What are the responsibilities and job description for the Cyber Security Analyst position at Millennium Physician Group?
Cyber Security Analyst
Millennium Physician Group
Fort Myers, FL.
This position is responsible for establishing and maintaining a corporate-wide Health Care Cyber Security management program to ensure that information assets are adequately protected. Responsibilities: Develop, implement, and monitor a strategic, comprehensive Health Care enterprise information security and cyber security risk management program. The Cyber Security Analyst will possess a high level of technical ability within Health Care Information Systems. Additionally, the Cyber Security Analyst will work to ensure proper Security goals are aligned with organizational goals. This position requires a very strong technical understanding of Data Security within the Health Care sector and how to properly use advanced Software and Hardware to protect all stakeholders. This position will also ensure that all security tools work in conjunction with one another, creating a multi layered security platform.
Essential Duties and Responsibilities include the following. Other duties may be assigned.
- Resolve varied levels of issues regarding information & cyber systems security
- Will be responsible for performing and supporting security incident triage on all incidents to determine scope, urgency, and potential operational impact.
- Performs forensic activities and reporting related to security incidents.
- Leads evaluation of cyber systems involving software, hardware, configuration, and proposed changes to ensure cyber security posture is following existing security policies and regulations.
- Perform weekly audits of accredited computer systems to ensure that technical security controls are operating properly and that all security procedures are being followed correctly. Audits will include detailed review of both automated event logs and manual log entries to discover potential security problems
- Performs and analyzes monthly network vulnerability scans
- Performs user level and role-based audits to ensure appropriate access levels
- Monitor security traffic alerts for suspicious activity
- Monitors cyber and physical access to IT assets.
- Perform research to assist in determining if a procedural violation or a security compromise has occurred
- System administration, supporting multiple cyber security platforms and applications
- Develops and monitors security metrics aligned to goal achievement
- Participates in preparation and facilitating enterprise Change Management Activities
- Responsible for developing and on-going maintenance of information & Cyber security awareness program
- Actively monitors emerging threats with respect to TIS applications and systems
- Configure and support security tools, such as firewalls, anti-virus software, and patch management systems
Knowledge and Expertise:
- Professional Health Care security management certification
- Minimum of 4 years of experience in a combination of risk management, Health Care Information & Cyber security roles
- Knowledge of common cyber security management frameworks (CSF's), such as Hitrust, ISO/IEC 27001, and NIST.
- Knowledge of LANs, WANs, SANs, Microsoft Active Directory, Microsoft Windows server and desktop operating systems, Linux operating systems, Microsoft IIS, and Microsoft SQL
- Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
- Experience with contract and vendor negotiations and management, including managed services.
- Specific experience in Agile (scaled) cyber security software/hardware (MFA, SSO) or other best in class development practices.
- Experience with Cloud computing/Elastic computing across virtualized environments.
- Knowledge of risk assessment tools, technologies, and methods
- Relevant security knowledge and experience in Malware analysis, threat response, and security operations
- Expertise in anti-virus software, intrusion detection, firewalls, and content filtering (SonicWall preferred)
- Expertise in designing secure networks, systems, and application architectures
- Knowledge of Disaster recovery, computer forensic tools, technologies, and methods
- Knowledge of total network vulnerability scanning as well as deep penetration testing. (Nessus preferred)
- Knowledge of complete network architecture from beginning to end, with a strong emphasis on Health Care Information/cyber security.
- Knowledge of advanced spam filtering and encryption techniques
Education and/or Experience
Formal education:
- Bachelor's degree in a related field or equivalent experience required.
Work Experience:
- 4 years in Healthcare IT required
- 4 years in IT or cyber security and/or risk management required (health care preferred)
Industry Certifications:
- CISSP, CompTIA Security , HIPPA Cert or similar certification required.
Technical Subject Matter Expertise
- A comprehensive understanding of standard IT infrastructure and administration practice
- An in depth understanding of common IT and Healthcare cyber security risks and mitigation strategies
- The ability to identify and quantify IT related risks and common mitigation strategies
Governance and Compliance Awareness
- Detailed understanding of HIPAA, HITECH, HITRUST, ACA, PCI, NIST and related regulations
- Working knowledge of what a SOC-2 report is and how it applies to Health IT and Healthcare IT Business Associates
Excellent written and verbal communication skills.
Ability to work independently with limited oversight or, function within a team setting without any decrease in quality of job performance.
Supervisory Responsibilities
This Job does not require supervisory responsibility
This position earns competitive compensation plus a full benefits package including 401(k) with match and 3 weeks of PTO! We also offer opportunities for growth, as well as a great team atmosphere that empowers you to seek better ways to deliver service and take ownership of outcomes in providing quality service and support.
Please review the full job description for more details about this exciting opportunity.
ABOUT MILLENNIUM PHYSICIAN GROUP
Formed in 2008, Millennium Physician Group has grown into one of the largest comprehensive primary care practices with health care providers located throughout Florida. With corporate headquarters in Fort Myers, Florida, Millennium Physician Group consists of primary care offices, Imaging Centers, Lab Services and Wellness Programs. You can also find various programs, such as weight management and smoking cessation, led by Millennium Physician Group doctors.
If you are interested in joining an organization that puts an emphasis on team work and family, then Millennium Physician Group is the right choice.
Millennium's core values summarize how we treat others, patients, and fellow community members. Millennium CARES for every patient, every
Millennium Physician Group is proud to be an Equal Opportunity Employer and a Drug Free Workplace. Additionally, Millennium is proud to join the nearly 3,000 health system and physician groups that have gone completely Tobacco Free.
ARE YOU READY TO JOIN OUR TEAM?
If you feel that have the experience and qualifications for this position, please click the link to apply today. We look forward to meeting you!
Salary : $0