PRIMARY FUNCTION:

The Cyber Security Analyst is responsible for maintaining the integrity and security of enterprise-wide systems, network and applications at Jefferson. Supports cyber security initiatives through predictive and reactive analysis, articulating emerging trends to leadership and staff. Be an active player during enterprise incident response efforts, driving incidents to timely and complete resolution. Reviews threat data from various sources and develops detection and response capabilities, correlates actionable security events into Security Event and Incident Management platform. Utilizes understanding of attack signatures, tactics, techniques and procedures associated with advanced cyber security threats. Develops analytical products and process fusing enterprise and all-source intelligence.

ESSENTIAL FUNCTIONS:

• Develop and carry out information security policies and standards
• Develop or implement cyber security tool set to assist in detection, prevention and analysis of security threats.
• Develops security strategies to respond to and recover from a security breach with strong understanding of Security Operation Center (SOC) operations both on premise and managed.
• Awareness training of the workforce on cyber security standards, polices and best practices
• Experience using Windows / Unix / Linux / iOS systems in server and workstation environments. Strong understanding of hardware / software and cloud environments.
• Expert in analyzing and investigating network and system intrusions, malware attacks and recommend / implement prevention methods.
• Experience with Data Loss Prevention (DLP) systems, implementation and process in on premise and cloud environment.
• Experience in cyber security incident response and breach investigations including forensic investigations.
• Take ownership of multiple security products thru lifecycle e.g. DLP, Vulnerability Management, SIEM etc.,
• Must be able to co-ordinate project management and drive adoption of new capabilities.
• Must mentor junior members in the team for success of their individual ownership
• Must demonstrate 5 years of successful security project amp; product delivery.
• Reviews IT systems and business processes to identify information security risks and regulatory non-compliance, and guide remedy of issues noted.
• Designs and delivers training on various Cyber Security initiatives.
• Maintains familiarity with HIPAA / PCI-DSS and other Information Security regulations.

Interacts with co-workers, visitors, and other staff consistent with the iSCORE values of Jefferson.

OTHER FUNCTIONS AND COMPETENCIES:

• Active team player in cyber security projects at Jefferson.
• Conducts various cyber security assessment including risk assessments, DLP assessments, Vulnerability assessment and remediation and reporting
• Generates information security metrics by collecting and reporting on data from various systems and methods.
• Supports other information security operations as required

Bachelorrsquo;s degree in an information technology field preferred

At least one information security certification, such as a SSCP, GSEC, or professional certificate required. CISSP or CISM preferred

_________________________________________________________________________

At least five years of experience in an information security function, ability to multi-task, a keen eye for detail, strong organizational skills, the ability to thrive in fast-paced, high-stress situations, ability to communicate cyber security issues to peers and management.

3 years solid understanding of Cyber Security amp; IT controls, network / systems / application penetration testing and vulnerability assessments. Experience with NIST and ISO frameworks. Solid knowledge of HIPAA, HITECH, and other IT security governing bodies.

Jefferson includes Thomas Jefferson University and Jefferson Health, a dynamic university and health system with broad reach across the Delaware Valley. Jefferson is the second largest employer in Philadelphia and the largest health system in Philadelphia based on total licensed beds.

Through the merger of Thomas Jefferson University and Philadelphia University in 2017, our University includes ten colleges and four schools. We are an NCAA Division II university and an R2 national doctoral university offering undergraduate and graduate-level programs that provide students with a forward-thinking education in architecture, business, design, engineering, fashion and textiles, health, medicine and social science.

Jefferson Health, the clinical arm of Thomas Jefferson University, has grown from a three-hospital academic health center in 2015, to an 18-hospital health system through mergers and combinations that include hospitals at Abington Health, Aria Health, Kennedy Health, Magee Rehabilitation and Einstein Healthcare Network. We have over 50 outpatient and urgent care centers; ten Magnetreg;-designated hospitals (recognized by the ANCC for nursing excellence); the NCI-designated Sidney Kimmel Cancer Center (one of only 70 in the country and one of only two in the region); and one of the largest faculty-based telehealth networks in the country. In 2021, Jefferson Health became the sole owner of HealthPartners Plan, a not-for-profit health maintenance organization in Southeastern Pennsylvania. We are the first health system regionally to create an aligned payer-provider partnership.

Jeffersonrsquo;s mission, vision and values create an organization that attracts the best and the brightest students, faculty, staff, and healthcare professionals, as well as the most visionary leaders to drive exceptional results.

• OUR MISSION: We improve lives.
• OUR VISION: Reimagining health, education and discovery to create unparalleled value
• OUR VALUES: Put People First, Be Bold amp; Think Differently and Do the Right Thing

As an employer, Jeffersonmaintains a commitment to provide equal access to employment. Jefferson values diversity and encourages applications from women, members of minority groups, LGBTQ individuals, disabled individuals, and veterans.