Security Support Analyst

The Security Support Analyst will be responsible for support for operational Information Security requests. This role works closely with the Information Security team to implement and maintain security controls, monitor for potential threats, and respond to security incidents. Acting as the first line of defense for security-related tickets and incidents, the Security Support Analyst ensures that the organization’s sensitive data is protected, while also ensuring compliance with relevant security standards and regulations.

The Security Support Analyst must become proficient with the following responsibilities.

Security Incident Handling & Response:

• Act as the first point of contact for security-related tickets and incidents, providing prompt and effective resolution or escalation as needed.
• Monitor security alerts and incidents using Security Information and Event Management (SIEM) tools, identifying potential security threats and vulnerabilities.
• Assist in triaging and responding to security incidents, working with cross-functional teams to ensure timely and thorough incident resolution.

On-Call Rotation:

• Participate in the on-call rotation for the Epic security team, ensuring prompt response to security-related incidents and issues as they arise outside of regular business hours.

Security Protocol Implementation & Maintenance:

• Help implement and maintain security protocols and procedures, ensuring they align with the organization’s security policies and regulatory requirements.
• Support the development and enforcement of security controls related to user access, network security, and endpoint protection.

Collaboration & Communication:

• Collaborate with IT, network, and application teams to address security-related issues and improve overall security posture.
• Communicate with users and business units to ensure they are aware of security policies and best practices, offering training or guidance as needed.

Documentation & Reporting:

• Document security incidents and their resolution in detail, ensuring that all incidents are logged appropriately for audit and reporting purposes.
• Prepare reports and documentation of security assessments, findings, and recommendations for security improvements.
• Assist in maintaining an up-to-date knowledge base on security protocols and incident response procedures.

A successful candidate will have the expertise, and skills described below.

• Bachelor's degree in Computer Science, Information Technology, or related field required or 2 years of equivalent work experience
• 2 years of experience in a security support or analyst role is preferred, ideally within a healthcare or regulated industry.

• Previous experience in a security support or analyst role is preferred.
• Familiarity with security tools and technologies such as firewalls, intrusion detection systems, and antivirus software.
• Experience with security incident response and handling.
• Strong analytical and problem-solving skills, with the ability to identify and mitigate security risks efficiently.
• Ability to manage multiple priorities, work independently, and collaborate with a team.

• CompTIA Security
• GIAC Information Security Fundamentals (GISF)
• Systems Security Certified Practitioner (SSCP)