Providence Health & Services Sr. Information Security Analyst in Beaverton, Oregon
Providence St. Joseph Health is calling a Senior Information Security Analyst to sit in any of our office locations in either Renton, WA, Beaverton, OR or Anaheim, CA.
We are seeking a Senior Information Security Analyst to contribute to the development, maintenance and implementation of the overall system-wide information security program needed for the protection of Providence St. Joseph Health. This includes managing significant bodies of work within the scope of the overall Information Security program. They demonstrate advanced project management skills and are able to garner business requirements; create appropriate supporting schedule, scope and budget and coordinate all aspects of a project for on-time delivery with ongoing support mechanisms identified and in place.
The Senior Information Security Analyst possesses healthcare / business acumen and can proficiently assess security risk while considering health system operational needs and adherence to regulatory requirements, anticipating and articulating potential operational impacts of policy and controls changes. They work collaboratively with interdisciplinary teams to identify, assess and address information security risks, often taking a lead role in areas such as, but not limited to information security frameworks, business continuity management, physical security, security risk management, firewall protection, information security training, intrusion prevention, data loss prevention, anti-virus endpoint protection, policy and standards, regulatory/contractual requirements, planning, mitigation, metrics and reporting, and/or crisis and incident management.
The Senior Information Security Analyst will utilize various tools and methods to provide support to end users, technology teams, and projects on a regular and ad hoc basis. Responsible for working collaboratively and effectively with caregivers across the enterprise to conduct information security activities such as, but not limited to analyzing information security risk and threat data, monitoring and investigating anomalies, developing and promulgating security controls and risk mitigation recommendations, establishing standards, determining information security-related business needs and requirements for potential projects/initiatives and contributing to the system-wide information security training and awareness program..
In this position you will have the following responsibilities:
Coordinate the work of others. Work proactively with minimal supervision and collaborates across organizational boundaries. Routinely interfaces with business and technology leaders and sponsors to:
Identify, develop, and implement needed enterprise-wide security programs and projects that include budget, resource plans, work-plans, schedules and supporting training and documentation.
Develop business and technical requirements; create use cases, test cases and QA criteria to support project implementation while driving health system objectives relative to standardization, integration, efficiency and regulatory compliance.
Manage completion of deliverables of assigned resources in cross-functional project teams, often for concurrent projects. Serve as ISS liaison for new system implementations and enhancement projects.
Facilitate /coordinate resources required for system implementations.
Drive /coordinate departmental organizational and operational transformation initiatives.
Manage initiatives that support the creation and implementation of operational support models, availability models, system portfolios, service delivery playbooks, service dashboards (key performance indicators, key risk indicators) and system inventory financial portfolios. Leads teams to drive ongoing process improvement and optimization of these initiatives.
Create, document, implement and manage procedures and processes that ensure security control effectiveness.
Develop and maintain documentation for all assigned responsibilities.
Required qualifications for this position include:
Bachelor’s degree in Computer Science, Management Information Systems, Information Security, Business Management or a related field. If no degree, additional years of experience can substitute for the degree in addition to minimum years of experience below:
7 years of experience in Information Security, preferably in a healthcare setting.
1 or more certifications listed below is also required:
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
Certified Information Security Manager (CISM)
Certified Business Continuity Professional (CBCP)
Master Business Continuity Professional (MBCP)
PCI-ISA designation ( Payment Card Industry-Internal Security Assessor), or PCIP (Payment Card Industry Professional)
Preferred qualifications for this position include:
Master’s degree in Computer Science, Management Information Systems, Information Security, Business Management or a related field Or equivalent educ/experience.
Healthcare industry knowledge.
About the department you will serve.
Providence Strategic and Management Services provides a variety of functional and system support services for all eight regions of Providence St. Joseph health from Alaska to California. We are focused on supporting our Mission by delivering a robust foundation of services and sharing of specialized expertise.
We offer a full comprehensive range of benefits - see our website for details
As expressions of God’s healing love, witnessed through the ministry of Jesus, we are steadfast in serving all, especially those who are poor and vulnerable.
Providence Health & Services is a not-for-profit Catholic network of hospitals, care centers, health plans, physicians, clinics, home health care and services guided by a Mission of caring the Sisters of Providence began over 160 years ago. Providence is proud to be an Equal Opportunity Employer. Providence does not discriminate on the basis of race, color, gender, disability, veteran, military status, religion, age, creed, national origin, sexual identity or expression, sexual orientation, marital status, genetic information, or any other basis prohibited by local, state, or federal law.
Job Category: Information Security
Other Location(s): Oregon-Beaverton, California-Anaheim
Req ID: 226568