Cybersecurity Analyst

As a Cybersecurity Analyst, you will be part of our Cybersecurity Department that covers information security, privacy, and product security risks and certifications. You will report to the Cybersecurity Manager - Assurance.  The focus of this role is to provide Assurance to InterSystems customers regarding the management of cybersecurity risks and operations done through responses to customer questionnaires, internal risk assessments and internal audits, and certifications.  The Cybersecurity Analyst will support the Cybersecurity Manager – Assurance across:

­­­­­

• External audits and certifications
  • Coordinate the collection and provision of evidence in support of cybersecurity audits including SOC2, ISO 27001, and HITRUST
  • Assist with readiness exercises in preparation for external assessments

• Customer Cybersecurity Inquiry and Vendor Security Assurance
  • Respond to customer security questionnaires and inquiries in accordance with internal control principles and business/technical knowledge

• Internal audit program assistance
  • Conduct internal evaluations as part of the Cybersecurity internal audit function
  • Collaborate with subject matter experts at InterSystems to remediate identified deficiencies

• Risk assessment and control validation
  • Identify key risks and controls within a distributed, international organization

• Internal Compliance and Policy Support
  • Support subject matter experts in the development, implementation, and maintenance of documentation

• General Risk and Compliance Support
  • Participate in Information Security Management System (ISMS) activities in alignment with ISO 27001, HITRUST, AICPA Trust Services Criteria, and/or other leading business and IT control frameworks
  • Collaborate with members of the Security Architecture and Engineering, Managed Services, Technical Services, Clinical Risk, Clinical Safety, and Compliance teams to provide risk management and assurance support across InterSystems products, services, and operations.

Required Qualifications:

• 1-3+ years of auditing or risk management
• Bachelor’s degree in one of the following: Management Information Systems, Accounting, Finance/Economics, Computer Science, Business, Science, Technology, Engineering & Mathematics and/or other business field of study

Preferred Qualifications:

• Certifications such as CISA, GSNA, CRMA, CCSA, or CIPT
• Experience and knowledge around controls with risk reporting, compliance, and operational processes within an organization as an auditor or business process specialist, including business process and IT management control.
• Familiarity with at least one of the following frameworks: HITRUST, SOC2, ISO 27001, NIST CSF

We are an equal-opportunity employer and do not discriminate because of race, color, religion, sex, national origin, ancestry, marital status, veteran status, age, disability, sexual orientation or gender identity or expression or any other legally protected category. InterSystems is an E-Verify Employer in the United States.

About InterSystems

InterSystems, a creative data technology provider, delivers a unified foundation for next-generation applications for healthcare, finance, manufacturing, and supply chain customers in more than 80 countries. Our data platforms solve interoperability, speed, and scalability problems for large organizations around the globe to unlock the power of data and allow people to perceive data in imaginative ways. Established in 1978, InterSystems is committed to excellence through its 24×7 support for customers and partners around the world. Privately held and headquartered in Boston, Massachusetts, InterSystems has 38 offices in 28 countries worldwide. For more information, please visit InterSystems.com.