Senior Cyber Security Analyst

We are partnered with an innovative, nonprofit healthcare coverage and insurance company to bring on a Senior Cyber Security Analyst to join their team*. As a key player in their integrated care delivery and financing system, you will ensure the security of our systems and data, contributing to their commitment to data protection, compliance, and ethics. Your expertise will help protect sensitive healthcare information and maintain compliance with industry standards.

Responsibilities

• Provide technical consultation on system and data security.
• Implement and manage security controls and risk management strategies.
• Oversee Data Loss Prevention (DLP) technologies and policies.
• Conduct daily operations, maintenance, and monitoring of security systems.
• Perform security audits and vulnerability assessments.
• Ensure compliance with relevant regulations and standards.
• Collaborate with vendors on security solutions.
• Configure and manage DLP technology and policies.
• Develop and analyze security reports and alerts.
• Create and maintain security rules and guidelines.
• Monitor security events and provide guidance on IT security controls.
• Offer security consultation and update documentation.
• Educate staff on security principles and best practices.
• Enhance system security and manage change processes.
• Assess security deviations and align third-party security measures.
• Prepare and maintain audit documentation.

Required Qualifications

• Bachelor's degree in Information Technology, Information Security, or a related field.
• Proficiency with Microsoft Purview, M365 Teams, SharePoint Online, OneDrive, Exchange Online, Microsoft Defender for Cloud Applications, Microsoft Power Platform, and Microsoft CoPilot.
• Experience with Data Security Posture Management for AI.
• Knowledge of Windows Server, Linux Server, and Microsoft Office (Word, Excel, Access, PowerPoint).
• Familiarity with ISO 27000, NIST, PMI, ITIL, CMMI, OWASP, CoBit, HIPAA, PCI, JCAHO, NCQA, and NACHA standards.
• CISSP or CISA certification.
• Experience with ServiceNow and Microsoft Azure.
• Proficiency in automation tools such as PowerShell and Python.
• Knowledge of Databricks Security, Microsoft Intune, Microsoft PKI, and Email Security Gateways.

*This is a hybrid role out of the client's Minnesota office.