Cybersecurity, Risk Management Analyst

The Information Security Risk Analyst reports directly to the Manager/Lead of IT Security Risk Management, supports the implementation, operations and continuous process improvement of the Cook Children's Information Security Risk Management Program. The Program seeks to minimize the risk of accidental or intentional disclosure of data to unauthorized individuals as related to the confidentiality, integrity and availability of information technology systems and/or services. The Information Security Risk Analyst will support program activities including threat identification, vulnerability assessment, risk analysis, risk management planning, risk monitoring, and third party risk analysis to ensure that Cook Children's is compliant with respect to identifying and mitigating risk as required by federal and state regulations. The Information Security Risk Analyst will conduct risk assessments while documenting and reporting within the appropriate timeframes and tools.

Education & Experience

• Bachelor's Degree or higher with a total of 1 years of experience developing, implementing or managing an organization's risk management program.
• 1 or more years of healthcare experience.
• 1 or more years of experience working with regulations including HIPAA/HITECH and PCI/DSS.
• 1 or more years of experience identifying, assessing and managing information security vulnerabilities.
• Knowledgeable at creating/establishing documentation repositories and technical writing.
• Knowledgeable in distilling technical subjects/risks into a non-technical discussion or write-up.
• Experience working with the industry Risk Security Frameworks.
• Ability to think critically and problem solve with a team-focused mentality.
• Takes responsibility and ownership of tasks delivering high quality results.
• Experience with matrix management and working with cross-functional teams.

Licensure, Registration, and/or Certification

• Professional certification such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), SANS GIAC Security Essentials (GSEC) required, and/or Security +.

Cook Children's is an EOE/AA, Minority/Female/Disability/Veteran employer.