IT Security Analyst (STA015240)
Performs security risk analysis and assessments associated with information resources, risk management policy development and product assessments. Maintains day-to-day responsibility for security management of the University Network and IT assets.
- Participates in the information security risk management policy development process.
- Assist team in providing project management plans and status reports related to network vulnerabilities and intrusion detection. Perform security risk analysis, intrusion detection, and vulnerability assessments associated with information resources, risk management, policy development and product assessment.
- Works closely with the University of Houston System and component campuses to provide assistance and strategic direction for information security risk analysis, assessments and custom information security risk management requirements and processes.
- Maintains baseline of information security risk management requirements and processes for the University.
- Applies defined security analysis methodologies to networks and systems. Identifies countermeasure options to support customers in choosing the best solutions to satisfy budget, functionality, security, and other critical requirements.
- Collaborates with the Department to provide technical guidance in all areas as it relates to information security risk management and information security project management.
- Provides short-turnaround assessment of critical risk management requests in support of the MIS and ISS.
- Assists Department with research related to present and future information security risk management technologies and processes.
- Assists with gathering information for the University internal Audit auditors, during IT audits and assess items presented in Change Control for non-compliance with policy. Performs other duties as assigned.
EEO/AA
Position is 100% onsite.
ADDITIONAL QUALIFICATIONS
- The ideal candidate for this position should possess the following:
- Ability to serve as the college IT Security Officer
- Work experience with Clinic Operations personnel to ensure IT security regulations and compliance.
- Previous experience conducting unit risk assessments, risk analysis and security threat responses.
- Knowledge and experience with compliance related to both the required and addressable, technical, administrative, and physical safeguards in accordance with applicable federal and state laws, especially the HIPAA Security Rules.
Qualifications
Bachelors and 3 years experience
Requires a thorough understanding of both theoretical and practical aspects of an analytical, technical or professional discipline; or the basic knowledge of more than one professional discipline. Knowledge of the discipline is normally obtained through a formal, directly job-related 4 year degree from a college or university or an equivalent in-depth specialized training program that is directly related to the type of work being performed.Requires a minimum of three (3) years of directly job-related experience.
PREFERRED QUALIFICATION
- Baccalaureate degree in Information Systems, Cybersecurity or related IT/Healthcare field.
- Knowledge and experience in state and federal information security laws, including but not limited to HIPAA, including NIST, PCI, and all other applicable regurgitations.
- Demonstrated organization, facilitation, written and oral communication, and presentation skills.
- Recommended Security certification such as Certified in Healthcare Privacy and Security (CHPS) and/or other healthcare industry-related security credentials.
STANDARD ATTACHMENTS
- Cover letter describing the manner in which your experience applies to the posting.
- Resume
- Salary History (list Employer name, dates, and last salary)
- Three work references, including current and past supervisors. NOTE: We will maintain your confidentiality and notify you in advance of making contact with any of your references. References will be contacted only after the interviewing process has been completed.
- College will accept education in lieu of experience
- College will accept experience in lieu of education