Information Security Specialist/Analyst III - Information Solutions (Remote)

Medical University of South Carolina

SC(remote)

JOB DETAILS
SKILLS
Amazon Web Services (AWS), Analysis Skills, Best Practices, Cloud Computing, Communication Skills, Computer Science, Computer Security, E Programming Language, Enterprise Protection, Environmental Health, Establish Priorities, Family Educational Rights and Privacy Act (FERPA), Federal Laws and Regulations, HIPAA (Health Insurance Portability and Accountability Act), Health Information Technology, Identity Data Management, Incident Response, Industry Standards, Information Assets, Information Technology & Information Systems, Information/Data Security (InfoSec), Internet Security, Intrusion Detection Systems, Intrusion Detection and Prevention (IDP), Intrusion Prevention Systems, Lift/Move 50 Pounds, Maintain Compliance, Maintenance Services, Malware, Mentoring, Microsoft Product Family, Microsoft Windows Azure, Network Monitoring, Network Security, On Call, Operating Systems, People Management, Presentation/Verbal Skills, Problem Solving Skills, Process Improvement, Protective Services, Regulatory Compliance, Requirements Management, Risk Analysis, Risk Management, Security Analysis, Security Attacks, Security Information and Event Management (SIEM), Security Monitoring, Standards Development, State Laws and Regulations, Technical Leadership, Time Management, Training/Teaching, U.S. National Institute of Standards and Technology (NIST), Writing Skills
LOCATION
SC
POSTED
30+ days ago

Job Description Summary

The Information Security SpecialistAnalyst III reports to the Manager Security Operations. Under indirect supervision, the Information Security SpecialistAnalyst III provides a variety of operational compliance and consultative functions. This position designs, implements, manages, and monitors technical, administrative, and physical controls to protect the confidentiality, integrity, and availability of the organizations information assets. This role may be required to provide rotating 24x7 on-call support.

 

Job Description

We are seeking a highly skilled and experienced Senior Information Security Analyst to join our team. This role is critical in safeguarding our complex healthcare IT environment and ensuring compliance with industry standards.

 

Key Responsibilities

45 - Network Security Monitoring and Incident Response

• Serve as a lead escalation point for security incidents, overseeing detection, investigation, containment, and remediation within a CrowdStrike EDR environment across a healthcare infrastructure. Experience with Microsoft Defender for Endpoint EDR is also desired.

• Analyze findings from security monitoring systems, including Intrusion Detection, Prevention Systems (IDPS), and Security Information Event Management (SIEM) consoles to identify and respond to potential security incidents and data breaches.

• Perform cyber security incident handling, tracking, and reporting.

• Utilize professional judgment and institutional knowledge to assess risk levels, conduct forensic investigations, isolate malware, identify attack vectors, provide guidance on remediation planning, and prioritize remediation efforts.

• Respond to relevant service requests received from end users, e.g., for investigation of security events.

• Collaborate with internal Security Operations Center (SOC) teams and external Managed Security Service Providers (MSSPs) to contain and remediate security incidents.

20 - Security Technology Management

• Configure, manage, and optimize SIEM platforms, such as CrowdStrike and/or Microsoft Sentinel, to enhance threat detection and response capabilities.

• Lead and manage large-scale security-related projects, including tool implementations, upgrades, and process improvements.

10 - Vulnerability Management

• Conduct vulnerability assessments to identify security risks and report findings to system owners.

• Manage workflows to ensure that protected assets are properly assessed in a timely manner.

15 - Threat Analysis

• Continuously evaluate and update analytics to counter evolving Threat Actor tactics, techniques, and procedures (TTPs).

• Perform risk assessments and translate business requirements into effective security controls.

• Maintain comprehensive documentation and present findings to stakeholders in a clear and actionable manner.

10 - Security Awareness

• Create and deliver security awareness training for technical and non-technical audiences.

 

Required Education, Skills, and Work Experience

A Bachelors degree in information security, information assurance, computer science, or a related field with 5 years of IT security experience or 10 years of hands-on experience in information security or related IT experience required. At least 6 years of directly related IT security experience or a Masters degree in information security, information assurance, computer science, or a related field and 3 years of IT security experience required.

 

Advanced Knowledge and Skills

  • Advanced knowledge of information security principles, risk management, and regulatory compliance (HIPAA, FERPA, NIST, etc.).

  • Strong analytical and problem-solving skills with the ability to make decisions under pressure.

  • Hands-on experience with CrowdStrike EDR, SIEM, IDS, IPS, vulnerability management, and threat intelligence tools.

  • Familiarity with cloud security, Azure, AWS, and identity management solutions.

  • Advanced understanding of the administration and securing of various operating systems and enterprise applications with advanced security best practices.

  • Excellent written and verbal communication skills with the ability to translate technical findings into business-relevant language.

  • Mentor junior analysts and contribute to the development of security standards, procedures, and playbooks.

 

Highly Desired Certifications

  • CISSP, CISM, GIAC, or equivalent.

 

Physical Requirements

Mobility & Posture

  • Standing: Continuous

  • Sitting: Continuous

  • Walking: Continuous

  • Climbing stairs: Infrequent

  • Working indoors: Continuous

  • Working outdoors: Temperature extremes: Infrequent

  • Working from elevated areas: Frequent

  • Working in confined, cramped spaces: Frequent

  • Kneeling: Infrequent

  • Bending at the waist: Continuous

  • Twisting at the waist: Frequent

  • Squatting: Frequent

  • Manual Dexterity & Strength

  • Pinching operations: Frequent

  • Gross motor use fingers, hands, Continuous

  • Firm grasping fingers, hands: Continuous

  • Fine manipulation fingers, hands: Continuous

  • Reaching overhead: Frequent

  • Reaching in all directions: Continuous

  • Repetitive motion: Hand, wrists, elbows, shoulders: Continuous

  • Full use of both legs: Continuous

  • Balance & coordination: Lower extremities: Frequent

  • Lifting & Force Requirements

  • Lift, carry 50 lbs. unassisted: Infrequent

  • Lift, lower 50 lbs. from floor to 36": Infrequent

  • Lift up to 25 lbs. overhead: Infrequent

  • Exert up to 50 lbs. of force: Frequent

 

Selected Positions

  • Olfactory smell function: Continuous

  • Respirator use qualification: Continuous

  • Work Environment & Conditions

  • Effective stress management: Continuous

  • Rotating shifts: Frequent

  • Overtime as required: Frequent

  • Latex-safe environment: Continuous

 

Equal Opportunity Employer

The Medical University of South Carolina is an Equal Opportunity Employer. MUSC does not discriminate on the basis of race, color, religion, or belief, age, sex, national origin, gender identity, sexual orientation, disability, protected veteran status, family, or parental status, or any other status protected by state laws and/or federal regulations. All qualified applicants are encouraged to apply and will receive consideration for employment based upon applicable qualifications, merit, and business need.

 

E-Verify Program

Medical University of South Carolina participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees. For further information about the E-Verify program, please click here: http://www.uscis.gov/e-verify/employees

About the Company

M

Medical University of South Carolina