IT Security Analyst - GuideWell Source - Remote, FL

United States of America-USAUS

Are you interested in joining a team of experienced healthcare experts and have the ability to shape and transform the healthcare delivery system? At our family of companies, everything we do is to help improve the lives of the nearly 12 million Medicare beneficiaries we serve and 700,000 healthcare providers who care for them. It is our goal to help create a better health experience for all consumers. Join our winning culture and help transform Medicare for the millions of people who rely on its services.

• Medical, dental, vision, life and supplemental insurance plans effective the first day of the month following date of hire
• Short- and long-term disability benefits
• 401(k) plan with company match and immediate vesting
• Free telehealth benefits
• Free gym memberships
• Employee Incentive Plan
• Employee Assistance Program
• Rewards and Recognition Programs
• Paid Time Off and Paid Sick Leave

The IT Security Analyst monitors, analyzes, and reports on events and trends to support the protection and defense capabilities within the environment. The incumbent simulates attacks to identify vulnerabilities, tests new software, and helps users adhere to policies and procedures.

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. This list of essential job functions is not exhaustive and may be supplemented as necessary.

• Serves as liaison with IT and business area partners to identify, understand, document, and advise on security requirements, impacts and risks. Researches, evaluates, and recommends information security-related hardware and software including development of business cases for security investments.
• Assists and supports the development of security architecture. Participates on IT projects to ensure that security issues are addressed throughout the project life cycle and participates in initiatives to identify, select, and implement technical controls.
• Analyzes, proposes, and implements solutions concerning residual risk, vulnerabilities, and other security exposures.
• Develops information security processes, policies, and procedures. Advises on service level agreements and works to ensure that security controls are managed and maintained. Develops and maintains documentation for security systems, procedures, and security diagrams.
• Serves as a liaison and/or support on audit-related initiatives managing relationships, collection of data, progression tracking, assessment, and remedial activities.

• Interacts and manages relationships with IT business partners, with CMS, data centers, internal customers, and other business partners to maximize business effectiveness and meet contractual obligations for system processing.
• Works effectively and respectfully with team members.
• Shares information and performs necessary follow-up to ensure stakeholders are well informed.

Performs other duties as the supervisor may, from time to time, deem necessary.

• High School diploma or GED.
• 4 years related work experience or equivalent combination of transferrable work experience or education.
• Knowledge of information security principles, including risk assessment and management, threat and vulnerability management, incident response and access management.
• Knowledge of network infrastructure, including routers, switches, firewalls and associated network protocols and concepts.
• Strong technical knowledge of current systems, software, protocols, and standards.
• Strong customer focus with the ability to manage customer expectation and experience and build long-term relationships.
• Strong team-oriented interpersonal skills with the ability to interface with a wide range of people and roles including IT vendors and IT business personnel.
• Ability to work under stress in emergencies with flexibility to handle multiple high-pressure situations simultaneously.
• Ability to adapt in a rapidly changing environment.
• Ability to communicate highly technical information clearly and articulately for all levels and audiences.
• Ability to manage tasks independently and take ownership of responsibilities.
• Ability to learn from mistakes and apply constructive feedback to improve performance.

Possesses or obtains within 1 year of position placement: CompTIA Security+

Or

Possesses or obtains within 2 years of position placement: Certified Information Systems Security Professional (CISSP)

• AA or Bachelor's degree in related field
• Experience using the following technologies:
• Endpoint Detection and Response tools such as Carbon Black, McAfee, Symantec
• Data Logging and Analytics tools such as Splunk
• Threat and Vulnerability detection tools such as Tenable
• In-depth knowledge of operating systems and security applications.
• Working knowledge of basic network protocols and tools.
• Critical thinking skills to evaluate alternative and present solutions that are consistent with business objectives and strategy.
• Proven leadership abilities including effective knowledge sharing, conflict resolution, facilitation of open discussions, fairness and displaying appropriate levels of assertiveness.
• Related technology or cyber security specialist certifications