Providence Health & Services Information Security Analyst in Beaverton, Oregon
Providence is calling an Information Security Analyst to one of our locations in the Seattle area, Portland, OR, or Irvine, CA.
We are seeking an Information Security Analyst who will support enterprise and regional requirements. Working with more experienced colleagues, the Information Security Analyst is expected to contribute to the development, maintenance and implementation of the overall system-wide information security program needed for the protection of Providence St. Joseph Health.
The Information Security Analyst demonstrates basic healthcare/business acumen and awareness. They can adequately assess information security risk while considering health system operational needs and adherence to regulatory requirement, and is able to articulate expected impacts of policies and controls on the operations of the effected area(s) of the business. They understand when to seek the guidance of a more experienced colleague and demonstrate progressive knowledge and proficiency in their duties.
The Information Security Analyst will utilize various tools and methods to provide support to end users, technology teams, and projects on a regular and ad hoc basis. Responsible for working collaboratively and effectively with caregivers across the enterprise to conduct information security activities such as, but not limited to analyzing information security risk and threat data, monitoring and investigating anomalies, developing and promulgating security controls and risk mitigation recommendations, establishing standards, determining information security-related business needs and requirements for potential projects/initiatives, contributing to the system-wide information security training and awareness program, and evaluating and working with regional and local partners to establish and exercise baseline business continuity management capabilities, and enhanced physical security programs.
In this position you will have the following responsibilities:
Work collaboratively as part of a team sometimes in a lead role/moderate supervision/provides relevant input and feedback in the following areas and activities:
Identification, development, and implementation of needed enterprise-wide security programs and projects. Elements include budget, resource plans, work-plans, schedules and supporting training and documentation.
Develop business and technical requirements; creates use cases, test cases and QA criteria to support project implementation while driving health system objectives relative to standardization, integration, efficiency and regulatory compliance.
Investigate and propose technologies and methodologies that can enhance PSJH’s security and/or business continuity posture.
Develop and maintain documentation for all assigned responsibilities.
Work in cross-functional/cross-departmental teams across the system to integrate information security requirements into technical and business initiatives.
Contribute to the creation, documentation, implementation and maintenance of procedures and processes that ensure security control effectiveness.
Complete work assignments for assigned security domains.
Contribute to the execution activities in the areas of security risk identification, analysis, classification, and mitigation strategies. Completes risk activities as assigned.
Provide consultation for departments with regard to the applicability of security regulatory requirements, health system security policies, and security best practices.
Contribute information pertinent to formal security training and provide informal information security awareness information to PSJH caregivers as needed. Can accurately address questions related to published material.
Required qualifications for this position include:
Bachelor's Degree in CS, MIS, Information Security, EE, Business or related field or equivalent education/experience.
5 years Information Security.
Demonstrated experience working independently and in collaboration with cross-functional teams. In addition, has demonstrated experience providing in-depth analysis of complex issues which are then presented to cross-functional teams.
Demonstrated experience providing in-depth analysis of complex issues which are then presented to cross-functional teams.
Demonstrated experience in service delivery, process definition, and basic system development.
Hands-on experience with security risk management practices.
Certified Information Systems Security Professional, or
Certified Information Systems Auditor.
Either of the above or one of the following:
Certified Information Security Manager (CISM), or
Certified Business Continuity Professional (CBCP), or
Master Business Continuity Professional (MBCP), or
PCI-ISA designation ( Payment Card Industry-Internal Security Assessor), or
PCIP (Payment Card Industry Professional).
Preferred qualifications for this position include:
5 years Information Security, Healthcare preferred.
Healthcare industry knowledge.
About the department you will serve.
Providence Shared Services provides a variety of functional and system support services for our Providence family of organizations across Alaska, California, Montana, New Mexico, Oregon, Texas and Washington. We are focused on supporting our Mission by delivering a robust foundation of services and sharing of specialized expertise.
We offer comprehensive, best-in-class benefits to our caregivers. For more information, visit
As expressions of God’s healing love, witnessed through the ministry of Jesus, we are steadfast in serving all, especially those who are poor and vulnerable.
Providence is a comprehensive not-for-profit network of hospitals, care centers, health plans, physicians, clinics, home health care and services continuing a more than 100-year tradition of serving the poor and vulnerable. Providence is proud to be an Equal Opportunity Employer. Providence does not discriminate on the basis of race, color, gender, disability, veteran, military status, religion, age, creed, national origin, sexual identity or expression, sexual orientation, marital status, genetic information, or any other basis prohibited by local, state, or federal law.
Job Category: Information Security
Other Location(s): Oregon-Beaverton, California, Oregon, Washington-Redmond, Washington-Seattle, Washington, California-Irvine
Req ID: 321027