Data Security Analyst

Job Title: Data Security Analyst

Reports to: Chief Information and Security Officer

Employment: Full-Time, Exempt

Company Summary:

StationMD is a telehealth company dedicated to serving individuals with intellectual and/or developmental disabilities (I/DD). All StationMD clinicians are board-certified and specially trained to treat individuals with I/DD. Clinicians are available 24/7 via telemedicine for urgent and non-urgent medical matters. StationMD also offers scheduled behavioral health telemedicine to individuals with I/DD. In providing this suite of services, StationMD enables individuals with I/DD faster access to high-quality care and substantially reduces unnecessary medical costs.

Position Summary:

We are looking for a Data Security Analyst to join our security operations team. To be successful in this role, it is important to have experience with data loss prevention policies, rule definitions, data identification, and data classification.

• Monitor and review security controls to detect cybersecurity threats
• Implement infrastructure to improve security functionality of databases, data lakes, file storage, and any other data repositories
• Experience in communicating with users, technical teams, and operations to collect requirements, describe data requirements, and devise protection mechanisms
• Review of security event logs and alerts from security systems and tools (such as Firewall, IDS, SIEM, syslog)
• Provide an analysis of security events and investigate cybersecurity threats
• Produce documentation (flow-charts, data flow diagrams, sequence diagrams, etc) for designs, specifications, and end-users
• Support quality assurance testing and tools
• Analyze, document, and escalate security incidents per policy
• Integrate in-house and 3rd party components to identify potential data security and privacy issues through log parsing and correlation
• Maintain updated knowledge of security threats, vulnerabilities and mitigation techniques
• Assist with implementation of best practices from the NIST Secure Software Development Framework
• Carry out user access reviews based on job descriptions and roles
• Perform activities to help measure and monitor compliance with the policies and procedures
• Perform other duties related to cybersecurity or at the discretion of the CISO as assigned

Education/Certification

• Undergraduate degree in Computer Science, Cybersecurity, or related field.
• CompTIA Security , ISC CC, IAPP CIPP, or similar(desired)
• At least 2 years of professional experience

Qualifications/Requirements

• Knowledge of security solutions IDS/IPS, endpoint security, SIEM tools
• General knowledge of networking and cloud services (AWS preferred)
• General knowledge of databases and data anonymization
• Knowledge of operating systems including Linux (Ubuntu is a bonus)
• Good troubleshooting/problem solving skills
• Excellent verbal and written communication skills
• Ability to work, on occasion, during nights and weekends to support incident response
• Prior experience in a healthcare environment is a plus

StationMD, PC/HealthTech Partners, Inc is an affirmative action equal opportunity employer.