IT Security Analyst - (1.0 FTE, Days)
1.0 FTE, 8 Hour Day Shifts
Lucile Packard Children's Hospital Stanford is the heart and soul of Stanford Children’s Health. Nationally ranked and internationally recognized, our 311-bed hospital is devoted entirely to pediatrics and obstetrics. Our six centers of excellence provide comprehensive services and deep expertise in key obstetric and pediatric areas: brain & behavior, cancer, heart, pregnancy & newborn, pulmonary and transplant. We also provide an additional, wide range of services for babies, kids and pregnant moms.
Reporting to the Information Security Officer, the Information Security Analyst is responsible for contributing to information security policy development and maintenance; design of security policy education, training, and awareness activities; monitoring compliance with LPCH IT security policy and applicable law; and coordinating investigation and reporting of security incidents. Working with the Information Services (IS) team (LPCH and partners), the analyst will monitor, assess, and fine-tune network penetration tests, application vulnerability assessment scans and risk assessment reviews in a primarily Windows environment. The analyst will develop security architecture and assist with security integration with IS and LPCH strategic planning and architecture.
• Actively participate in the health care and general security community (mailing lists, blogs, etc.).
• Assist in the development and communication of Information Security policies, procedures, standards and guidelines based on knowledge of best practices and compliance requirements.
• Collaborate with IS management, the legal department, security, risk, Internal Audit, peers from other areas of the Stanford Medical Center, and law enforcement agencies to manage security vulnerabilities.
• Conduct institution-wide data classification assessment and security assessments and manage remediation plans.
• Conduct security research in keeping abreast of latest security issues and technology solutions.
• Coordinate and execute IT Security projects; evaluate and implement new security technology solutions.
• Coordinate response to information security incidents.
• Create, manage and maintain user security awareness.
• Monitor and advise on information security issues related to the systems and workflow at LPCH to ensure that internal security controls for the institution are appropriate and operating as intended.
• Prepare documentation, campus notifications, web content, alerts, and user training materials.
Any combination of education and experience that would likely provide the required knowledge, skills and abilities as well as possession of any required licenses or certifications is qualifying.
Education: Bachelor's degree in a work-related discipline/field from an accredited college or university.
Experience: Five (5) years of progressively responsible and directly related work experience.
Knowledge, Skills, and Abilities
• Ability to plan, organize, prioritize, work independently and meet deadlines.
• Ability to solve problems and identify solutions.
• Ability to speak and write effectively at a level appropriate for the job.
• Ability to work well with individuals at all levels of the organization.
• Knowledge of computer systems and software used in functional area.
• Knowledge of local, state and federal regulatory requirements related to areas of functional responsibility.
Equal Opportunity Employer