Cybersecurity Analyst Senior

ISS SOLUTIONS

Who are we and what do we do? 

ISS Solutions is an industry leader in clinical engineering services, providing solutions that help healthcare organizations provide high quality patient care through timely, accurate, and cost-effective delivery of clinical equipment services. Additionally, our services help clients meet regulatory requirements and contribute positively to their bottom line. 

About our Culture

ISS Solutions' culture is what differentiates us from our competition. We look for talented, hardworking, goal-oriented individuals who are eager to learn, grow and who demonstrate a can-do attitude to overcome strategies. 

Benefits

Our benefits package is designed to attract, retain, and motivate high caliber professionals in support of the mission and goals of ISS Solutions. We offer a full array of benefits that add value to your compensation package and protect you and your family. This includes medical/dental insurance, paid holidays, and paid time off, which provide for personal well-being. In addition, we offer a 401K with a generous company match, company paid short and long-term disability, life insurance, and flexible spending accounts that help to contribute to your financial security. 

Position: Cybersecurity Analyst Senior

JOB SUMMARY:

We are seeking a highly skilled Senior Cybersecurity Analyst with deep expertise in healthcare environments and medical device security. This role will report to the VP of Healthcare Technology Management (HTM) and work closely with ISO and IT. The focus is on safeguarding sensitive patient data, ensuring compliance with healthcare regulations, and protecting connected medical technologies from evolving cyber threats. The ideal candidate will combine technical proficiency with a strong understanding of hospital policies, clinical workflows and regulatory requirements. 

MAJOR DUTIES AND RESPONSIBILITIES:

• Develop and implement cybersecurity strategies for medical devices within existing ISO policies.
• Mature the Change Management procedure for medical devices.
• Conduct risk assessments, and analyze available data on clinical systems and IoT medical devices.
• Monitor and respond to security incidents, ensuring timely remediation and root cause analysis.
• Collaborate with clinical engineering, IT, and compliance teams to maintain HIPAA, FDA, and other regulatory standards.
• Evaluate and integrate security controls into device lifecycle management and hospital networks.
• Prepare detailed reports and present findings to leadership and regulatory bodies demonstrating reduction of risk. 

EDUCATION AND/OR EXPERIENCE:

Experience

• Minimum 5 years in cybersecurity, with at least 3 years in healthcare or medical device environments.
• Strong knowledge of HIPAA, NIST Cybersecurity Framework, FDA cybersecurity guidance, and ISO/IEC 80001 standards.

Technical Skills

• Expertise in network security endpoint protection, and vulnerability management.
• Familiarity with medical device connectivity, IoT security, and clinical systems.
• Proficiency in vulnerability platforms (Claroty/Medigate) intelligence platforms, and incident response frameworks.

Preferred Education & Certifications:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field.
• CISSP (Certified Information Systems Security Professional)
• HCISPP (Healthcare Information Security and Privacy Practitioner)
• CompTIA Security or CySA

The specifics statements shown in each section of this description are not intended to be all-inclusive. They represent typical elements considered necessary to successfully perform the job. 

Women and Minorities encouraged to apply.

ISS Solutions no longer hire applicants who use tobacco products, including cigarettes, cigars, and chewing or smokeless tobacco. Applicants will be screened for nicotine as part of the pre-employment process. Nicotine will be part of the urine drug screen. Applicants who test positive for nicotine will not be offered employment. Applicants who test positive may re-apply for jobs within 30 days.