FirstBank Jobs

Career Opportunities: Information Security Analyst II (24290)

Requisition ID 24290 - Posted 06/05/2024 - CareOregon - Full Time - Permanent - Portland - Multi Location (9) Job Description Print Preview

Candidates hired for remote positions must reside in Oregon, Washington, Utah, Idaho, Arizona, Nevada, Texas, Montana, or Wisconsin.

Job Title Information Security Analyst II Department Information Systems Exemption Status Exempt Requisition # 24290 Direct Reports n/a Manager Title IS Security Manager Pay and Benefits Estimated hiring range $96,950 - $117,315 / year, 5% bonus target, full benefits. www.careoregon.org/about-us/careers/benefits Posting Notes This is a fully remote role, but you must reside in one of the listed 9 states.

Job Summary The Information Security Analyst II position implements and maintains security solutions to protect CareOregon computer networks and data from cyberattacks.  This includes influencing and recommending the selection of effective solutions that support organization strategies.  This is a strategic position that works with infrastructure, service support and development teams to provide top-notch capabilities to monitor for system weaknesses, indicators of compromise and threat trends.  Tools and platforms utilized to protect valuable assets and data include endpoint protection, SIEM, firewalls, vulnerability management and others. The position also spends substantial time evaluating, designing, and implementing IS policies and systems (plan, design, install, and maintain). Essential Responsibilities Security Design and Development * Actively participate in the design and maintenance of security technologies, including but not limited to, SIEM platforms, Intrusion Detection and Prevention systems, anti-malware platforms, vulnerability management, event logging, and other security services. * Provide advanced knowledge of security technology to the organization and participate in and consult on projects. * Participate in the development of technical infrastructure configuration standards aligned with HIPAA Security Rules, NIST Framework, and generally recognized security best practices for assigned technology domains. * Contribute to the improvement of the organization's incident response plans. * Provide input and updates for the Security Awareness Training program. * Participate in the creation of assessments to verify the security of new software, online services, third-party vendors and business partners. * Contribute to the development of standard metrics to track the effectiveness of the Security Program. Security Management and Operations * Execute tasks related to service requests, primarily for intermediate to advanced level information security activities. * Participate in the ongoing review of systems to ensure they are designed to comply with established security standards. * Participate in cybersecurity Incident Response activities and contribute to the development of policies and procedures; participate in regular testing of and training for Incident Response plans. * Update and actively maintain security systems, including Intrusion Detection and Prevention systems, anti-malware platforms, vulnerability management, event logging and other security services. * Evaluate applications for compliance with CareOregon security standards and policies. * Analyze organization needs; identify potential risks and mitigation and research and recommend solutions. * Create, run and review reports on information security system performance... For full info follow application link.

We are an equal opportunity employer.  We evaluate qualified applicants without regard to race, color, religion, sex, national orig in, disability, veteran status, and other protected characteristics.  The EEO is the Law poster is available here.