AddressCognitive Medical Systems is seeking a talented and motivated Vulnerability Security Analyst to join our team and play a key role in safeguarding our systems, data, and infrastructure against potential threats.
Position Overview: As a Vulnerability Analyst at Cognitive Medical Systems, you will be responsible for assessing, monitoring, and enhancing the security posture of our healthcare software solutions and infrastructure. You will collaborate closely with cross-functional teams to identify security vulnerabilities, implement appropriate safeguards, and ensure compliance with industry regulations and best practices. This role offers the opportunity to work on diverse security initiatives in a dynamic and fast-paced environment.
Key Responsibilities:
- Conduct regular security assessments, including vulnerability scans, penetration tests, and risk assessments, to identify and mitigate potential security risks.
- Monitor and analyze security logs, alerts, and incidents to detect and respond to security threats in a timely manner.
- Implement and maintain security controls, policies, and procedures to safeguard sensitive data and systems.
- Collaborate with development teams to integrate security best practices into the software development lifecycle (SDLC) and ensure secure coding standards are followed.
- Stay current with industry trends, emerging threats, and best practices in cybersecurity, and make recommendations for enhancing our security posture.
- Participate in incident response activities, including investigating security incidents, coordinating with internal teams and external partners, and implementing remediation measures.
- Provide guidance and support to internal stakeholders on security-related matters, including security awareness training and education.
- Contribute to the development and maintenance of security documentation, including policies, procedures, and standards.
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent work experience).
- 5-7 years experience as a Security Analyst, Information Security Analyst, or similar role, preferably in the healthcare industry.
- Knowledge of Azure AD (Entrata); Experience setting up Azure active directory specifically related to security.
- 508 Security Compliance, DS Logon Experience, FISMA – Federal Information Security Modernization Act.
- Strong understanding of cybersecurity principles, concepts, and best practices.
- Familiarity with security frameworks and regulations such as HIPAA, HITRUST, NIST, and ISO 27001.
- Experience with security tools and technologies such as SIEM, IDS/IPS, endpoint protection, and vulnerability management solutions.
- Excellent analytical and problem-solving skills, with the ability to assess complex security issues and recommend effective solutions.
- Strong communication skills, with the ability to effectively communicate technical information to non-technical audiences.
