JPS Health
Sr. Information Security Analyst
JPS Health, Fort Worth, Texas, United States, 76102
Who We AreJPS Health Network is a $950 million, tax-supported healthcare system in North Texas. Licensed for 582 beds, the network features over 25 locations across Tarrant County, with John Peter Smith Hospital a Level I Trauma Center, Tarrant County's only psychiatric emergency center, and the largest hospital-based family medical residency program in the nation. The health network employs more than 7,200 people.Acclaim Multispecialty Group is the medical practice group featuring over 300 providers serving JPS Health Network. Specialties range from primary care to general surgery and trauma. The Acclaim MultispecialtyGroup formed around a common set of incentives and expectations supporting the operational, financial, and clinical performanceoutcomes of the network. Our goal is to provide high quality, compassionate clinical care for every patient, every time.Why JPS? We're more than a hospital. We're 7,200 of the most dedicated people you could ever meet. Our goal is to make sure the people of our community get the care they need and deserve. As community stewards, we abide by three Rules of the Road:1.
Own it. Everyone who wears the JPS badge contributes to our journey to excellence.2.
Seek joy. Every day, every shift, we celebrate our patients, smile, and emphasize positivity.3.
Don't be a jerk. Everyone is treated with courtesy and respect. Smiling, laughter, compassion - key components of our everyday experience at JPS.When working here, you're surrounded by passion, diversity, and dedication. We look forward to meeting you!For more information, visit www.jpshealthnet.org.To view all job vacancies, visitwww.jpshealthnet.org, www.jpshealthnet.org/careers,or www.teamacclaim.org.
Job Description:
Job Summary:
Under direction from the Chief Information Security Officer and Manager - Information Security Operations, the Senior Information Security Analyst assists with the planning, implementation, and maintenance of the Districts information security program including security administration, security operations, risk management, education, policy/procedure development, and other required duties.Essential Job Functions & Accountabilities:Controls the addition and modification of user identifiers, user credentials, or other object identifiers. Perform access reviews of network and application user accounts.Performs tests on backup media for information integrity, as necessary.Coordinates cybersecurity incident response activities with interested personnel and affected parties. Responds to triage alerts from security systems in a timely manner. Periodically test the cybersecurity incident response plan and related procedures.Compiles event logs from Security Incident Event Manager (SIEM) and other components into a system-wide, time-correlated audit trail. Establish and maintain logging and monitoring operations. Identify potential cybersecurity events in SIEM and audit logs. Include incident alert thresholds in continuous security alert monitoring procedures. Monitor systems for inappropriate usage and other security violations. Review SIEM event logs, Intrusion Detection System reports, security incident tracking reports, vulnerability scan reports, and other security logs regularly.Establishes and maintains a data security awareness program. Evaluates the effectiveness of end-user information security training via email phishing and other campaigns. Provide end-user information security training via multiple platforms (newsletters, videos, in-person discussion, et. al.). Conduct periodic phishing simulations of the workforce.Develops and monitors key performance indicators (KPIs) to ensure the effectiveness of the information security program. Develops, implements, and maintains information security standards, policies, and procedures in accordance with established information security governance frameworks and regulations (NIST, HIPAA, et. al.).Job description is not an all-inclusive list of duties and may be subject to change with or without notice. Staff are expected to perform other duties as assigned.Must be able to complete all job duties and functions of the role with or without assistive/adaptive devices, and/or reasonable accommodations.Work environments may differ based on job functions and location. Work is subject to schedule changes and/or variable work hours.
Qualifications:
Required
Qualifications:
Bachelors Degree from an accredited college or university.AND
Three (3) years working as a privacy-security compliance specialist, information security specialist, or information technology auditor.OR
Seven (7) years working as a privacy-security compliance specialist, information security specialist, or information technology auditor.
Preferred
Qualifications:
Bachelors Degree in Information Technology, Information Security, or related field(s) of study from an accredited college or university; andTwo (2) years working as a privacy-security compliance specialist, information security specialist, or information technology auditor in a healthcare environment.One (1) year in a senior or team lead role.One (or more) of the following certifications:
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)CompTIA Security+CompTIA Cybersecurity Analyst (CySA+)CompTIA Advanced Security Practitioner (CASP+)SANS GIAC Security Essentials (GSEC)Certified in Risk and Information Security Controls (CRISC)Location Address:1400 S. Main StreetFort Worth, Texas, 76104United States
Own it. Everyone who wears the JPS badge contributes to our journey to excellence.2.
Seek joy. Every day, every shift, we celebrate our patients, smile, and emphasize positivity.3.
Don't be a jerk. Everyone is treated with courtesy and respect. Smiling, laughter, compassion - key components of our everyday experience at JPS.When working here, you're surrounded by passion, diversity, and dedication. We look forward to meeting you!For more information, visit www.jpshealthnet.org.To view all job vacancies, visitwww.jpshealthnet.org, www.jpshealthnet.org/careers,or www.teamacclaim.org.
Job Description:
Job Summary:
Under direction from the Chief Information Security Officer and Manager - Information Security Operations, the Senior Information Security Analyst assists with the planning, implementation, and maintenance of the Districts information security program including security administration, security operations, risk management, education, policy/procedure development, and other required duties.Essential Job Functions & Accountabilities:Controls the addition and modification of user identifiers, user credentials, or other object identifiers. Perform access reviews of network and application user accounts.Performs tests on backup media for information integrity, as necessary.Coordinates cybersecurity incident response activities with interested personnel and affected parties. Responds to triage alerts from security systems in a timely manner. Periodically test the cybersecurity incident response plan and related procedures.Compiles event logs from Security Incident Event Manager (SIEM) and other components into a system-wide, time-correlated audit trail. Establish and maintain logging and monitoring operations. Identify potential cybersecurity events in SIEM and audit logs. Include incident alert thresholds in continuous security alert monitoring procedures. Monitor systems for inappropriate usage and other security violations. Review SIEM event logs, Intrusion Detection System reports, security incident tracking reports, vulnerability scan reports, and other security logs regularly.Establishes and maintains a data security awareness program. Evaluates the effectiveness of end-user information security training via email phishing and other campaigns. Provide end-user information security training via multiple platforms (newsletters, videos, in-person discussion, et. al.). Conduct periodic phishing simulations of the workforce.Develops and monitors key performance indicators (KPIs) to ensure the effectiveness of the information security program. Develops, implements, and maintains information security standards, policies, and procedures in accordance with established information security governance frameworks and regulations (NIST, HIPAA, et. al.).Job description is not an all-inclusive list of duties and may be subject to change with or without notice. Staff are expected to perform other duties as assigned.Must be able to complete all job duties and functions of the role with or without assistive/adaptive devices, and/or reasonable accommodations.Work environments may differ based on job functions and location. Work is subject to schedule changes and/or variable work hours.
Qualifications:
Required
Qualifications:
Bachelors Degree from an accredited college or university.AND
Three (3) years working as a privacy-security compliance specialist, information security specialist, or information technology auditor.OR
Seven (7) years working as a privacy-security compliance specialist, information security specialist, or information technology auditor.
Preferred
Qualifications:
Bachelors Degree in Information Technology, Information Security, or related field(s) of study from an accredited college or university; andTwo (2) years working as a privacy-security compliance specialist, information security specialist, or information technology auditor in a healthcare environment.One (1) year in a senior or team lead role.One (or more) of the following certifications:
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)CompTIA Security+CompTIA Cybersecurity Analyst (CySA+)CompTIA Advanced Security Practitioner (CASP+)SANS GIAC Security Essentials (GSEC)Certified in Risk and Information Security Controls (CRISC)Location Address:1400 S. Main StreetFort Worth, Texas, 76104United States