Cybersecurity Risk Senior Analyst
IN, United States
Applications have closed
Indiana University Health
Indiana University Health is unlike any other healthcare system and we're looking for team members who share the things that matter most to us. People who are inspired by challenging and meaningful work for the good of every patient. People motivated to do their best every day. People who are always ready to apply themselves. As one of Indiana's largest employers, our vision is to lead the transformation of healthcare through quality, innovation and education, and make Indiana one of the nation's healthiest states.
Cybersecurity Risk Senior Analyst
RESPONSIBILITIES:
- Leads risks assessments for various cyber security scenarios utilizing both quantitative and qualitative methodologies.
- Maintains control documentation for critical systems, including mappings to relevant frameworks (i.e. NIST 800-53, HIPAA Security Rule, etc.) and leads periodic control testing engagements, including quality assurance reviews.
- Documents and tracks risk remediation plans and effectively communicates risk status to various levels of management.
- Assist department leadership with development / maintenance of department process and procedure design / documentation.
STRONGLY PREFERRED:
- Healthcare background (5+ years)
- Business Continuity/Disaster Recover experience
REQUIREMENTS:
- 5-7 years of relevant experience is required.
- Requires knowledge of computer networking concepts and protocols, and network security methodologies.
- Requires knowledge of cybersecurity and privacy principles used to manage risks related to the use, processing, storage and transmission of information or data (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
- Requires skill in conducting reviews of systems, assessing security systems designs and security controls based on cybersecurity principles and tenets (e.g. NIST SP 800-53, ISO 27001, etc.).
- Requires skill in performing impact / risk assessments (utilizing quantitative risk analysis methodologies).
- Requires skill and knowledge to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
- Requires demonstrated project management skills.
- Must have a proven track record of effective communication skills with all levels of organizational leadership.
- Bachelor's Degree or equivalent years of experience is required.
- At least one relevant certification is required, multiple are preferred (i.e. CISA, CISM, CRISC, Security+, FAIR Fundamentals, etc.).
- Indiana University Health has nearly 40,000 team members, including more than 3,600 physicians and 1,200 advanced practice providers, and we’re home to the largest nursing network in Indiana with more than 9,000 nursing team members at over 800 sites of care.
- IU Health is ranked No. 1 in Indiana by U.S. News & World Report, Riley Children's Health is ranked among the top children's hospitals in the country by U.S. News & World Report.
- A unique partnership with the Indiana University School of Medicine – one of the nation’s largest medical schools – gives patients access to groundbreaking research and innovative treatments, and it offers team members access to the latest science and the very best training – advancing healthcare for all.
- With 15 hospitals, including seven with Magnet designation and eight with Pathways to Excellence designation, our team members are leading the way through excellence.
- At Indiana University Health, your personal and professional growth is a top priority. You will have access to many diverse opportunities to learn and develop in meaningful ways that matter most to you, such as advanced clinical training, leadership development, promotion opportunities and cross training development.
- Indiana University Health is invested in the lives of Hoosiers, leading the transformation of healthcare to make Indiana one of the nation’s healthiest states.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISA CISM CRISC HIPAA ISO 27001 Network security NIST NIST 800-53 Privacy Risk analysis Risk assessment
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs