This site uses cookies. To find out more, see our Cookies Policy
 

IT Security Analyst in Reston, VA at Beacon Health Options

Date Posted: 1/18/2019

Job Snapshot

Job Description

About The Position:

Reporting to the Director, IT Security, the Information Security Analyst is responsible for compliance with IT security policy and applicable law and coordinating investigation of security incidents at the engagement center. The Information Security Specialist II will perform technical analysis and support for computer security procedures including personnel, physical security, communications, hardware, software, and data. He/she will enforce security requirements for protecting data against unauthorized, accidental or deliberate, modification, disclosure, denial, and destruction.

Position Responsibilities:

  • Performs periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system, and external Web integrity scans
  • Monitors and proactively mitigates information security risks and conducts system security testing
  • Plans, designs, implements, and manages, in conjunction with engineering staff, all security systems and their corresponding software, including firewalls, VPNs, intrusion detections systems, secure messaging, and antivirus software
  • Recommends, develops, monitors, and enforces information security policies, Promotes general security and HIPAA security awareness among staffs
  • Conducts research on emerging products, services, protocols, and standards in support of security efforts, Handles security incidents responses Ensures security regulations compliances including AICPA trust criteria, HIPAA, RMF, HITRUST, ISO 27001 and other local and state regulations.
  • Handle security related incidents including physical security incidents, Provides supports to respond and coordinates to various client and SOC1, SOC2 security audits
  • Manage Day to Day Security Analytics including perimeter security, security monitoring, Data Loss Prevention, Vulnerability Assessment/Management, malware protection and other operational needs
  • Test and Approve new software for use within the enterprise
  • Lead Security Awareness and Training Efforts for over 5000 employees
  • Support Third Party Vendor Risk Assessments
  • Support Cyber Risk Activities to include:
    • Internal Risk Assessment
    • External Risk Assessment
    • Gateway Filter Check
    • IP Reputational Assessment
    • Netflow Assessment
    • Policy and Procedure Validation
    • Wireless Assessment
    • Physical Security Assessment
    • Penetration Testing
    • Phishing Assessment
    • End Point Assessment
    • Firewall Assessment
  • Stay up-to-date on information technology trends and security standards.

Position Requirements:

  • 5-7 years of IT experience
  • 4 years experience as an IT Security Analyst
  • In depth detailed knowledge of IP-based networking protocols, network management and operations, VPNs, and encryption with the ability to analyze and IP flow down to the packet level
  • Strong troubleshooting and analysis skills using Sniffer or other industry-standard protocol analyzer technology
  • Strong knowledge of applicable practices relating to data security/privacy protection
  • Excellent communication skills, have a willingness to take on responsibilities, strong problem-solving skills, and should work well with other staff while providing reliable support
  • Working knowledge and experience with LANs, WAN, VPNs, Routers, firewalls, and IDS/IPS systems
  • Understanding of information assurance security requirements, vulnerabilities, protection features
  • Understanding of HIPAA security regulations and other government security policies
  • Knowledge of information security standards (e.g., ISO 27002, RMF, NIST Standards etc.), rules and regulations related to information security and data confidentiality (e.g., FISMA, HIPAA, etc.) and desktop, server, application, database, network security principles for risk identification and analysis
  • Excellent communication (oral, written, presentation), interpersonal and consultative skills

Education:  

  • Bachelor’s Degree in related field from an accredited institution, Master’s Degree Preferred

Licenses:  

  • Security+ is required
  • CISA, CISSP, CRISC or any other security certification from ISC2, SANS, ISACA, CISCO is desirable and/or willingness to obtain one within the first six month of employment

To Apply:

Click below on “Apply for this Position” to create a profile and apply for the position

Beacon Health Options is proud to be an Equal Opportunity and Affirmative Action Employer as well as a Drug Free and Tobacco Free Work Environment.  EOE/AA/M/F/Veterans/Disabled

#CB