Responsibilities

One of the nation’s largest and most respected providers of hospital and healthcare services, Universal Health Services, Inc. has built an impressive record of achievement and performance. Growing steadily since its inception into an esteemed Fortune 500 corporation, annual revenues were $11.6 billion in 2020. In 2021, UHS was again recognized as one of the World’s Most Admired Companies by Fortune; in 2020, ranked #281 on the Fortune 500; and listed #330 in Forbes ranking of U.S.’ Largest Public Companies. Headquartered in King of Prussia, PA, UHS has 89,000 employees and through its subsidiaries operates 26 acute care hospitals, 334 behavioral health facilities, 39 outpatient facilities and ambulatory care access points, an insurance offering, a physician network and various related services located in 38 U.S. states, Washington, D.C., Puerto Rico and the United Kingdom.

http://www.uhsinc.com.

The Corporate Information Services Department is seeking a dynamic and talented Information Security Analyst II.

As part of a team of analysts, the Information Security Analyst II identifies, implements, maintains, and supports technologies designed to protect the confidentiality, integrity or availability of UHS and affiliates information systems. Works with technical and non-technical staff to ensure that deployed technologies are effectively and efficiently providing the intended controls consistent with established policies and procedures. Trains and supports technical staff in UHS affiliated locations, where appropriate, to deploy, manage and support selected technologies. Oversees the technical aspects of tasks assigned to less experienced staff or contractors on projects, systems or applications assigned. Adheres to UHS standards of service excellence, professionalism, and integrity while performing duties.

Key Responsibilities include:

• Implements and maintains selected information security technologies within guidelines of policies, accepted best practices, and in keeping with good project management principles.
• Periodically reviews deployed security technologies to ensure that the solutions continue to provide the intended protections efficiently and effectively.
• Identifies gaps in protection and recommends solutions to remediate or mitigate the risks associated with the protection gaps.
• Works with staff at all levels in the organization, vendors and contractors to ensure protections are effective, efficient and non-disruptive to the appropriate duties, rights and mission of the individuals and the organization(s).
• Acts as the subject matter expert (SME) for at least one technology or process, and provides technical support and guidance to other team members. May oversee efforts of junior staff who assist with the assigned technology or process.
• Monitors the resolution of maintenance or enhancement issues assigned by the UHS Customer Support Center.

Qualifications

Position Requirements:

• Bachelor’s degree in Information Systems Security and Risk Management, Computer Science, or related field required.
• Minimum 3-5 years’ experience with desktop, server and/or network security administration in a mixed computing environment.
• Experience configuring, managing and supporting some or all of the following or similar information security technologies or processes:
  • Anti-malware protections and analysis
  • Web filtering and security
  • Vulnerability scanning and management
  • Encryption technologies for data at rest and data in transit
  • Mobile device and removable media protection or management systems
  • Authentication – including various forms of SSO and MFA
  • Cloud application security
  • Security Information and Event Management (SIEM) systems
  • Interpreting Common Vulnerabilities and Exposures (CVE ) data
  • Device control
  • Data Loss Prevention (DLP)
  • Forensic analysis
• Familiarity with risk assessment and risk management concepts or processes.
• Working knowledge of various regulatory security requirements – particularly Sarbanes-Oxley (SOX), HIPAA, and HITECH.
• Working knowledge of common cyber security frameworks such as HITRUST, NIST, CSC20, or others.
• Working knowledge of scripting languages such as Python, PowerShell, and VB is a plus.
• Ability to prioritize multiple tasks and be detail oriented.
• An information security certification is a plus -- to demonstrate proficiency and knowledge of information security best practices and concepts.
• Excellent communication, interpersonal and project management skills
• Travel to field locations may be necessary to complete assigned projects

This opportunity provides the following:

• Challenging and rewarding work environment
• Growth and development opportunities within UHS and its subsidiaries
• Competitive Compensation
• Excellent Medical, Dental, Vision and Prescription Drug Plan
• 401k plan with company match
• Generous Paid Time Off

*UHS is a registered trademark of UHS of Delaware, Inc., the management company for Universal Health Services, Inc. and a wholly-owned subsidiary of Universal Health Services, Inc. Universal Health Services, Inc. is a holding company and operates through its subsidiaries including its management company, UHS of Delaware, Inc. All healthcare and management operations are conducted by subsidiaries of Universal Health Services, Inc. To the extent any reference to "UHS or UHS facilities" on this website including any statements, articles or other publications contained herein relates to our healthcare or management operations it is referring to Universal Health Services' subsidiaries including UHS of Delaware. Further, the terms "we," "us," "our" or "the company" in such context similarly refer to the operations of Universal Health Services' subsidiaries including UHS of Delaware. Any employment referenced in this website is not with Universal Health Services, Inc. but solely with one of its subsidiaries including but not limited to UHS of Delaware, Inc.

UHS is not accepting unsolicited assistance from search firms for this employment opportunity. Please, no phone calls or emails. All resumes submitted by search firms to any employee at UHS via-email, the Internet or in any form and/or method without a valid written search agreement in place for this position will be deemed the sole property of UHS. No fee will be paid in the event the candidate is hired by UHS as a result of the referral or through other means.

EEO Statement

All UHS subsidiaries are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates. UHS subsidiaries are equal opportunity employers and as such, openly support and fully commit to recruitment, selection, placement, promotion and compensation of individuals without regard to race, color, religion, age, sex (including pregnancy, gender identity, and sexual orientation), genetic information, national origin, disability status, protected veteran status or any other characteristic protected by federal, state or local laws.

We believe that diversity and inclusion among our teammates is critical to our success.

Notice

At UHS and all our subsidiaries, our Human Resources departments and recruiters are here to help prospective candidates by matching skillset and experience with the best possible career path at UHS and our subsidiaries. We take pride in creating a highly efficient and best in class candidate experience. During the recruitment process, no recruiter or employee will request financial or personal information (Social Security Number, credit card or bank information, etc.) from you via email. The recruiters will not email you from a public webmail client like Hotmail, Gmail, Yahoo Mail, etc. If you are suspicious of a job posting or job-related email mentioning UHS or its subsidiaries, let us know by contacting us at: https://uhs.alertline.com or 1-800-852-3449.