<p>Connecticut Children's is the only health system in Connecticut that is 100% dedicated to children. Established on a legacy that spans more than 100 years, Connecticut Children's offers personalized medical care in more than 30 pediatric specialties across Connecticut and in two other states. Our transformational growth establishes us as a destination for specialized medicine and enables us to reach more children in locations that are closer to home. Our breakthrough research, superior education and training, innovative community partnerships, and commitment to diversity, equity and inclusion provide a welcoming and inspiring environment for our patients, families and team members.</p> <p>At Connecticut Children's, treating children isn't just our job - it's our passion. As a leading children's health system experiencing steady growth, we're excited to expand our team with exceptional team members who share our vision of transforming children's health and well-being as one team.</p> <p>Reporting to the Director of Information Security the Security Analyst Manages security mechanisms to protect computer assets</p> <p>EDUCATION and/or EXPERIENCE REQUIRED</p> <p>Education Preferred: BA degree in Computer Science or other related degree is preferred with 3-5 years of Information security; years of experience can be substituted for degree level.</p> <p>Experience Required:</p> <p>Experience Preferred: Experience with Epic and background in Healthcare is highly desired</p> <p>LICENSE and/or CERTIFICATION REQUIRED</p> <p>CISA or Security+ certification is a plus</p> <p>KNOWLEDGE, SKILLS AND ABILITIES REQUIRED</p> <p>KNOWLEDGE OF:</p> <p>Five years of relative IT experience.</p> <p>System Administration and Network Security knowledge and experience</p> <p>Workstation, Application and Database security, experience</p> <p>Knowledge of principles for risk identification and analysis,</p> <p>Knowledge of regulatory standards such as HIPAA Privacy and Security Rule, HITECH, SOX, and PCI/DSS</p> <p>Experience and knowledge of Information Security Policies,</p> <p>Familiar with Healthcare industry security standards and compliance requirements.</p> <p>Experience with Healthcare systems preferred.</p> <p>Must have knowledge of and experience with the following: Microsoft Operating systems Windows Server, Windows XP and Windows 7 Desktop operation systems, Some database knowledge is preferred, knowledge and use of Microsoft Office Suite, Security Incident and Event Management processes and Change Control Management process</p> <p>SKILLS:</p> <p>Excellent Communication Skills (Oral and Written),</p> <p>Attention to detail</p> <p>Problem solving</p> <p>Customer focus</p> <p>Ability to prioritize work and multi-task effectively</p> <p>Process Improvement skills and experience</p> <p>Project Management skills</p> <p>Strong analytical and problem solving skills</p> <p>ABILITY TO:</p> <p>Must also have the ability to work independently and complete task in a timely manner.</p> <ul> <li>Receives escalated request/tickets, analyze and troubleshoot complex security problems, and develop creative solutions using critical thinking to determine the best solution for the specific problem. Document resolved issues and solutions for reference by team members. </li><li>Develop role based security profiles with department, system engineers and application analysts. Ensure that profiles provide the appropriate access to users based on their job requirements and can be re-used by others assigned to the same organizational role. </li><li>Configure Active Directory settings and Identity Management functions per the overall IS and CCMC security posture and framework. </li><li>Participate in the enhancement of security procedures to reduce turnaround on the various security requests. Implement new procedures that utilize parallel processes to create security accounts and leverage new technology such as Single Sign-On and Two Factor authentication and help streamline security configurations. </li><li>Execute processes that disable and clean-up unused, old and expired accounts according to best security practices. </li><li>Safeguards computer files by participation in and disaster preparedness and business continuity exercises; recommending improvements. </li><li>Participate in the evaluation, selection and implementation of virus, malware, and other security software collaboration with Workstation Support and System Engineer teams. </li><li>Participate in continuing education programs that communicate changing security practices, procedures and standards to employees, providers and team members </li><li>Analyze systems for security breaches and report discrepancies to Security Leadership immediately. Document identified issues. </li><li>Conduct vulnerability assessments and penetration tests on IT systems. Assess results and report any identified gaps to Security Leadership. </li><li>Help IS team develop processes and procedure to comply with Corporate Compliance policies. </li><li>Determines security violation and inefficiencies by actively auditing and monitoring of computer systems and accounts. </li><li>Provide On-call support as required. </li><li>Perform all the duties of a Security Analyst. </li><li>Perform other related duties as assigned. </li></ul> <p>WORK ENVIRONMENT</p> <p>Requires On-Call rotation duties</p>