The Information Security Analyst II, Workday is responsible for configuring, maintaining, and advising on security within the Workday application. This includes managing domain security policies, roles, and role assignments. The analyst will coordinate with vendors, ensure compliance with divisional and data security policies, and participate in report reviews to maintain security and data privacy standards.
The Information Security Analyst II supports the InfoSec mission of securing the patient experience. This position executes tasks associated with analysis and remediation of information security risks that could lead to compromise of Children's National systems. Individuals in this position will execute tasks including the cataloging of risks, identification and remediation of vulnerabilities, securing of data, and establishment of policies and standards.
Minimum Education
Bachelor's Degree Bachelor's degree in a computer science, math, engineering, or another relevant discipline or equivalent training and work experience (Required)
Minimum Work Experience
3+ years of experience in cybersecurity with a focus on vulnerability management, cybersecurity operations, analysis, forensics and/or investigations (Required)
Required Skills/Knowledge
Some demonstrated ability to apply key cybersecurity practices, controls, and frameworks
Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related concepts to technical as well as nontechnical audiences
Understanding and some application of practices associated with cybersecurity auditing, compliance, and policy
Understanding of and some application of key practices associated with risk assessment, vulnerability management, penetration testing, and threat identification.
Understanding and some application of controls and practices associated with access management, active directory, privileged account management, and authentication
Understanding and some application of key practices associated with incident response, risk remediation, business continuity, disaster recovery, and cyber operations.
Functional Accountabilities
Cyber Analysis
Organizational Accountabilities
Organizational Commitment/IdentificationΒ
Teamwork/Communication
Performance Improvement/Problem-solving
Cost Management/Financial Responsibility
Safety