Junior Information Security Analyst - Incident Response

Systems, Web, Security, Analyst, Project, IT, Director, Management, CMS, Development, CISSP
Full Time

Job Description



For over 20 years, FEI Systems has been a proven provider of health information technology solutions for Federal, State, and local governments and now, Managed Care Organizations. Our Long-Term Services and Supports solution Carity provides an integrated platform for application and eligibility determinations across Medicaid waiver and incentive programs. FEI’s CareVisit enables State agencies, Managed Care Organizations, and case managers to monitor the delivery of in-home community-based services. Our Web Infrastructure for Treatment Services (WITS) solution tracks behavioral health services, allowing agencies and providers to securely administer and share client treatment information. In addition, FEI provides a wealth of information technology services to Federal Government agencies, from requirements gathering and application development through independent testing, help desk services, and maintenance.

At FEI Systems, we recognize that our employees are an important part of our success. We promote a team environment where all employees have the opportunity to achieve professional and personal success. Currently FEI is looking for highly skilled, self-motivated and creative individuals to join our talented team of experts. FEI is an equal opportunity employer that believes in growing and promoting a diverse work force. Our employee compensation and benefits package is competitive within the industry and is designed to help employees meet varying needs throughout their careers and lives. If you're looking for a rewarding work environment that will challenge your mind and expand your horizons, then joining the FEI team may be right for you.

Job Summary:

FEI is a matrixed organization where the Junior Information Security Analyst has the ability to grow and the responsibility to report, indirectly, to first line Project Managers from a program standpoint; but, will ultimately report to the IT Security Director. The analyst will be responsible for monitoring, evaluating, and maintaining systems and procedures to protect networks, systems, and data from internal and external threats. It is incumbent of the analyst to identify risk, respond to reported security violations, determine root cause of violations, and recommend corrective actions to ensure data security. The analyst also researches, recommends, and implements changes to procedures to enhance data systems security, and assists in communicating and reinforcing security procedures and best practices to users. The analyst will need to possess and apply knowledge of principles, practices, and procedures related to information security, risk management, privacy, and IT governance to the completion of meaningful and challenging assignments.

Principal Responsibilities:
  • Works under general supervision to plan and conduct security related assignments for one or more programs/customers
  • Work with Security Operations Center (SOC) refining logging and events to ensure security related items reported are useful and actionable supporting Incident Response Program
  • Develops and/or maintains reports for consumption by support teams and for the IT Security Director
  • Act as a liaison between IT Security and program/development teams to help ensure business needs are met in the most secure manner
  • Help implement selected program components for our internal security department/posture

Required Skills and Experience:
  • Information Security Domain Knowledge – Candidate must be familiar with standard concepts, practices, and procedures within the information security and privacy domain.
  • Risk Management – Person must understand the total process of identifying, controlling, and mitigating uncertain events that may negatively affect system resources including risk analysis, implementation and testing, security evaluation of safeguards, and overall security review
  • Interpersonal – Must demonstrate self-motivation with a strong ability to work in a multi-tasking, changing environment
  • Incident Response – Required that candidate has experience supporting incident response and following incident response process/procedures and working with a security operations center (SOC)

Preferred Experience:
  • Federal Security Compliance – Fluency in FISMA, NIST SP800-53, and the Federal systems certification and accreditation process
  • Governance – Experience with major governance regulations (e.g., SOX, HIPAA, NISPOM, DITSCAP, CoBIT, HITRUST, etc.)
  • Industry Experience – Healthcare industry experience, with a particular emphasis on health payer solutions, electronic health records, behavior health, data analytics, claims adjudication, medical management, and fraud detection and prevention is critical
  • Customer Sensitivity – Experience working with and/or for Health focused Agencies of the Federal Government to include NIH, CDC, CMS, VA, SAMHSA. Experience working with DHHS specific protocols (e.g., BPSSM, RMH, XLS, TRA, etc.).
  • Systems Development – Experience in full life cycle information technology solution implementation from conceptualization, requirements, design and specification through development (coding), integration testing and commissioning
  • Securing Cloud Environments – Experience securing applications and application development located in cloud and hybrid cloud environments
  • Other – Strong technical design and communication skills

Experience & Education:
  • A Bachelor’s Degree or 3 years of directly related professional experience may be substituted for the degree requirement
  • Professional Security Certification is preferred (e.g., CISSP, CISM, CISA, etc.)
Other:Full time must be able to obtain Public Trust; other clearance may or may not be required

Location: Remote. Full time position with full company benefits

NOTICE: EO/AA/VEVRAA/Disabled Employer – Federal Contractor. FEI Systems participates in E-Verify, a federal program that enables employers to verify the identity and employment eligibility of all persons hired to work in the United States by providing the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee’s Form I-9 to confirm work authorization. For more information on E-Verify, please contact DHS at (888) 464-4218.

Applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, marital status, political affiliation, disability, or genetic information, except where it relates to a bona fide occupational qualification or requirement. FEI Systems creates an Affirmative Action Plan on an annual basis. Pursuant to federal law, the portions of FEI Systems’ Affirmative Action Program that relate to Section 503 (Persons with Disabilities) and/or Section 4212 (Protected Veterans), are available for inspection upon request by applicants and employees during FEI Systems’ normal business hours.

#DICE
Dice Id : 10408081
Position Id : 1241
Originally Posted : 3 weeks ago
Have a Job? Post it