Senior Security Analyst

RemitDATA   •  

Overland Park, KS

Industry: Healthcare

  •  

8 - 10 years

Posted 41 days ago

eSolutions is the leading provider of Revenue Cycle Management solutions for the Healthcare IT market. We provide a set of unique SaaS-based tools that help healthcare providers get paid faster. From Hospitals and home health providers to skilled nursing facilities and physicians’ offices, we support healthcare providers with the absolute best service.

eSolutions is seeking a Senior Security Analyst for our growing company! This position will lead the company’s information security posture. If you follow US-CERT alerts, read NIST publications, dream in firewall rules, evangelize Burp Suite, love a good SIEM tool, and can communicate all of that to a varied audience, this position is for you!

Responsibilities:

  • Ensures policy, procedure, and regular review of identity access management
  • Perform routine testing of information security procedures
  • Perform vulnerability assessments, plan and execute remediation plans and reports results to senior management
  • Manages the company DLP and Firepower systems, along with other security systems
  • Assists in the development, adoption and enforcement of information security policies, procedures and standards including annual review and update
  • Maintains the company security procedures including incident response and incident reporting
  • Work with the Dev team to ensure that SDLC process are applied
  • Conducts andreports on the following:
    • OWASP Scanning
    • Penetration Testing
    • IT Risk Assessments
    • Social Engineering Testing
    • Vulnerability Testing
    • WAF Management
    • Physical Security Assessment
    • Access Audits
    • Security Awareness Training
    • Data Compliance Reporting
    • InfoSec Posture Reporting
  • Ensures systems are upgraded and patched as needed for security compliance
  • Executive InfoSec Posture Reporting
  • Works with IT to maintain inventory of company information assets
  • Develops and conducts information security awareness training and education programs
  • Performs customized social engineering campaigns to test security awareness of employees
  • Creates executive security posture reports for senior management
  • Communicates risks and recommendations to senior management in non-technical language
  • Performs securityauditing of information systems
  • Reviews log information from in house SIEM platform, evaluates incidents to determine if any action or escalation is necessary
  • Documents log review activities for audit
  • Maintains regulatory compliance in areas such as HITRUST and the Health Insurance Portability and Accountability Act (HIPAA) by continuous audit of systems against company policies and procedures
  • Ensures the company policies and procedures are current with changes made to information security standards
  • Continuously validates the integrity of technology safeguards and workplace policies to protect PHI
  • Liaison with external auditors for Information Security related assessments
  • Assists with the Management of the company Information Security program

Qualifications:

  • 10 years relevant IT experiencerequired
  • 7 years relevant securityexperiencerequired
  • Bachelor’s Degree in Information Technology, related field, or equivalent experience
  • In-depth experience with Network Intrusion Detection/Prevention systems, Security Event Information Management, Vulnerability Assessment, and cybersecurity incident response
  • Strong analytical and problem-solving skills coupled with great attention to detail
  • Great knowledge on security technologies and solutions
  • Ability to coordinate multiple teams with multiple and sometimes conflicting priorities
  • One of the following required - CISSP, OSCP, SSCP, CSSLP, CCFP, HCISPP
  • Superior technical abilities and strong understanding of the life cycle of application development
  • Experience on system hardening including firewall health checks

Benefits:

  • Medical, dental and vision insurance
  • Employer paid life insurance coverage
  • Employer paid short and long-term disability
  • 401K with strong matching program
  • Pre-tax flexible spending account
  • 15 PTO days on year one and 20 PTO days on year two
  • 9 company paid holidays per year
  • 8 hours of community service paid time off per year