Job Summary Are you a strategic thinker with a passion for safeguarding digital landscapes? We’re on the hunt for a talented Information Security Analyst to take the reins in protecting our organization’s computer networks and sensitive information. If you thrive in an environment where you can lead security initiatives, identify and mitigate risks, and collaborate with a team of forward-thinkers, this is your chance to make a real impact!

As our Information Security Analyst, you’ll be at the forefront of defending our digital assets. You’ll craft and implement robust security protocols, champion risk management strategies, and ensure compliance with industry standards and federal regulations. From responding to evolving cyber threats to empowering teams with security awareness, your expertise will be pivotal in building a secure future.

Key Responsibilities: The responsibilities listed are fundamental to the position and must be performed successfully to achieve the key performance objectives of the role. Other responsibilities may be assigned.

• Engage with users to understand workflows, uncover security risks, and recommend actionable solutions.

• Deploy cutting-edge tools and techniques, including data encryption, application patching, and device management.

• Design and enforce plans to safeguard sensitive information against unauthorized access, modification, or breaches.

• Conduct risk assessments, audits, and security testing to maintain operational integrity.

• Lead training efforts to promote a culture of security awareness across the organization.

• Stay ahead of threats by analyzing vulnerabilities and facilitating necessary updates.

• Support state, local, and national collaborations, working closely with peer organizations.

• Assist primary health centers with breach mitigation strategies and security risk assessments.

• Serve as a Security Risk Assessment expert to assist PHCs with training and technical assistance.

• Assist PHCs with Breech Mitigation plans for identified areas of concern on SRA audits.

• Participate in state/local/national collaboratives supporting CHCs, including peer collaboration groups.

• Performs other related duties as assigned.

Job Competencies :

• ConnectWise Timesheets - Consistently submits complete timesheets in accordance with OSIS policy. Timesheets contain sufficient and accurate detail.

• Technical Skills - Maintains current understanding of technical processes/equipment, uses technology to increase performance/productivity.

• Job Knowledge - Understands facets of job, aware of duties and responsibilities, keeps job knowledge current.

• Customer Service - Works well with customers, promotes a positive image of the company, strives to solve issues raised by customers.

• Quality - Strives to eliminate errors, accurate work is a priority, seeks opportunities to improve services.

Work Environment:

This is a full-time position. Days and hours of work are Monday through Friday, 8 hour shifts between 7:00 a.m. to 8:00 p.m. EST. Occasional evening and weekend work will be required as job duties and demand-based projects. Travel is less than 10%.

Required Qualifications:

• Bachelor’s degree in Computer Science, Programming, or a related field required; M.B.A. in Information Systems preferred.

• At least three years of experience in computer systems with some specialization in computer security highly preferred.

• Certifications such as CISSP, CISA, HCISPP, CHC, CHPC, CHSP, CISM, CRP, CRISC or other relevant information security or risk management certifications

Preferred Qualifications:

• 5+ years in implementing technical security controls in a healthcare environment.

• 5+ years of experience in implementing Security Risk Management programs

• 5+ years of experience in translating security-themed regulations and frameworks into risk assessment processes and tools

• 5+ years of experience in developing and assessing technical and process-based controls, managing risk assessments/investigations, and working with organization management to integrate controls into the scope of existing business practices

• 5+ years of experience in working with other security risk management requirements, regulations, or certifications such as PCI, SOX, SOC 1 & 2, ISO, HITECH, etc.

• 3+ years of experience in working with Federal, HIPAA, Meaningful Use/Promoting Interoperability and other healthcare security regulations.

• 1+ year(s) of experience in healthcare

Telecommuting Requirements:

• Cable or Fiber Internet service with minimum speeds of 20 Mbps download and 5 Mbps upload.

You’ll be part of a forward-thinking team dedicated to protecting what matters most. Together, we’ll tackle complex challenges, innovate new solutions, and build a resilient digital future. Ready to lead the charge in cybersecurity? Apply now and help us secure the path forward!