Job Description

Job Title-IS Security Analyst

Reports To-IS Manager

General Summary:

• The IS Security Analyst is responsible for determining appropriate security measures and creating policies and procedures that monitor and control access to system resources and data. The IS Security Analyst will update security standards as necessary and will report any observed security violations to the Director, Information Technology.

Principle Duties and Responsibilities

• Develops and maintains enterprise IS policies, procedures and compliance guidelines for NKCH. Maintain security documentation as required for outside regulatory agencies (JCAHO, HIPPA, etc)
• Participates in the timely implementation and maintenance of security systems supporting NKCH (Biometrics, Firewalls, etc.)
• Monitors, evaluates compliance and takes action to ensure accuracy, integrity, confidentiality and security of enterprise, facility and departmental data bases.
• Monitors and assures that policies and procedures related to accuracy, integrity, confidentiality and security are followed by project team members and departmental personnel in the implementation and maintenance of computerized information systems.
• Reports any observed security violations and proposed solutions to the Director, Information Technology.
• Participates in resolving problems with security violations.
• Works with IS Training Analyst to design and conduct security seminars and training classes.
• Coordinates the communication of information security awareness to all people who have access to NKCH computer systems.
• Uses security principles to balance system access and availability
• Maintains current and thorough knowledge of security hardware and software products that comply with industry standards.
• Works with vendors, I.S. staff, end-user departments and outside business partners to enhance information security.
• Uses project management techniques for implementing changes.
• Develops standards and procedures that support meeting strategic, tactical and operational objectives on a cost-effective basis.
• Maintain system agreements with outside business partners to ensure confidentiality and security.

KNOWLEDGE, EDUCATION/CERTIFICATION, SKILL REQUIREMENTS:

• Bachelor's degree preferred.
• 2-5 years information systems experience required.
• Prior experience in data security and Certified Information Systems Security Professional (CISSP) preferred.
• Healthcare experience desired.
• Strong written and verbal communication skills.