Schedule: Monday - Friday 9 am - 5:30 pm
Pay Range: $38.26 - $55.41 Depending on Experience
The Information Security Analyst II is an information security professional that leads comprehensive collaboration, design, development, and implementation of enterprise information security architectures, solutions, and policies.\
Essential Job Functions:
- Serves as an information security expert, helping project teams comply with enterprise and IT security policies, regulations, and recommend strategic solutions.
- Acts as a trusted advisor to clients/staff about information security.
- Oversees the work of more junior information security analysts.
- Researches, evaluates, and advocates for new technologies, architectures, products, policies, processes or procedures that will support security requirements for the business, business partners, and vendors.
- Recommends mitigation steps to reduce business impact of emerging information security threats and vulnerabilities.
- Authors and performs security reviews and identifies gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
- Analyzes organization's cyber defense policies and configurations and evaluate compliance with regulations and organizational directives.
- Develops and conducts authorized penetration testing on enterprise network assets.
- Performs technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications).
- Plans and recommends modifications or adjustments to security defense strategies or employed hardware and software technologies based on exercise results or system environment.
- Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information. Remediates as necessary.
- Conducts research, analysis, and correlation across a wide variety of all source data sets (indications and warnings). Documents and proposes remediation strategies where needed.
- Provides cybersecurity recommendations based on significant threats and vulnerabilities.
- Provides advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
- Ensures accurate and timely reporting; prepares specialized and ad hoc information security reports.
- Contributes to team effort; and complies with all facility policies and procedures including but not limited to those addressing HIPAA and Compliance.
- May be required to receive advanced training and obtain related certifications.
-
Maintains a clean, safe, and hygienic work environment in compliance with all Policies and Procedures including but not limited to work areas, workstations, examination rooms, hand washing, infection prevention and control etc. for this position
-
Demonstrates an understanding of and proficiency with the application of all compliance and reporting requirements respective to Joint Commission Certification (JCC) standards.
Minimum Education and Experience:
- Bachelor’s degree in Information Technology, Business, Computer Science, Finance or a related field from an accredited college or university or;
- Eight (8) years’ of relevant work experience.
If applicable, equivalent combination of education and experience may be considered, and must be directly related to the functions and responsibilities of the job.
Required Licenses, Certifications, and Registrations:
- Employees in this position are required to have reliable transportation that can meet any operational reassignments of the organization during the workday. If an employee is driving during work hours, the employee is required to possess a valid driver’s license and must comply with Arizona vehicle insurance requirements.
-
CompTIA Security+ (required) and Cybersecurity Analyst (CySA+) certifications, or comparable industry certifications within one (1) year of hire.
This position requires certification(s) within one (1) year of hire. Any extensions due to scheduling conflict/limitation that prevents the individual from meeting this requirement requires prior approval from IT Management.
Preferred Education, Experience, Skills, Abilities:
- Bachelor’s Degree in Information Technology, Information Security or related field from an accredited college or university
- Security certification(s), e.g., CISA, CISM, GIAC
-
Bilingual (English/Spanish) with the ability to speak, read and write in both languages
El Rio Health is a diverse and inclusive organization. We are invested in helping you and your family Create Tomorrow.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
El Rio Health does not discriminate on the basis of race, color, religion, national origin, sex, sexual orientation, gender identity or expression, age 40 and over, disability, genetic information, military status, ancestry, marital status, familial status, or any other status protected by law or regulation. It is our intention that all qualified applicants be given equal opportunity and that selection decisions are based on job-related factors.
El Rio Health requires all employees (except those 100% working remotely) to have a Level One Fingerprint Clearance card. A.R.S. 36.425.03. If the prospective employee does not possess this prior to hire, fingerprint application must be completed within 7 days post hire.
All employees are strongly recommended to obtain COVID 19 and maintain vaccination status (i.e. as recommended by CDC and/or other public health agencies) to include an Influenza vaccination. Personnel who decline to receive COVID 19 and/or flu vaccination per most recent CDC recommendations will be recommended to wear a facemask while in an El Rio Health facility, including both clinical and non-clinical areas from November 1 to April 30 (subject to change depending on viral activity). Subject to exemptions and accommodations when required by law.
All employees are required to undergo drug testing prior to employment and, will be subject to post-accident, reasonable suspicion, return to duty and follow up drug and alcohol testing in compliance with Federal and State regulations for alcohol and controlled substance testing. Employees in positions holding responsibility for the safety and welfare of others will also be classified as safety sensitive.
El Rio Health is a non-profit 501(c)(3) Federally Qualified Health Center (FQHC) and abides by all applicable federal Drug-Free Workplace standards. El Rio Health is an equal opportunity employer.