Security Analyst III

Leads implementation of security initiatives, the analysis and response to complex security incidents and develops comprehensive risk management strategies. Oversees third-party risk management programs and ensures vendor compliance. Designs and manages advanced IAM solutions, coordinating security operations, and leading audit activities. Conducts in-depth vulnerability assessments and manages remediation projects. This position requires 4-6 years of experience in cybersecurity and advanced knowledge of security tools and technologies. Your leadership and expertise will be pivotal in safeguarding our organization’s assets and ensuring regulatory compliance.

Education/Training:

• Bachelor’s degree in related field of study.
• Work experience of 4-10 years may be substituted in lieu of education

Licenses/Certification:

• CompTIA Security, CISSP, HCISPP, CISA or CISM preferred

Required Qualifications and Skills:

• Strong understanding of cybersecurity principles
• At least 5+ years of experience in IT Security, access management, auditing or a related field.
• Strong analytical skills
• Good organizational skills and attention to detail.
• Strong project management skills
• Excellent communication and teamwork abilities.
• Advanced knowledge of security tools, technologies, and best practices.

Preferred Qualifications and Skills:

• Experience working in a healthcare setting working with EHR software
• EDR
• SIEM
• Networking
• Office 365
• SharePoint
• Infrastructure security
• SQL
• Active Directory
• Desktop and mobile
• LDAP
• SAML

Essential Job Functions:

• Develop, maintain and execute plans to safeguard ePHI and clinical systems 
• Lead the analysis and response to complex security incidents.
• Develop and implement comprehensive risk management strategies.
• Oversee third-party risk management programs and ensure vendor compliance.
• Design and manage advanced IAM solutions.
• Coordinate and lead security operations, including threat intelligence and incident response.
• Drive audit activities and ensure compliance with regulatory requirements.
• Driving the standardized of IAM roles across IT and the organization
• Driving the automation of IAM processes across IT and the organization
• Conduct in-depth vulnerability assessments and manage remediation projects.
• Lead in Project Management processes for implementations new new security capabilities ensuring that high value is returned from engagement while limiting organization exposure to risk
• Manage MSSP Partnerships

Other duties: Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

AGE AND DIVERSITY RELATED CRITERIA: Consistently treats patients, colleagues and visitors with the dignity and respect, while being sensitive to the differing needs of all age groups, backgrounds, characteristics and cultures.

ABILITY TO FULFILL JOB EXPECTATIONS: Must have the ability to the perform essential functions of the position, including required work hours, locations and physical demands, without posing a direct threat to the health and safety of themselves or other individuals in the work place, and with or without reasonable accommodation.

PHYSICAL DEMANDS: Sit for long periods of time. Use their hands to handle, control, or feel objects, tools, or controls. Repeat the same movements. See details of objects that are less than a few feet away. Speak clearly so listeners can understand. Understand the speech of another person.

Sturdy Memorial Hospital is an equal employment opportunity employer. There is no discrimination because of race, color, creed, age, gender, sexual orientation, national origin, veteran status or disability.