"Alerted.org

UPMC is looking for an Information Security Analyst - Associate to join their team. This position will be mostly remote work however you will need to work ON-SITE 1-2 days out of the month. Prefer local candidates to PA due to onsite requirements. We are targeting candidates who have previous experience with ServiceNow or other ITSM products.

Description

Under the general direction of the management team and senior staff, the Information Security Analyst - Associate supports the Information Security Group's efforts to develop secure systems and networks through the use of automated tools, execution of security processes and procedures, and reporting.

Responsibilities:

+ Able to establish priorities and delegate tasks to the appropriate personnel or work independently as necessary.

+ Respond to Security Incident Handling Processes.

+ Develop automated routines for account administration efficiencies.

+ Provide Security Training and Awareness Program Delivery.

+ In the course of professional activities, conducts themselves in accordance with the highest standards of moral, ethical and legal behavior.

+ Develop and maintain service levels with the various user departments and Heath System business units, and creates reports on the attainment of those levels.

+ Ensure that all applicable Policies and Standards are strictly adhered to in the execution of their duties.

+ Perform low risk testing of network and system security.

+ Maintain current knowledge of security techniques and technologies.

+ Fulfill departmental requirements in terms of providing work coverage and administrative notification during periods of personal illness, vacation, or education.

+ Execute, monitor and maintain Intrusion Detection processes and procedures.

+ Test Security Plans presented by Application and System Support Representatives.

+ Report and investigate discrepancies to policy enforcement mechanisms; works with client to resolve issues.

+ Candidate must be highly motivated to apply process improvement (CMMI) to increase product and service quality to achieve business objectives.

+ Resolve access and security issues with Data Stewards.

+ Provide support as required by ISD's Disaster Recovery Plan.

+ Ensure Security Policies are implemented on systems and networks reviewed.

+ Monitor and maintain Security Police enforcement mechanisms and processes.

+ Provide on-call support at designated times in accordance with the policies and procedures of the Health System.

+ Provide service to ISD client community, patients, families and visitors, while protecting the integrity and confidentiality of all data and information through physical and electronic measures.

+ Security Administration, Management, and Governance Understand the various components of an effective IT security program and relate them to the organization's business process requirements. Compare plans for implementing IT security program elements to ensure that they effectively address program objectives. Participate in or perform with supervision tests of security safeguards in accordance with the established test plan and procedures, and document results.

Qualifications

* Typically either a 2 or 4 year degree with a concentration on Information Security or another Security related degree. Or 2- 3 years of equivalent work experience

* Prefer experience with ServiceNow or other ITSM products.

* Prefer someone who is proficient or has a baseline understanding of several scripting languages (IE C+, Python, Java, Powershell, SQL, bash, etc).

* Demonstrates and applies thorough understanding of information technology tools, best practices, and concepts.

* Completes on-going training on-the-job, through courses, self-study, certifications and/or advanced degrees to maintain and enhance technical and business capabilities.

* Participates in an On-Call Team rotation.

Licensure, Certifications, and Clearances:

CompTIA Network+ and Security+ certifications are preferred

Act 34

UPMC is an Equal Opportunity Employer/Disability/Veteran