Associate Information Security Analyst

Company Description

The University of Maryland Medical System (UMMS) is an academic private health system, focused on delivering compassionate, high quality care and putting discovery and innovation into practice at the bedside. Partnering with the University of Maryland School of Medicine, University of Maryland School of Nursing and University of Maryland, Baltimore who educate the state’s future health care professionals, UMMS is an integrated network of care, delivering 25 percent of all hospital care in urban, suburban and rural communities across the state of Maryland. UMMS puts academic medicine within reach through primary and specialty care delivered at 11 hospitals, including the flagship University of Maryland Medical Center, the System’s anchor institution in downtown Baltimore, as well as through a network of University of Maryland Urgent Care centers and more than 150 other locations in 13 counties. For more information, visit www.umms.org.

Job Description

The following statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all job responsibilities performed.

• Monitor and analyze security alerts from multiple sources, including firewalls, intrusion detection systems, and Security Information and Event Management (SIEM) platforms.

• Conduct frequent testing of simulated cyber-attack to identify vulnerabilities.

• Assist with the creation, implementation, and maintenance of security policies, procedures and standards. • Support security event and incident investigations by documenting findings and preparing detailed reports with recommendations.

• Assist with maintaining security tools and log analysis.

• Contribute to IT security projects and assist with the evaluation of security tools.

• Respond to cybersecurity tickets and remediate identified vulnerabilities.

• Provide after-hours support by responding to escalated security alerts.

• Collaborate with IT and other departments to integrate security controls into systems and processes.

• Stay current with emerging cybersecurity threats, technologies, and best practices.

• Participate in cybersecurity awareness training and education programs for employees.

• Assist with the preparation and execution of security audits and assessments.

• Conduct research on cybersecurity trends, risks, and mitigation strategies.

• Perform other duties as assigned

Qualifications

Education & Experience - Required

• Bachelor's degree in Computer Science, Information Technology, Information Security, or related field, or the equivalent combination of education, training and experience.

• Minimum of one (1) year of experience in Security Operations. Education & Experience

Preferred

• Master’s degree in Computer Science, Information Technology, Information Security, or related field.

• One (1) year of experience with enterprise projects involving multi-disciplinary resources.

• Cybersecurity certifications such as CISSP, CISA, CISM, CEH, OSCP, or CHFI.

• Experience working in a healthcare environment.

Knowledge, Skills, & Abilities

• Familiarity with information security concepts, principles, protocols, tools, industry best practices and strategies.

• Effective analytical, planning, organizational, and problem-solving skills.

• Effective skill presenting findings, conclusions, alternatives, and information clearly and concisely.

• Ability to manage competing priorities in a complex and rapidly changing environment.

• Ability to maintain professional growth and business affiliations to keep abreast of technical advances, vulnerabilities and threats.

• Flexible, enthusiastic approach to work including a fervent desire to learn.

• Ability to respond to alerts and incidents after-hours.

• Effective verbal, written and interpersonal communication skills

Additional Information

All your information will be kept confidential according to EEO guidelines.

Compensation:

Pay Range: $36.83-$55.29

Other Compensation (if applicable): None

Review the 2024-2025 UMMS Benefits Guide

Like many employers, UMMS is being targeted by cybercriminals impersonating our recruiters and offering fake job opportunities. We will never ask for banking details, personal identification, or payment via email or text. If you suspect fraud, please contact us at careers@umms.edu.