You are viewing a preview of this job. Log in or register to view more details about this job.
Position Objective:
The Security Analyst will perform technical and procedural work of medium to advanced complexity, intended to reduce risk to the Health Care Authority's critical data assets. The position supports the organization's mission by ensuring the confidentiality, availability and integrity of critical citizen, state and medical provider information. Given the interconnected nature of health and human services systems, the position has the potential to impact external organizations.

Some of what you will do:
Working independently, with other HCA staff, or with outside agencies:
•          Configure, operate, troubleshoot, and maintain HCA's Security Information and Event Management system (SIEM).
  • Create connections between HCA's SIEM and data sources such as firewalls, servers, Active Directory, networking equipment, etc.
  • Develop baselines of normal activity to better identify what would be considered anomalous.
  • Create actionable alerts to notify staff of anomalous or non-compliant actions.
  • Investigate alerts, determine root cause, and remediate.
  • Continue to grow the use of the SIEM by researching its unused capabilities and implementing new alerting mechanisms of benefit to the agency.
  • Configure, operate, troubleshoot, and maintain HCA's vulnerability management solution.
  • Ensure the completion of vulnerability scans.
  • Prioritize scan results, and work with system owners to remediate.
•          Work with security vendors to determine appropriate licensing levels and to coordinate maintenance contract renewals.
•          Use web vulnerability scanners and other tools to evaluate web sites, services, and applications for security concerns such as cross site scripting, SQL injection attacks, poor encryption (https/SSL) implementation, etc.
•          Evaluate new software requests for security and compliance issues. Research software using National Vulnerability Database and other sources.
•          Resolve system security issues/problems/service tickets as identified by IT and end-user staff.
•          Determine root-cause of incident and take action to contain and mitigate the problem.
•          Collect forensic data if required.
•          Resolve security-related problem/incident/trouble tickets submitted by the HCA Service Desk.
•          Create security processes and procedures, and maintain a library of information security documents.
•          Identify and test feasibility of new security technologies which could lower HCA's overall risk profile if implemented.
•          Research new security threats and vulnerabilities, and report findings to the CISO.

Here is what we are looking for (Required Qualifications):
A Bachelor's degree majoring in computer science, information technology, or other relevant field AND two (2) years of information security experience such as user authentication and authorization administration, vulnerability management, information security system administration, penetration testing, or similar.
OR
An Associate's degree or completion of an accredited vocational training program in an information technology or related program and three (3) years of the above experience.
OR
Four (4) years of the experience listed above.
AND
Certification such as Security+, GISF, SSCP, or similar.

Desirable/Preferred Qualifications:
Knowledge of HIPAA or current HCA and/or Washington State systems and regulations.   
Experience implementing and administering network, host or applications security policies and standards.