IT Security Program Specialist

Overview:

Reporting to the Director of Information Systems, the IT Security Program Specialist is responsible for the security, maintenance, and monitoring of core infrastructure services, including Identity Access Management and Security Monitoring. The role involves collaborating with various departments to identify vulnerabilities, respond to security incidents, and ensure compliance with security standards throughout IT projects and operations.

Primary Responsibilities:

• Collaborate with IT teams, Compliance, and Human Resources departments to identify potential vulnerabilities and respond to security incidents, escalating as necessary.
• Monitor organizational systems and applications for security breaches or intrusions.
• Facilitate both internal and external risk assessments and audits.
• Review and update information security program policies and procedures.
• Perform internal audit reviews of information systems and components, including configuration settings, user access, and role assignments, in partnership with IT personnel.
• Communicate with internal and external stakeholders to understand business needs from an IT implementation perspective.
• Document significant changes to the information security environment within the organization’s ticketing system.
• Ensure information security standards are maintained throughout IT projects and integration efforts with new systems or technologies.
• Occasionally assist with data management and data cleaning processes.
• Assist with coordination of special projects/tasks/duties and provide assistance as assigned.

Qualifications:

• Bachelor’s degree in Information Systems or a related field, or 2 years of experience in an IT role.
• Certified Information Systems Auditor (CISA) certification is a plus.
• Ability to work collaboratively with a diverse set of users and personnel across the organization.
• Familiarity with at least one globally recognized security framework (e.g., HITRUST, SOC 2 Type II, ISO 27001, NIST).
• Familiarity with at least one major regulatory data standard (e.g., GDPR, HIPAA).
• Basic scripting skills are a plus (e.g., Python, Windows scripting with .bat files, Command Prompt).
• Experience in networking and systems administration is highly desirable.
• Front-end UI/UX and design experience is also a significant advantage.

Pay: 65K – 75K

Job Type: Full-time

Pay: $65,000.00 - $75,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off

Experience level:

• 2 years

Schedule:

• 8 hour shift
• Monday to Friday

Ability to Commute:

• Santa Ana, CA 92705 (Required)

Work Location: In person