Information Security Analyst - Senior

Job Title: Information Security Analyst - Senior
Department: Information Technology
Location: Riedman Campus

SUMMARY:
The Information Security Senior Analyst role supports the Information Security function for the Rochester Regional Health system and is responsible for leading information security services such as administer, implement and maintain Identity & Access Management solutions. Oversee user account administration, permissions, and access controls. Knowledge and support of SSO solutions (Azure/EntraID SSO). Knowledge and support of MFA solutions (DUO and Azure/EntraID MFA Services). Architecture and/or engineering experience with LDAP and Active Directory. Hands on experience with the implementation of Identity Management/Identity & Access Management products (i.e. Saviynt, SailPoint, CyberArk). Experience with JavaScript, Python, PowerShell, or similar scripting languages.

Looking for someone who has experience with Identity Access Management (IAM). Specifically with PAM (Privileged access management) Identity Governance, EntraID, SSO and MFA.

RESPONSIBILITIES:

• Leads one or more assigned cybersecurity service with minimal direction from the Director
• Recommends and executes leading practices and standards for the their assigned service area(s) by keeping abreast of latest security trends, vulnerabilities, threats, and technology solutions
• Ensures compliance with legal requirements and industry standards for information security.
• Conducts assessments, analyses, engineering, configurations, mitigations and investigations as required by the service area(s)
• Manages the implementation of new services, processes or technologies in their assigned service area(s)
• Manages changes, downtimes and incidents for their assigned service area avoiding and minimizing unplanned disruption to other services. Keeps abreast of IT changes which may impact their service
• Develops service levels and monthly metrics for their service area(s) and generates monthly reporting. Identifies service area coverage gaps across the healthcare systems, understands associated risks and advocates for prioritized remediations or mitigations.

REQUIRED QUALIFICATIONS:

• Bachelor's Degree required.
• 3 years of Information Technology experience required. ?

PREFERRED ATTRIBUTES:

• Certified Information Systems Security Professional (CISSP) or similar certification.
• Knowledge of global standards related to cybersecurity and privacy.
• Proficient knowledge of cybersecurity technical and process controls
• Specialization in one field of cybersecurity
• Project management, change management and communications experience ?

PHYSICAL REQUIREMENTS: L - Light Work - Exerting up to 20 pounds of force occasionally, and/or up to 10 pounds of force frequently, and/or a negligible amount of force constantly; requires occasional walking, standing or squatting.

PAY RANGE: $80,000.00 - $115,000.00