What are the responsibilities and job description for the Sr. Cyber Security Analyst -40 hours Full Time position at Connecticut Children's?
Job Description
Manage and continuously improve a Cyber Security Compliance program. This would include conducting security business and infrastructure compliance reviews, security risk assessments for internal/external information assets. Lead the Incident response and forensics program for Connecticut Children’s Medical Hospital to ensure the confidentiality, integrity and availability of enterprise information resources. Provide recommendations to balance cyber risks and enable the business in a secure manner. Improve the overall security posture to meet the expanding and changing business needs of the organization.
Responsibilities
Education and/or Experience Required:
Required: Certified Information Systems Security Professional (CISSP) within 1 year of hire.
Preferred: CISM, PCI QSA, GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA).
Knowledge, Skills and Abilities:
Knowledge
Connecticut Children’s is the only health system in Connecticut that is 100% dedicated to children. Established on a legacy that spans more than 100 years, Connecticut Children’s offers personalized medical care in more than 30 pediatric specialties across Connecticut and in two other states. Our transformational growth establishes us as a destination for specialized medicine and enables us to reach more children in locations that are closer to home. Our breakthrough research, superior education and training, innovative community partnerships, and commitment to diversity, equity and inclusion provide a welcoming and inspiring environment for our patients, families and team members.
At Connecticut Children’s, treating children isn’t just our job – it’s our passion. As a leading children’s health system experiencing steady growth, we’re excited to expand our team with exceptional team members who share our vision of transforming children’s health and well-being as one team.
Manage and continuously improve a Cyber Security Compliance program. This would include conducting security business and infrastructure compliance reviews, security risk assessments for internal/external information assets. Lead the Incident response and forensics program for Connecticut Children’s Medical Hospital to ensure the confidentiality, integrity and availability of enterprise information resources. Provide recommendations to balance cyber risks and enable the business in a secure manner. Improve the overall security posture to meet the expanding and changing business needs of the organization.
Responsibilities
- Experienced in performing security audits, risk analysis, forensics and penetration testing. Actively monitor systems and networks for potential intrusions. Lead, conduct and maintain security risk assessments, identify security vulnerabilities, develop recommendations, document findings and remediation plans. Manage remediation plans toward closure. Define security standards & incident response plans to detect, respond and recover from security incidents using a risk based methodology.
- Develop and document security policies and procedures, training and awareness. Serve as a security expert reviewing and recommending security controls for network, application designs, operating systems, endpoint protection, mobile device implementations of new/updated applications and services.
- Ensure business and technical requirements are aligned to security policies and are implemented within regulatory and corporate compliance. Maintain current knowledge of tools and best-practices in advanced persistent threats; tools, techniques, and procedures of attackers; related to forensics and incident response.
Education and/or Experience Required:
- Education Required: Bachelor’s degree in Information Systems or equivalent
- Experience Required: Minimum of six (6) years of enterprise security related work experience. Minimum of four (4) years incident response/forensics experience. Previous 24 x 7 operations experience
Required: Certified Information Systems Security Professional (CISSP) within 1 year of hire.
Preferred: CISM, PCI QSA, GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA).
Knowledge, Skills and Abilities:
Knowledge
- Experience and proficiency with: Anti-Virus, HIPS, IDS/IPS, Network Captures, Host-Based & Network Forensics.
- Knowledge of Linux, UNIX, Windows OS, Active Directory and other operating systems.
- Knowledge of database platforms such as MS SQL, Oracle, and MySQL.
- Experience with a scripting language (e.g. Powershell, Python)
- Excellent written communication and presentation skills with the ability to present complex security issues to a variety of audiences, including senior executives
- Must be self-directed, able to manage individual projects or act as part of a larger team
Connecticut Children’s is the only health system in Connecticut that is 100% dedicated to children. Established on a legacy that spans more than 100 years, Connecticut Children’s offers personalized medical care in more than 30 pediatric specialties across Connecticut and in two other states. Our transformational growth establishes us as a destination for specialized medicine and enables us to reach more children in locations that are closer to home. Our breakthrough research, superior education and training, innovative community partnerships, and commitment to diversity, equity and inclusion provide a welcoming and inspiring environment for our patients, families and team members.
At Connecticut Children’s, treating children isn’t just our job – it’s our passion. As a leading children’s health system experiencing steady growth, we’re excited to expand our team with exceptional team members who share our vision of transforming children’s health and well-being as one team.