Security Analyst Ii-Ft-It-Provo

At Revere Health, we believe there is a better path to healing and healthcare maintenance, and we’re working on this mission—one patient at a time. We’re a national leader in a movement called value-base care which aims to improve treatment outcomes and keep costs down. Our internal culture is one that promotes respect and consistently recognizes the impact that individual employees have on the mission of the organization.

Position Summary: As a Security Analyst II, you will serve as an internal subject matter expert and primary escalation point for managed detection and response (MDR) services. This role requires a deep understanding of cybersecurity practices, excellent problem-solving skills, and effective communication to bridge the gap between external services and our internal security posture.

Essential Job Functions: 

1. Incident Escalation and Management: Act as the primary point of contact for the MDR service providers, handling escalated security incidents and ensuring effective resolution.
2. Subject Matter Expertise: Provide advanced knowledge in cybersecurity, particularly in areas relevant to healthcare IT security and compliance, to guide and advise security partners and internal stakeholders.
3. Analysis and Reporting: Analyze reports and findings from the MDR provider, translating technical details into actionable insights for internal teams.
4. Policy and Process Enhancement: Work closely with the IT security team to develop and refine security policies and procedures, ensuring alignment with third-party MDR services.
5. Training and Awareness: Lead internal training initiatives to improve security awareness and practices among staff, based on insights and trends observed through MDR activities.
6. Compliance and Audit Support: Assist in ensuring compliance with healthcare regulations (e.g., HIPAA) and support internal and external audit processes.
7. Vendor Management: Oversee and manage the relationship with the third-party MDR provider, ensuring service level agreements (SLAs) are met and services are aligned with our security needs.
8. Administration of Security Systems: Assist with the administration of various security systems, including but not limited to firewalls, intrusion prevention systems, endpoint protection software, web and email security filters, cloud security tools and data encryption solutions.
9. Identity and Access Management: Assist with the development and administration of identity and access management (IAM) processes, ensuring secure and efficient access control for all system users.

Skills:

• Incident Response: Advanced skills in managing and resolving escalated security incidents.
• Cybersecurity Knowledge: Deep understanding of cybersecurity practices with a focus on healthcare IT security and compliance (e.g., HIPAA).
• Security Analysis: Proficient in analyzing security reports/logs from MDR services and translating findings into actionable insights.
• Training and Awareness: Ability to lead security awareness training programs.
• Vendor Management: Skilled in overseeing third-party MDR providers and ensuring service alignment.
• Security Systems Administration: Competent in managing a variety of security technologies (firewalls, IPS, endpoint protection, etc.).
• Identity & Access Management: Knowledgeable of IAM processes for secure and efficient access control.
• Security Protocols & Standards: Familiarity with security protocols and their application.
• Log Analysis: Skills in log analysis and event correlation for security incident identification.
• Risk Assessment: Understanding of risk assessment methodologies.
• Vulnerability Management: Ability to manage vulnerabilities within the IT infrastructure.
• Cloud Security: Knowledge of cloud security practices, particularly Microsoft 365/Azure.
• Cryptography: Understanding of encryption standards and techniques.
• Critical Thinking & Problem-Solving: Strong analytical skills for complex security scenarios.

Qualifications: 

• Bachelor’s degree, or equivalent work experience, in Computer Science, Information Technology, Cybersecurity, or related field.
• Minimum of 3-5 years of experience in cybersecurity, with specific experience in incident response and managed detection and response services.
• Excellent communication and interpersonal skills, with the ability to effectively convey complex security concepts to both technical and non-technical stakeholders.
• Healthcare experience with strong understanding of healthcare IT security standards and compliance requirements.
• Proactive and self-motivated with a proven track record of resolving complex security issues.
• Proven ability to analyze and correlate security reports and logs. Experience in security vendor management and cross-functional collaboration.
• Professional certifications such as CISSP, CISM, or GCIH preferred.

Hours: 8 to 5, M-F Some nights and weekends