Cybersec Risk Mgmt Analyst

Location:

Rosedale Office Building

Department:

IS Administration

Shift:

First Shift (United States of America)

Standard Weekly Hours:

40

Summary:

The Information Security Risk Analyst reports directly to the Director/Lead of IT Security Risk Management, supports the implementation, operations and continuous process improvement of the Cook Children’s Information Security Risk Management Program. The Program seeks to minimize the risk of accidental or intentional disclosure of data to unauthorized individuals as related to the confidentiality, integrity and availability of information technology systems and/or services. The Information Security Risk Analyst will support program activities including threat identification, vulnerability assessment, risk analysis, risk management planning, risk monitoring, and third party risk analysis to ensure that Cook Children’s is compliant with respect to identifying and mitigating risk as required by federal and state regulations. The Information Security Risk Analyst will conduct risk assessments while documenting and reporting within the appropriate timeframes and tools.

Qualifications:

• Bachelor's Degree required or higher with a total of 1 years of experience developing, implementing or managing an organization's risk management program.

• 1 or more years of healthcare experience required.

• 1 or more years of experience working with regulations including HIPAA/HITECH and PCI/DSS required.

• 1 or more years of experience identifying, assessing and managing information security vulnerabilities required.

Licensure, Registration, and/or Certification

• Security + minimum.

• Willingness to obtain professional certification such as Certified Information Security Manager (CISM), SANS GIAC Security Essentials (GSEC), Certified Information Systems Security Professional (CISSP)

Knowledge, Skills & Abilities

Microsoft Office strong computer skills including MS Office products (e.g. Word, Excel, PowerPoint, Visio) and other business software to prepare reports, memos, summaries and analyses.

Demonstrable ability to summarize complex data into concise recommendations and reports.

Knowledgeable at creating/establishing documentation repositories and technical writing.

Knowledgeable in distilling technical subjects/risks into a non-technical discussion or write-up.

Experience working with the industry Risk Security Frameworks. Ability to think critically and problem solve with a team-focused mentality.

Takes responsibility and ownership of tasks delivering high quality results.

Experience with matrix management and working with cross-functional teams.

About Us:

Cook Children's Health Care System

Cook Children's Health Care System offers a unique approach to caring for children because we are one of the country's leading integrated pediatric health care delivery organizations. Patients benefit from the integrated system because it allows Cook Children's to use all of its resources to treat a patient and allows for easy communication between the various companies by physicians with a focus on caring for children and adolescents.

Cook Children's is an EOE/AA, Minority/Female/Disability/Veteran employer.