The Cybersecurity Analyst II is responsible for the review and implementation of IT Governance, Risk and Compliance (GRC) aspects of the business. This position will work closely with business stakeholders and junior Cyber Analysts during contract negotiations and will conduct Vendor Risk Assessments (VRA) and Application Risk Assessments (ARA) using industry NIST/ISO best practices. This position should have a strong understanding of Security Governance frameworks/standards such as HIPAA, PCI/DSS, NIST and ISO. Additionally, the ability to work with structure policies and procedures along with keeping such documents current is critical. Further, this position requires exceptional customer service skills with the ability to communicate with many internal/external customers at different levels within the organizational hierarchy. The Cybersecurity Analyst II is also responsible for supporting the business goals and objectives for the Department, the Information Management Organization, and the organization as a whole.
Responsibilities:
Identify and classify Information Security Risks
Work with business stakeholders to classify and mitigate identified security risks
Provide daily support of Business Stakeholders as assigned by the Security Assurance ticketing system and peer reviews of other Cyber Team Members work
Research and understand emerging information security threats and vulnerabilities
Perform "other" risk assessments under the guidance of the Director of Information Security; such as HIPAA, PCI/DSS, etc.
Assist with the selection and implementation of tools which enforce or monitor compliance with information security policies, standards and requirements
Provide after hours coverage for security event monitoring and incident response
Teamwork – Maintains and demonstrates the ability to work well on assigned tasks through actions and job performance
Collaborates with and assists IM leaders, directors and staff in the fulfillment of corporate objectives and goals
Follows approved mechanisms to document and report on all incidents/events
Escalates issues appropriately
Assist in the development of the security plan
Requirements:
Bachelor's Degree
1 + 3 years of experience
CISA, CISM, CISSP, PMP or similar (preferred)
Work Type:
Full Time
EEO is the law - click below for more information:
We endeavor to make this site accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at (844) 257-6925.
CHRISTUS HEALTH is an international Catholic, faith-based, not-for-profit health system comprised of almost more than 600 services and facilities, including more than 60 hospitals and long-term care facilities, 350 clinics and outpatient centers, and dozens of other health ministries and ventures. CHRISTUS operates in 6 U.S. states, Colombia, Chile and 6 states in Mexico. To support our health care ministry, CHRISTUS Health employs approximately 45,000 Associates and has more than 15,000 physicians on medical staffs who provide care and support for patients. CHRISTUS Health is listed among the top ten largest Catholic health systems in the United States.