Senior Security Analyst - Nashville

Healthcare - IT Security
Ref: 315 Date Posted: Thursday 22 Aug 2019
LinkedIn ShareShare
More

Elevation Search Solutions is actively seeking a Senior Security Analyst. Our client is a rapidly growing behavioral telehealth company delivering care primarily to seniors in rural geographies across 26 states. The Senior Security Analyst will report to the Chief Information Officer. This is the top security role for our client and there is  a strong potential for upward mobility.

What you will be doing:

  • Validate security policies and regulatory requirements are met across the business, ensuring protection from domestic or international security threats.
  • Evaluates security controls to ensure effectiveness and compliance with the information security program and regulatory requirements.
  • Manages security control remediation efforts and supports internal and external information security related audits.
  • Collect and document technical architecture, operational processes and security policies from internal engineering teams.
  • Evaluates security controls to ensure effectiveness and compliance with the information security program and regulatory requirements.
  • Audit/collect security control implementation audit logs, penetration testing results, and vulnerability scan results.
  • Work with control owners and operators to ensure quality, consistency and operability of new and existing controls.
  • Support the review of IT tools, control designs, and control remediation planning efforts.
  • Manage multiple concurrent projects with quality and in accordance with a documented schedule that meets or exceeds customer expectations.
  • Provide guidance and assist with identity management and governance frameworks (SSO, AD, etc.)
  • Produce detailed timelines for each assigned project and implement effective project controls by monitoring progress and reporting status.
  • Review pen test findings, facilitate the remediation of control gaps, and escalate possible critical issues to senior management within IT.
  • Foster an innovative and inclusive team-oriented ”culture of security”. Play an active role in seeking development opportunities and be a vocal member of growth strategy.
  • Assist with user administration and authentication management tasks including password resets and multi-factor implementation.
  • Occasional travel (up to 20%) to east and west coast may be required

What you need to have:

  • Experience in writing Technical documentation and solid knowledge of Cloud and Security concepts. Pro-active, strategic approach to problem solving and controls execution.
  • Knowledge of current technological trends and developments in the area HIPAA, HITRUST and and healthcare data security required.
  • Bachelor’s Degree in Information Security, Computer Science, Information Systems or other related field.
  • 5+ years combined I/T and security related work experience, preferably in healthcare.
  • CISSP, HCISSP, CCSFP or other security certifications would be beneficial.
  • Proven experience on establishing relationships and client engagement.
  • Explain technical concepts using non-technical language.
  • Preferred candidates will possess good analytical, technical, problem-solving, and exceptional organizational skills.
  • Basic security concepts such as virus protection, threat management, encryption  of data at rest and in motion is required.
  • Nice-to-have experience:
    • Working knowledge of networking, cloud computing, and security concepts for both.
    • Mobile Device Management/BYOD tools and techniques
    • Data Loss Prevention (DLP) and Security Information and Event Management systems (SIEM)
  • Ability to work in a high growth/fast past startup environment.