Sr. Information Security Analyst - Hybrid

At Vitalant, every role contributes to our life-saving mission of connecting donors to patients who depend on blood and biotherapies. As aSr. Information Security Analyst, you’ll help protect the systems and data that make this mission possible. In this critical role, you’ll identify and assess threats to Vitalant’s digital environment, strengthen our defenses through best practices and secure architecture, and serve as a trusted advisor across teams and with vendors. Your expertise will help ensure the security and integrity of the technology that supports our donors, staff, and patients every day. This position will have a hybrid work environment operating from the Scottsdale, AZ location 3 days per week and working from a remote/ at-home office 2 days per week. Our comprehensive total rewards support you, your family, and your future with: • Medical, dental, and vision insurance • 401K + 5% company match • Tuition assistance up to $5k per year • Free basic life and AD&D insurance • Free short-and-long-term disability insurance • Paid time off • Employee Resource Groups • Recognition and perks As a Sr. Information Security Analyst, you'll get to: • Support information security functions across the enterprise. • Define and promote security best practices, guiding application and infrastructure teams toward continuous improvement. • Evaluate proposed application solutions for compliance with company policies, standards, and regulations. • Maintain familiarity with Vitalant’s IT security tools, including firewalls, MFA, Intune, and network security systems. • Partner with Infrastructure Operations to reduce risks through encryption, access controls, network segmentation, and vulnerability management. • Participate in incident response, investigations, and compliance reviews related to security and privacy events. • Analyze attack trends and implement proactive technical and process countermeasures. • Assess emerging technologies to strengthen and align with Vitalant’s security architecture. • Support phishing prevention, detection, and employee awareness initiatives. • Oversee aspects of threat detection, response, and vulnerability management, including IoT and SIEM integration. • Manage vendor contracts and relationships with key security partners and agencies. • Identify and advance goals within the information security roadmap and maintain assigned sections of the risk register. Knowledge/ Education Bachelor’s degree or equivalent combination of education and experience required. Licenses/ Certifications Relevant information security certification (e.g. GIAC, CISSP) from a nationally recognized organization required or willingness to obtain with first year of employment. Experience • Eight years of progressive experience in Information Technology, Cybersecurity, Information Security, Information Assurance, related roles required. • Experience in Information Security, including firewall, intrusion detection/prevention systems, anti-malware products, forensics tools, data encryption, data loss prevention (DLP), virtual private networks (VPN), vulnerability management, multiple operating systems (Windows, UNIX, Linux, etc.), and directory services (Active Directory, LDAP), cloud security, artificial intelligence (AI), Internet of Things, leveraging managed detection and response, zero trust architecture (ZTA), identity and access management (IAM), and malicious phishing campaigns preferred. • Experience working in a regulated environment, preferably healthcare preferred. Skills/Abilities • Must possess the skills and abilities to successfully perform all assigned duties and responsibilities. • Must be able to maintain confidentiality. • Demonstrated understanding of networks and protocols, Microsoft O365 environment, cloud security, artificial intelligence (AI), data loss prevention, secure development lifecycle, MITRE ATT&CK framework, and risk management. • Demonstrated understanding of NIST Cybersecurity Framework, NIST 800-53, CIS Critical Security Controls, HIPAA Security Rule, and risk management fundamentals. • Strong business analysis skills. • Ability to work and communicate effectively in a collaborative team environment and as an individual contributor. • Resourceful, creative, innovative, results driven and adaptable. About Us Vitalant is one of the nation’s largest nonprofit blood and biotherapies healthcare organizations, providing hospitals and patients across the U.S. a safe blood supply, specialized laboratory services, transfusion medicine expertise and world-renowned research. We have a network of 115 donation centers across the U.S. and host approximately 60,000 blood drives annually. Vitalant provides blood and special services to patients in more than 900 hospitals across the U.S. where millions of people depend on blood donations from our generous donors. Job Posting Disclaimer Please note: Vitalant does not currently hire individuals who reside in the following states — Alabama, Alaska, Delaware, Hawaii, Kansas, Maine, Massachusetts, Nebraska, Oklahoma, Rhode Island, Utah, and Vermont. Vitalant is committed to fostering an inclusive workplace built on a foundation of respect, integrity, teamwork, and excellence. We create opportunities for employees of all backgrounds to feel valued, seen and heard. We believe this mission drives creativity and innovation, as employees experience an environment conducive to personal growth and career development. EEO/Disabled/Veterans Our organization is an equal employment/affirmative action employer. If you need accommodation for any part of the employment process because of a medical condition or disability, please send an e-mail [email protected] let us know the nature of your request. For more EEO information about applicant rights click here