"IT Security Analyst 3 - IS - Data Security - FT - Day - Remote SoCal"

IT Security Analyst 3 - IS - Data Security - FT - Day - Remote SoCal

Req ID: 122242

Location: Irvine, California

Division: Medical Center

Department: IS - Data Security

Position Type: Full Time

Salary Range Minimum: USD $88,000.00/Yr.

Salary Range Maximum: USD $161,600.00/Yr.

Position Summary:

The data security analyst will play a leading role in driving information security analysis, vulnerability remediation and performing risk assessments. This role is a key business enabler to provide information security risk analysis and strategic recommendations for the ongoing improvement of Information Security for the UCI School of Medicine, Health Research and UCI Health as needed. In this role, you will be engaging with program employees, researchers, stakeholders, and executives to ensure appropriate and up-to-date security management.

Remote Work:
This position will be predominantly work from home but is required to work onsite depending on the needs of the School of Medicine from the Irvine or Orange Campus locations.

Required Qualifications:

• Understanding of security baselines and configuration standards for healthcare IT systems
• Must possess the skill, knowledge and ability essential to the successful performance of assigned duties
• Must demonstrate customer service skills appropriate to the job
• Excellent written and verbal communication skills in English
• Ability to review contractual language and Business Associate Agreements
• Ability to review and interpret vulnerability assessment reports and prioritize findings based on risk
• Ability to recommend risk mitigation strategies and controls based on risk assessment findings
• Ability to maintain a work pace appropriate to the workload
• Ability to deliver clear, actionable, and timely risk reports tailored for both technical staff and non-technical stakeholders
• Ability to conduct security awareness training and compliance & management
• Ability to assess levels of risk
• Ability to analyze, support and maintain numerous proactive risk program
• 5+ years working in a heterogeneous IT environment
• 5+ years of experience in academic and/or healthcare IT environments
• 2+ years of experience in data security assessment and audit

Preferred Qualifications:

• Understanding of cloud security risks and controls for platforms such as Microsoft Azure, AWS, or Google Cloud
• Knowledge of risk management frameworks and methodologies such as NIST RMF, NIST CSF, ISO 27001, or FAIR
• Knowledge of medical center and academic IT environments
• Knowledge of HIPAA/HITECH, NIH, FISMA, CMS, CPHS, dbGaP, PCI-DSS and other State and Federal data security requirements and regulations
• Industry certifications such as Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), HealthCare Information Security and Privacy Practitioner (HCISPP), Security+, or related GRC credentials
• Familiarity with enterprise IT environments and common technology risks
• Experience with GRC platforms or risk management tools (e.g., ServiceNow GRC, Archer, LogicGate)

Total Rewards

We offer a wealth of benefits to make working at UCI even more rewarding. These benefits may include medical insurance, sick and vacation time, retirement savings plans, and access to a number of discounts and perks. Please utilize the links listed here to learn more about our compensation practices and benefits.