Get new jobs for this search by email

At STA, we believe our superpower is our people. Our values are rooted in saving lives through organ and tissue donation. This role focuses on growing, finding innovative ways to drive our mission, and maintaining the best OPO in the country. The success factors for this role include implementing and administering information security policies, developing and maintaining information systems to uphold those policies, and investigating potential and existing security threats. The Information Security Analyst II will establish and enforce security policies, ensure compliance with best practices, troubleshoot security issues, evaluate security risk assessments, and communicate security information to staff and management. They will also assist the workforce with security-related questions and problems. Essential Job Functions and Responsibilities: Designs and manages SIEM rules and Endpoint Detection Response (EDR) behavior to support 24/7 security operations in collaboration with the Managed Security Team. Monitors and creates SIEM alerts based on cybersecurity incidents and threat intelligence, translating them into defensive actions. Participates in incident response and forensic analysis to deploy EDR controls. Performs risk assessments on new technologies, upgrades, and infrastructure changes, providing secure implementation designs. Analyzes cybersecurity incidents across platforms and operating systems to resolve issues and enhance incident handling procedures. Conducts internal and external audits of STA systems and processes, including vendor audits, and incorporates findings into risk management strategies. Researches the latest methods, tools, and trends in digital forensics. Maintains understanding of various technology platforms, threat vectors, and actors to monitor cyber campaigns. Prioritizes and documents work, providing operational support for security technologies and collaborating with other teams on data flow security. Completes security projects on time, within scope and budget. Leads security awareness training for STA staff. Performs penetration testing and installs security measures like firewalls and encryption programs. Provides expert guidance on prevention measures and first-level support for security questions. Develops and tests IT business continuity plans in partnership with IT and Quality Systems directors. Performs other duties as assigned. Education, Experience, and Licensing Requirements: High School Diploma required; Bachelor's Degree in Information Security, Computer Science, or related field preferred. Certifications such as CISSP or CISA preferred. At least 5 years of experience in information security, governance, risk, compliance, IT, or business analysis. Experience in developing and presenting security concepts to diverse audiences. Proficiency with security technologies including IPS, firewalls, endpoint protection, DLP, encryption, SIEM, and virtualization. Qualifications and Skills: Experience with virus/malware protection solutions. Expertise in SIEM, digital forensics, malware analysis, and incident handling. Knowledge of industry regulations such as HIPAA and HITECH. Healthcare experience is strongly preferred. Excellent communication skills and the ability to work independently and in teams. Capacity to handle high stress and workload. Must be able to travel by air or car; valid driver’s license required. #J-18808-Ljbffr