PacificSource Health Plans

  • Information Security Analyst

    Job Location US-OR-Springfield
    Job ID
    2018-196
    Type
    Regular Full-Time
    Hiring Pay Range
    $68,000-$88,000
    # of Openings
    1
    Status
    Exempt
  • Overview

    Positon will report to the Information Security Manager.  Primary responsibilities will be focused on information security operations and management of the technical vulnerability management program.  As part of these duties, the position will be expected to lead and coordinate the technical vulnerability management program and be point in security operations activities.  

     

    The position will maintain and operate key associated and assigned security technologies.

     

    The incumbent will be required to maintain up-to-date security operations and industry best practices awareness and be able to understand how emerging threats may potentially impact the organization. The role also requires active and ongoing collaboration with other departments acting in a consultative capacity promoting information security awareness and compliance to corporate policies.  The position will be a trusted advisor to the business and is expected to recommendations to strengthen the security posture of our environment.

     

    Responsibilities

     

    1. Analyzes data from threat and vulnerability sources and analyzes data for applicability to the organization
    2. Collects and aggregates information from a wide variety of sources and formats them for relevance to our environment
    3. Actively uncovers Indicators of Compromise (IoC) by reading and interpreting logs and packet traces.
    4. Carry out triage on security events, raise incidents and support the Incident Management process.
    5. Maintains and enhances the documentation standard of the Information Security Program
    6. Performs analysis of security and compensating controls, and validates efficacy of existing controls.
    7. Recommends security controls and/or corrective actions for mitigating technical and business risk.
    8. Improve and challenge existing processes and procedures in a very agile and fast moving information security environment.
    9. Create and maintain SIEM correlation rules, signature creation for supported NIDS/NIPS, HIDS/ HIPS and Endpoint Protection products.
    10. Remain up to date with current attack methods and characteristics in order to identify threats and advise on prevention, mitigation and remediation.
    11. Assist in design, implement and maintain technical security programs including Threat and Vulnerability Management (TVM), Security Event Monitoring and Response program
    12. Researches emerging threats and vulnerabilities to aid in the identification of network incidents
    13. Plans, develops, and executes vulnerability scans of organization information systems
    14. Represent Information Security or act as technical lead on assigned Information Security projects.

     

    Supporting Responsibilities:

    1. Meet department and company performance and attendance expectations.
    2. Follow the PacificSource privacy policy and HIPAA laws and regulations concerning confidentiality and security of protected health information.
    3. Perform other duties as assigned.

     

    Qualifications

    Work Experience:  A minimum of 3 years in an information technology role with direct responsibilities in security operations.   Experience in leading and the administration of technical vulnerability management or security operations preferred.       

     

    Prior experience in information security operations.  Experience or familiarity with content monitoring and user activity monitoring solutions.  Experience and expertise with Security Information and Event Management (SIEM) solutions, technical vulnerability scanning tools, endpoint protection controls, threat environments, and secure system configuration.  Experience or familiarity with User Behavior Analytics (UBA) solutions a plus. 

     

    Information security experience with HIPAA, HITECH, NIST, HITRUST, and PCI DSS are a plus.

     

    Project management experience and strong organizational skills are a plus.

     

    Education, Certificates, Licenses: Bachelor’s degree or equivalent experience. 

     

    Preference given to candidates with one or more relevant IT Security certifications/accreditations (e.g.  CISSP, CISA, CISM, GIAC, C|EH, CASP, etc.,)

     

    Knowledge: Demonstrable subject matter expertise in Security Operations, Security Information and Event Management (SIEM) technologies. Strong information security knowledge to include best practices, Advanced Persistent Threats (ATP) and the current threat landscape.  Strong system administration on Windows, UNIX or Linux is preferred.

     

    Working knowledge of application and implementation of HIPAA/HITECH controls is a plus.

     

    Proficient in network architecture and technologies.

     

     

    Competencies

    Our Values

    • Adaptability
    • Building Customer Loyalty
    •  Building Strategic Work Relationships
    •  Building Trust
    • Continuous Improvement
    • Contributing to Team Success
    • Planning and Organizing
    • Work Standards

     

     

    • We are committed to doing the right thing.
    • We are one team working toward a common goal.
    • We are each responsible for our customers’ experience.
    • We practice open communication at all levels of the company to foster individual, team and company growth.
    • We actively participate in efforts to improve our communities-internal and external.
    • We encourage creativity, innovation, continuous improvement, and the pursuit of excellence.

     

     

     

    Environment: Work inside in a general office setting with ergonomically configured equipment. Position may require travel, which is not expected to exceed 5% of the time.

     

    Physical Requirements: Stoop and bend. Sit and/or stand for extended periods of time while performing core job functions.  Repetitive motions to include typing, sorting and filing. Light lifting and carrying of files and business materials. Ability to read and comprehend both written and spoken English. Communicate clearly and effectively.

     

    Disclaimer: This job description indicates the general nature and level of work performed by employees within this position and is subject to change. It is not designed to contain or be interpreted as a comprehensive list of all duties, responsibilities, and qualifications required of employees assigned to this position. Employment remains AT-WILL at all times.

     

    PacificSource is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to status as a protected veteran or a qualified individual with a disability, or other protected status, such as race, religion, color, national origin, sex, sexual orientation, gender identity or age.

     

     

     

     

    Apply

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed