Information Security Analyst in Information Technology

Houston, TX, United States

Information Security Analyst in Information Technology

Information Security Analyst in Information Technology

Location:

Texas Medical Center-Houston, Texas

Hot

Category:

Information Technology

UTHealth Houston General Administration

Requisition #: 230002SA

Are you ready to join an extremely collaborative Information Security team addressing Identity and Access Management? If you are, we are looking for someone that understands the importance of identity lifecycle solutions. Someone who can adapt to an always changing environment. Someone not afraid to question the status quo and suggest ideas that allow us to increase our security posture while providing solutions that better empower the users in our organization. You will focus on access management and even higher level privileged access management. This could be for high level IT users or simply for every day clinical workers using our Epic system. It would be beneficial to have directory experience and also working in the cloud for access management, but drive is preferred over technical knowledge.

What we would like you to have

:

Certifications in information technology or information security

Have an understanding on accounts and access controls

Have an understanding on lifecycle components

Knowledge with federated authentication

Understanding of Multi Factor Authorization (MFA)

Understand Identity Access Management (IAM) risks well enough to suggest mitigating controls

Understand solution resiliency

Communicate well

Above all else… We want someone motivated, innovative, and passionate! This role will require training for anyone we hire, so we are open to a great attitude over dazzling education and certifications.

What we do here changes the world.

UTHealth Houston is Texas’ resource for healthcare education, innovation, scientific discovery, and excellence in patient care. That’s where you come in.

Once you join us you won't want to leave.

It’s because we reward our team for the excellent service they provide. Our total rewards package includes the benefits you’d expect from a top healthcare organization (benefits, insurance, etc.), plus:

100% paid medical premiums for our full-time employees

Generous time off (holidays, preventative leave day, both vacation and sick time – all of which equates to around 37-38 days per year)

The longer you stay, the more vacation you’ll accrue!

Longevity Pay (Monthly payments after two years of service)

Build your future with our awesome retirement/pension plan!

We take care of our employees!

As a world-renowned institution, our employees’ wellbeing is important to us. We offer work/life services such as…

Free financial and legal counseling

Free mental health counseling services

Gym membership discounts and access to wellness programs

Other employee discounts including entertainment, car rentals, cell phones, etc.

Resources for child and elder care

Plus many more!

Position Summary:

The Information Security Analyst position requires the ability to conduct information security assessments in a complex and large organization. Requires technical knowledge, good communication, attention to detail and organizational skills.

Position Key Accountabilities:

Administers tasks within the information security risk management program, including execution of risk assessments, corrective action planning, follow-up and guidance.

Performs risk assessments of cloud applications and technologies compliant with appropriate requirements through use of technology tools as available.

Understands academic, healthcare, and research business operations and provides input in the creation and modification of information security policies, procedures, guidance documents and awareness efforts. Responsible for monitoring policy compliance and escalating to management as appropriate.

Performs application security compliance reviews of routine to moderate complexity, covering regulations including: Protected Health Information (PHI), Family Educational Rights and Privacy Act (FERPA), Personally-Identifying Information (PII) data, and Payment Card Industry Data Security Standards (PCI DSS) and facilitating review resolution activities including: report preparation, finding tracking and corrective action implementations.

Performs activities associated with a comprehensive vulnerability management program including: device scanning, issue reporting and remediation.

Performs other duties as assigned.

Certification/Skills:

Certification in information technology or information security (Security+, SSCP, HCISPP, CISA, CRISC, CDPSE, CCSP, etc.) preferred.

Knowledge of application security requirements: cloud, web, mobile and related compliance programs such as Texas Risk and Authorization Management Program (TX-RAMP).

Knowledge and practical understanding of compliance requirements such as: HIPAA, HITECH, HITRUST, FERPA, PCI, TAC 202 and relevant NIST standards including SP 800-53 and 800-171.

Analytical skills to perform information security assessments including use of related technology tools.

Bachelor's degree with some training in information technology. May substitute required education with equivalent years of experience beyond the minimum experience requirement.

One (1) year experience in information technology, compliance or auditing in a diverse, complex technology environment.

Physical Requirements:

Exerts up to 50 pounds of force occasionally and/or up to 20 pounds frequently and/or up to 10 pounds constantly to move objects.

Security Sensitive:

This job class may contain positions that are security sensitive and thereby subject to the provisions of Texas Education Code § 51.215

Residency Requirement:

Employees must permanently reside and work in the State of Texas.

If you are looking for a great healthcare career in Houston, visithttp://go.uth.edu/careers!

University of Texas Health Science Center at Houston (UTHealth)

Established in 1972 by The University of Texas System Board of Regents, The University of Texas Health Science Center at Houston (UTHealth) is Houston’s Health University and Texas’ resource for health care education, innovation, scientific discovery and excellence in patient care. The most comprehensive academic health center in the UT System and the U.S. Gulf Coast region, UTHealth Houston is home to schools of biomedical informatics, biomedical sciences, dentistry, nursing and public health and the John P. and Kathrine G. McGovern Medical School. UTHealth Houston includes The University of Texas Harris County Psychiatric Center, as well as the growing clinical practices UT Physicians, UT Dentists and UT Health Services. The university’s primary teaching hospitals are Memorial Hermann-Texas Medical Center, Children’s Memorial Hermann Hospital and Harris Health Lyndon B. Johnson Hospital.

UTHealth Houston offers a comprehensive and competitive benefits package. For more information on our benefits programs please refer to the UTHealth Houston Office of Benefits Website.

Equal Employment Opportunity Statement

UTHealth Houston is committed to providing equal opportunity in all employment-related activities without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, genetic information, gender identity or expression, veteran status or any other basis prohibited by law or university policy. Reasonable accommodation, based on disability or religious observances, will be considered in accordance with applicable law and UTHealth Houston policy. The University maintains affirmative action programs with respect to women, minorities, individuals with disabilities, and eligible veterans in accordance with applicable law.

UTHealthHoustonhas adopted a policy consistent with CMS regulations to protect our patients and university community from exposure to COVID-19. This policy affects all employees, residents, fellows, students, contractors, new hires, visiting scholars program participants, adjunct faculty, and volunteers who work, train, or collaborate at the John S. Dunn Behavioral Science Center.

In addition, all UTHealthHoustonemployees who are assigned to work at a location that is subject to the affiliated partner’s hospital, clinical offices, or agency are required to abide by UTHealth’sHoustonrules and regulations, as well as the affiliate’s rules and regulations, including COVID-19 vaccination and safety requirements.

Work location is based on the needs of the department and may be adjusted.

#J-18808-Ljbffr