Cyber Security Analyst - IM Security

Position: Cyber Security Analyst I - IM Security
Description

Summary:

The Cyber Security Analyst I is responsible for the review and implementation of IT Governance and Risk and Compliance (GRC) aspects of the business. This role will work closely with business stakeholders and junior Cyber Analysts during contract negotiations and will conduct Vendor Risk Assessments (VRA) and Application Risk Assessments (ARA) using industry NIST/ISO best practices. This role should have a strong understanding of Security Governance frameworks/standards such as HIPAA, PCI/DSS, NIST and ISO.

Additionally, the ability to work with structure policies and procedures along with keeping such documents current is critical. Further, this job requires exceptional customer service skills with the ability to communicate with many internal/external customers at different levels within the organizational hierarchy. The Cyber Security Analyst II is also responsible for supporting the business goals and objectives for the Department, the Information Management Organization, and the organization as a whole.

Responsibilities:
Meets expectations of the applicable OneCHRISTUS

Competencies:

Leader of Self, Leader of Others, or Leader of Leaders. Reviews contracts; identifies and classifies Information Security Risks. Performs Vendor Risk Assessments; works with business stakeholders to classify and mitigate identified security risks. Provides daily support of Business Stakeholders as assigned by the Security Assurance ticketing system and peer reviews of other Cyber Team Members work. Researches and understands emerging information security threats and vulnerabilities.

Performs other risk assessments, such as HIPAA, PCI/DSS, etc., under the guidance of the Director of Information Security. Assists with the selection and implementation of tools which enforce or monitor compliance with information security policies, standards and requirements. Provides after-hours coverage for security event monitoring and incident response. Maintains and demonstrates the ability to work well on assigned tasks through actions and job performance.

Collaborates with and assists IM leaders, directors and staff in the fulfillment of corporate objectives and goals. Follows approved mechanisms to document and report on all incidents/events. Escalates issues appropriately. Assists in the development of the security plan. Requirements:
Education/

Skills:

Associate’s Degree in related field, or equivalent years of experience, preferred

Experience:

0-1 years of IT, Audit/Compliance, Cyber Security, or security assurance experience preferred Licenses, Registrations, or

Certifications:

One or more of the following basic Cyber Security certifications is preferred:

CYSA Security+ Network+ In accordance with the CHRISTUS Health License, Certification and Registration Verification Policy, all Associates are required to obtain the required certifications for their respective positions within the designated time frame.

Work Schedule:

5 Days - 8 Hours Work Type:
Full Time