Job Description - Information Security Analyst II (Security / Identity Access Management (IAM) Analyst) (240002LM)

Description

The Information Security Analyst II, Workday is responsible for configuring, maintaining, and advising on security within the Workday application. This includes managing domain security policies, roles, and role assignments. The analyst will coordinate with vendors, ensure compliance with divisional and data security policies, and participate in report reviews to maintain security and data privacy standards.

The Information Security Analyst II supports the InfoSec mission of securing the patient experience. This position executes tasks associated with analysis and remediation of information security risks that could lead to compromise of Children's National systems. Individuals in this position will execute tasks including the cataloging of risks, identification and remediation of vulnerabilities, securing of data, and establishment of policies and standards.

Qualifications

Minimum Education
Bachelor's Degree in a computer science, math, engineering, or another relevant discipline or equivalent training and work experience (Required)

Minimum Work Experience
3+ years of experience in cybersecurity with a focus on vulnerability management, cybersecurity operations, analysis, forensics and/or investigations (Required)

Required Skills/Knowledge
Some demonstrated ability to apply key cybersecurity practices, controls, and frameworks
Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related concepts to technical as well as nontechnical audiences
Understanding and some application of practices associated with cybersecurity auditing, compliance, and policy
Understanding of and some application of key practices associated with risk assessment, vulnerability management, penetration testing, and threat identification.
Understanding and some application of controls and practices associated with access management, active directory, privileged account management, and authentication
Understanding and some application of key practices associated with incident response, risk remediation, business continuity, disaster recovery, and cyber operations.

Functional Accountabilities

1. Responsible for tasks involved in the identification, documentation, and reporting of cyber risks
2. Execute tasking for development and documentation of cybersecurity policies, standards, and procedures.
3. Engage directly with other CNH business units to ensure security of assets, applications, and data
4. Responsible for the documentation of procedures associated with managing access to CNH systems, data, and other assets
5. Engages in tasks associated with cybersecurity incidents, as required

Organizational Accountabilities

1. Anticipate and respond to customer needs; follows up until needs are met

Teamwork/Communication

1. Demonstrate collaborative and respectful behavior
2. Partner with all team members to achieve goals
3. Receptive to others’ ideas and opinions

Performance Improvement/Problem-solving

1. Contribute to a positive work environment
2. Demonstrate flexibility and willingness to change
3. Identify opportunities to improve clinical and administrative processes
4. Make appropriate decisions, using sound judgment
5. Use resources efficiently
6. Search for less costly ways of doing things

Safety

1. Speak up when team members appear to exhibit unsafe behavior or performance
2. Continuously validate and verify information needed for decision making or documentation
3. Stop in the face of uncertainty and takes time to resolve the situation
4. Demonstrate accurate, clear and timely verbal and written communication
5. Actively promote safety for patients, families, visitors and co-workers
6. Attend carefully to important details - practicing Stop, Think, Act and Review in order to self-check behavior and performance

Primary Location

Maryland-Silver Spring

Work Locations

Inventa Towers, 1 Inventa Place, Silver Spring 20910

Job

Information Technology

Organization

Operations

Position Status: R (Regular) - FT - Full-Time

Shift: Day

Work Schedule: Monday - Friday; 9am - 5pm

Job Posting

Oct 8, 2024, 5:44:26 PM

Full-Time Salary Range

85404.8 - 142334.4

Childrens National Hospital is an equal opportunity employer that evaluates qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law.

Please note that it is the policy of Children's National Hospital to ensure a “drug-free” work environment.