Logo
American Hospital Association

Analyst, Cybersecurity

American Hospital Association, Chicago, Illinois, United States, 60290


The American Hospital Association (AHA) is a national organization that represents and serves all types of hospitals, health care networks, and their patients and communities. The AHA has two main offices, located in Washington, D.C. and Chicago. We are currently seeking an Analyst, Cybersecurity for our Chicago office. This position is a hybrid role (three days in the office, two days working remote).

Starting base salary = $87,000- $109,000- $131,000 (commensurate with related experience). The AHA is committed to fair and equitable compensation practices. A candidate's salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications, and location.

The Analyst, Cybersecurity is responsible for safeguarding AHA's digital assets and ensuring the confidentiality, integrity, and availability of sensitive information.Responsibilities include implementing and managing cybersecurity solutions that include cloud and email security; single sign-on (SSO) access; firewall and intrusion detection systems, and remote access security. Additionally, this position supports the cybersecurity team's incident response activities and coordinates security awareness training.

Essential Functions include, but are not limited to:

Cloud Security - Implement, configure, and manage Microsoft Defender for Teams, SharePoint, and OneDrive. Conduct regular assessments and optimizations of Defender security policies to enhance threat detection and response capabilities. Stay abreast of Microsoft roadmap for this security suite to ensure best practices and latest security offerings are employed.Assist with assessments of AWS and Azure security reviews.Email Security - Implement and maintain email security measures, Defender for Exchange policies, to mitigate email-borne threats and unauthorized access. Regularly review and update email security configurations to adapt to emerging threats and compliance requirements.Network Security - Analyze firewall configurations to ensure they align with security policies and best practices. Assess rules for efficacy and coherence to ensure optimal traffic flow while mitigating potential risks. Additionally, manage intrusion detection systems rule and policy configurations, fine-tuning intrusion detection systems to detect and respond effectively to emerging threats.Security Education - Administer the security awareness training platform to deliver annual employee training sessions, targeted training modules, and ongoing phishing campaigns. Develop metrics to measure and trend user adoption of safe cyber practices.Identity & Access Management - Administer and maintain AHA SSO solution to streamline user authentication processes while enforcing strong access controls and identity management policies. Configure and monitor SSO integrations for enterprise applications to ensure secure access and authentication.Security Incident Response - Act as primary for monitoring the cybersecurity inbox and SOC assigned investigations for suspicious activity and/or indicators of compromise. Respond promptly to investigations for potential security breaches.Implement corrective actions to mitigate risks and prevent future incidents.Function as part of the IT Incident Response Team. Manage and/or resolve incident cases generated by the security operations center (SOC) vendor.Network Assessments - Support penetration and vulnerability assessments by defining scopes, tracking remediations, and assisting in remediations.Security Documentation - Develop and maintain visual representation of firewall and IDS architecture including placement within the network, sensor configurations, and correlation strategies for effective management of these security devices.The American Hospital Association (AHA) is an Equal Opportunity Employer.We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, and other legally protected characteristics. We will provide reasonable accommodation for individuals protected by Section 503 of the Rehabilitation Act of 1973, the Vietnam Era Veterans' Readjustment Assistance Act of 1974 and Title I of the Americans with Disabilities Act of 1990. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the employment process, please call (312) 422-3000 and ask for the Vice President, Human Resources or email hr@aha.org and let us know the nature of your request and your contact information.

We value the commitment and creativity that our diverse team members contribute to the AHA's mission to advance equitable care and health improvement for all. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our members and the communities they serve.

Individuals from all backgrounds, such as veterans, people with disabilities, differing gender identities and sexual orientations, national origin, spiritual beliefs, and race are encouraged to apply.

We offer a competitive total rewards package including:

Medical/Dental/ Vision coverage (LGBTQIA+ inclusive)Short & Long term disabilityLife Insurance401(k)Vacation, Personal, Health & Volunteer Time Off days11 Paid holidaysPhysical and mental wellness programsPaid parental leave, including adoptionHybrid work environment (3 days in the office, two days from home)Opportunity to join our Diversity Equity and Inclusion Council & Employee Resource Groups to help us continue to build a diverse, inclusive and equitable workplace cultureOpportunity to join AHA Cares and give back to the communityOpportunity to join the Employee Activities Committee and help plan events that bring colleagues together to connectA variety of professional development and mentorship opportunitiesTuition ReimbursementAccess to AHA LearningWork with colleagues who are passionate in our mission

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)