Information Security Analyst II (Security / Identity Access Management (IAM) Analyst)

Description

The Information Security Analyst II, Workday is responsible for configuring, maintaining, and advising on security within the Workday application. This includes managing domain security policies, roles, and role assignments within Sailpoint for identity and access management. The analyst will coordinate with vendors, ensure compliance with divisional and data security policies, and participate in report reviews to maintain security and data privacy standards. The Information Security Analyst II supports the InfoSec mission of securing the patient experience. This position executes tasks associated with analysis and remediation of information security risks that could lead to compromise of Children's National systems. Individuals in this position will execute tasks including the cataloging of risks, identification and remediation of vulnerabilities, role and identity definition and management, securing of data, and establishment of policies and standards.

Qualifications

Minimum Education

Bachelor's Degree Bachelor's degree in a computer science, math, engineering, or another relevant discipline or equivalent training and work experience (Required)

Minimum Work Experience

3 years of experience in cybersecurity with a focus on vulnerability management, cybersecurity operations, analysis, forensics and / or investigations (Required)

Required Skills / Knowledge

Some demonstrated ability to apply key cybersecurity practices, controls, and frameworks

Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related concepts to technical as well as nontechnical audiences

Understanding and some application of practices associated with cybersecurity auditing, compliance, and policy

Understanding of and some application of key practices associated with risk assessment, vulnerability management, penetration testing, and threat identification.

Understanding and some application of controls and practices associated with access management, active directory, privileged account management, and authentication

Understanding and some application of key practices associated with incident response, risk remediation, business continuity, disaster recovery, and cyber operations.

Functional Accountabilities

Cyber Analysis

• Responsible for tasks involved in the identification, documentation, and reporting of cyber risks
• Execute tasking for development and documentation of cybersecurity policies, standards, and procedures.
• Engage directly with other CNH business units to ensure security of assets, applications, and data
• Responsible for the documentation of procedures associated with managing access to CNH systems, data, and other assets
• Engages in tasks associated with cybersecurity incidents, as required

Organizational Accountabilities

Organizational Commitment / Identification

Teamwork / Communication

Performance Improvement / Problem-solving

Cost Management / Financial Responsibility

Safety

Primary Location : Maryland-Silver Spring Work Locations : Inventa Towers 1 Inventa Place Silver Spring 20910 Job : Information Technology Organization : Operations Position Status : R (Regular) - FT - Full-Time Shift : Day Work Schedule : Monday - Friday; 9am - 5pm Job Posting : Oct 8, 2024, 5 : 44 : 26 PM Full-Time Salary Range : 85404.8 - 142334.4