and administration of security solutions, where applicable

Participate in the design, implementation, and administration of security tools to reduce risk

Identifying technology trends and evolving social behavior to support the success of the business

Oversee and maintain system consistency through regular audits

Provide leadership and education colleagues; participate as an active member of the IT and security community at Point32Health to promote information sharing, respectful challenge, efficiency, control effectiveness, and program quality through continuous improvement

Create meaningful and detailed metrics based on security needs

Other duties and projects as assigned.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Information SecurityCyber SecuritySecurity Program DesignIT GovernanceAccess Control AnalysisIncident ResponseData AnalysisData ProtectionThreat ProtectionIdentity ManagementSecurity Best PracticesCloud ArchitectureData Loss PreventionAPI SecurityNetwork SecurityMalware PreventionApplication Security TestingMulti-Factor AuthenticationHIPAA ComplianceProject ManagementCollaboration Skills

Required

6+ years of progressively responsible leadership in IT, audit, or information/cyber security programs, including at least 4 of those years designing and implementing security program capabilities

Experience with IT governance and operations; access control analysis; incident response; data analysis and auditing controls; data protection; advance threat protection; identity and access management; integrated technologies with cross-functional impact

Demonstrated competency in developing effective security solutions to diverse and complex business problems in a cross-functional environment.

The ability to be a strategic, big picture thinker while possessing the analytical skills and understanding of operational details is essential

Working knowledge of security controls in multiplatform environments

Broad knowledge of commonly used information security concepts, best practices, and standards

Demonstrated expertise is at least two leading security areas, e.g., privileged access management, enterprise identity & access management, cloud architecture, data loss prevention, security information & event manager, incident management, third-party vendor risk assessment, API security, network security, malware prevention, database masking, secure development, application security testing, multi-factor authentication schemes

Self-directed; expected to identify and lead efforts to correct security controls and/or process improvements

Strong collaboration, facilitation, and negotiation skills.

Strong communication skills, both written and verbal.

Ability to explain complex technical issues to non-technical colleagues and business executives

Ability to troubleshoot and independently solve problems as they arise

Familiarity with HIPAA Security Rule and other regulatory requirements

Proven analytical and problem-solving abilities

Project and program management planning and organizational skills

Customer service focused

Time management and prioritization