IT Security Analyst 3 - IS - Data Security - FT - Day - Onsite
UCI Health is the clinical enterprise of the University of California, Irvine, and the only academic health system based in Orange County.
UCI Health is comprised of its main campus, UCI Medical Center, a 459-bed, acute care hospital in Orange, Calif., four hospitals and affiliated physicians of the UCI Health Community Network in Orange and Los Angeles counties and ambulatory care centers across the region.
Listed among America's Best Hospitals by U.S. News & World Report for 23 consecutive years, UCI Medical Center provides tertiary and quaternary care and is home to Orange County's only National Cancer Institute-designated comprehensive cancer center, high-risk perinatal / neonatal program and American College of Surgeons-verified Level I adult and Level II pediatric trauma center, gold level 1 geriatric emergency department and regional burn center.
To learn more about UCI Health, visit www.ucihealth.org.
Please read the information in this job post thoroughly to understand exactly what is expected of potential candidates.
Your Role on the Team
Position Summary :
The data security analyst will play a leading role in driving information security analysis, vulnerability remediation, and performing risk assessments.
This role is a key business enabler to provide information security risk analysis and strategic recommendations for the ongoing improvement of Information Security for UCI Health and the School of Medicine as needed.
In this role, you will be engaging with program employees, researchers, stakeholders, and executives to ensure appropriate and up-to-date security management.
Remote Work :
This position will be predominantly work from home but is required to work onsite depending on the needs of UCI Health from the Orange or Irvine Campus locations.
What It Takes to be Successful
Required Qualifications :
- Well versed in assessments and able to identify false-positives or vulnerabilities that have not been remediated
- Must possess the skill, knowledge, and ability essential to the successful performance of assigned duties
- Must demonstrate customer service skills appropriate to the job
- Excellent written and verbal communication skills in English
- Demonstrated experience in determining deviation from acceptable configurations
- Demonstrated experience in conducting web application vulnerabilities, penetration testing
- Ability to review contractual language and Business Associate Agreements
- Ability to perform and conduct vulnerability assessments and management of threats & vulnerabilities
- Ability to maintain a work pace appropriate to the workload
- Ability to develop and / or recommend appropriate mitigation countermeasures in operational and non-operational situations
- Ability to deliver clean reports that are actionable and timely
- Ability to conduct security awareness training and compliance & management
- Ability to assess levels of risk
- Ability to analyze, support, and maintain numerous proactive risk programs
- 5+ years working in a heterogeneous IT environment
- 5+ years in academic and healthcare IT environments
- 2+ years of experience in data security assessment and audit
Preferred Qualifications :
- Thorough understanding of Microsoft Active Directory
- Knowledge of medical center and academic IT environments
- Knowledge of HIPAA / HITECH, NIH, FISMA, CMS, CPHS, dbGaP, PCI-DSS and other State and Federal data security requirements and regulations
- Experience with managing Linux and Windows systems.
- Experience with Cloud Platforms such as Microsoft Azure, AWS
- Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or other similar credentials or work experience
- Accreditation in Microsoft 365 Certified : Enterprise Administrator Expert
Conditions of Employment :
- Background Check and Live Scan
- Legal Right to Work in the United States
- Vaccination Policies
- Smoking and Tobacco Policy
- Drug Free Environment
The following additional conditions may apply, some of which are dependent upon business unit or job specific requirements.
- California Child Abuse and Neglect Reporting Act
- E-Verify
- Pre-Placement Health Evaluation
Closing Statement :
The University of California, Irvine is an Equal Opportunity / Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected categories covered by the UC nondiscrimination policy.
We are committed to attracting and retaining a diverse workforce along with honoring unique experiences, perspectives, and identities.
Together, our community strives to create and maintain working and learning environments that are inclusive, equitable, and welcoming.
UCI provides reasonable accommodations for applicants with disabilities upon request. For more information, please contact UCI's Employee Experience Center (EEC) at eec@uci.
edu or at (949) 824-0500, Monday - Friday from 8 : 30 a.m. - 5 : 00 p.m.
Consideration for Work Authorization Sponsorship
Must be able to provide proof of work authorization.
J-18808-Ljbffr