Security Analyst – Information Services – Full-time

Job title: Security Analyst – Information Services – Full-time

Job description: Job Description

POSITION VACANCY: Digital Services
POSITION: Full Time Security Analyst, Information Services
HOURS OF WORK: Generally, Monday to Friday days but flexibility and overtime may be required

JOB SUMMARY:
Come join our Digital Services Team. The Security Analyst provides knowledge expertise to the organization on all aspects of information security, threat management, disaster recovery and security of operations across the organization to mitigate cyber security risks. The Security Analyst participates in solution design in relation to security controls, testing, maintenance, monitoring and optimization of security architectures in collaboration with digital services technical infrastructure and software applications. The security analyst also participates in conducting vulnerability assessments and penetration testing as required.

POSITION RESPONSIBILITIES:

• Monitor organization’s networks for security breaches and investigate violations as necessary.
• Recommend additional security solutions or enhancements to existing solutions to improve overall enterprise security.
• Perform technical IT security evaluations, vulnerability assessments, coordinate the execution of these within the corporate context, as well as oversee the remediation activities associated with vulnerability findings.
• Monitor current trends of malware and intrusions and recommend enhancements to current security protection systems.
• Make recommendations to Information Technology security and emergency measures policies and procedures.
• Maintain and operate information security technologies including, but not limited to, Network Intrusion Prevention Systems, Enterprise Anti-Virus Systems, Enterprise Host Intrusion Prevention Systems, Firewalls, Patch Management Systems, End Point Encryption, and Security Incident Management Systems.
• Monitor firewall logs, intrusion prevention logs, and network traffic for unusual or suspicious activity.
• Manage database security and internal and external information exchange
• Recommend, schedule, and apply fixes and security patches to information security technologies and end-user computing devices as necessary.
• Assist in overseeing the creation and enforcement of policies, procedures and associated plans for information security and access controls based on industry best practice and managerial direction.
• Participates in both project and operationally focused initiatives regarding end user security protection technologies and implementing standards/processes.
• Operationalize Internal Audit, Compliance, and security architectural guidelines, standards, for IT Security, implementing and communicating standard tools and practices.

QUALIFICATIONS:

• Bachelor’s degree in Computer Science or related field of study or college diploma with equivalent work experience.
• Minimum of 5 years progressive experience in information technology.
• Minimum 5 years of experience in information systems security.
• Prior experience administrating healthcare security systems preferred.
• CISSP (Certified Information Systems Security Professional) certificate required; candidates currently working towards certification will be considered.
• Familiarity with virtual environments, SAN technology, time and project management, technical writing, ITIL v3 considered an asset.

Company: Grand River Hospital

Expected salary:

Location: Kitchener, ON

Job date: Fri, 26 Mar 2021 23:06:54 GMT