Data Security Administrator

Phelps Health is a 2000-employee-strong hospital and healthcare system serving the heart of small-town Missouri.

No matter where you start with us, we’re committed to taking our team to the top. If you’re ready for the challenge of providing life-saving care or supporting those who do, read on to find your fit in the Phelps Health family.

General Summary

• The Data Security Analyst monitors, manages and maintains information security systems at Phelps Health under the guidance of the Data Security Administrator. The primary function of the Data Security Analyst is to analyze threat feeds from Phelps Health security systems and coordinate appropriate responses. They will track, respond, and report information security incidents and investigate suspicious activity. This position may require the Data Security Analyst to be on-call or respond to information security incidents outside of normal office hours.

Essential Duties and Responsibilities

• Monitors threat feeds and responds to alerts and events from information security systems. Documents investigations and ensures incident response activities are recorded.
• Assists with managing and monitoring of security technology e.g., security information event management system, (SIEM), Next Generation Firewalls (NGFWs), web security appliance (WSA), email security appliance (ESA) and other technology.
• Participate as needed in ongoing security and compliance initiatives including but not limited to penetration testing, audits, policy review, risk analysis, risk assessments, PCI DSS attestation and HIPAA breach investigations.
• Identifies and tracks information system vulnerabilities and assists with administration of the vulnerability management system.
• Assists with technical design, implementation and maintenance of security operational and strategic activities to ensure best practices, control objectives and compliance.
• Creates reports and metrics to illustrate the overall effectiveness of the security program against the existing threat landscape.
• Provides security oversight for projects, acquisition of third party services and implementation of new technology.

Education

• Knowledge of networking fundamentals and computer operations as usually attained with a Bachelor’s degree in computer Science or related field required.

Work Experience

• Minimum of three years of progressive experience in computing and information security, including but not limited to experience with computer networking, Windows and Linux computer operating systems and knowledge of common information security issues such as malware detection and removal. Experience should also include metrics capture and analysis, security process and procedure development and computer vulnerability assessments.

Certification/License

• One of the following relevant Information Security certifications is preferred: CompTIA Security+, GIAC Security Essentials, CEH (Certified Ethical Hacker), CCNA Security

Mental/Physical Requirements

• Close mental and visual concentration and variable operations for sustained periods. Ability to stand, walk, sit and reach. Must be able to transport self to various parts of hospital 80% of the time. Occasional lifting up to 15 lbs.

Working Conditions

• Constant noise from fans and printers for extended periods. Will spend a great deal of time using CRT’s with possible visual or muscular discomfort. Subject to many interruptions and long irregular hours.

At Phelps Health, we think we have a better team, benefits, and opportunities for growth than anyone else around, and we invite you to see for yourself! Apply now to join us on our mission in health care.