Medical University of South Carolina logo
Medical University of South Carolina

The Medical University of South Carolina is an Equal Opportunity Employer. MUSC does not discriminate on the basis of race, color, religion or belief, age, sex, national origin, gender identity, sexual orientation, disability, protected veteran status, family or parental status, or any other status protected by state laws and/or federal regulations. All qualified applicants are encouraged to apply and will receive consideration for employment based upon applicable qualifications, merit and business need. Medical University of South Carolina participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees.

Information Security Specialist/Analyst III

Security AnalystSecurity AnalystFull TimeRemoteMid LevelTeam 10,001

Location

United States

Posted

5 days ago

Salary

0

Seniority

Mid Level

Job Description

Information Security Specialist/Analyst III

Medical University of South Carolina

Role Description The Information Security Specialist/Analyst III reports to the Manager, Security Operations. Under indirect supervision, the Information Security Specialist/Analyst III provides a variety of operational, compliance, and consultative functions. This position designs, implements, manages, and monitors technical, administrative, and physical controls to protect the confidentiality, integrity, and availability of the organization’s information assets. This role may be required to provide rotating 24x7 on-call support. We are seeking a highly skilled and experienced Senior Information Security Analyst to join our team. This role is critical in safeguarding our complex healthcare IT environment and ensuring compliance with industry standards. - 45% - Network Security Monitoring and Incident Response: - Serve as a lead escalation point for security incidents, overseeing detection, investigation, containment, and remediation within a CrowdStrike EDR environment across a healthcare infrastructure. - Experience with Microsoft Defender for Endpoint EDR is also desired. - Analyze findings from security monitoring systems, including Intrusion Detection/Prevention Systems (ID/PS) and Security Information Event Management (SIEM) consoles, to identify and respond to potential security incidents and data breaches. - Perform cyber security incident handling, tracking and reporting. - Utilize professional judgment and institutional knowledge to assess risk levels, conduct forensic investigations, isolate malware, identify attack vectors, provide guidance on remediation planning, and prioritize remediation efforts. - Respond to relevant service requests received from end users (e.g. for investigation of security events). - Collaborate with internal Security Operations Center (SOC) teams and external Managed Security Service Providers (MSSPs) to contain and remediate security incidents. - 20% - Security Technology Management: - Configure, manage, and optimize SIEM platforms (Crowdstrike and/or Microsoft Sentinel) to enhance threat detection and response capabilities. - Lead and manage large scale security-related projects, including tool implementations, upgrades, and process improvements. - 10% - Vulnerability Management: - Conduct vulnerability assessments to identify security risks and report findings to system owners. - Manage workflows to ensure that protected assets are properly assessed in a timely manner. - 15% - Threat Analysis: - Continuously evaluate and update analytics to counter evolving Threat Actor tactics, techniques, and procedures (TTPs). - Perform risk assessments and translate business requirements into effective security controls. - Maintain comprehensive documentation and present findings to stakeholders in a clear and actionable manner. - 10% - Security Awareness: - Create and deliver security awareness training for technical and non-technical audiences. Qualifications - A Bachelor's degree in information security, information assurance, computer science, or a related field with 5 years of IT security experience; or 10 years of hands-on experience in information security or related IT experience required, at least 6 of which must be directly related IT security experience; or a Master's degree in information security, information assurance, computer science, or a related field, and 3 years of IT security experience required. - Advanced knowledge of information security principles, risk management, and regulatory compliance (HIPAA, FERPA, NIST, etc.). - Strong analytical and problem-solving skills with the ability to make decisions under pressure. - Hands-on experience with Crowdstrike EDR, SIEM, IDS/IPS, vulnerability management, and threat intelligence tools. - Familiarity with cloud security (Azure, AWS) and identity management solutions. - Advanced understanding of the administration and securing of various operating systems and enterprise applications with advanced security best practices. - Excellent written and verbal communication skills, with the ability to translate technical findings into business-relevant language. - Mentor junior analysts and contribute to the development of security standards, procedures, and playbooks. Requirements - Highly Desired Certifications: CISSP, CISM, GIAC, or equivalent. Physical Requirements - Mobility & Posture: - Standing: Continuous - Sitting: Continuous - Walking: Continuous - Climbing stairs: Infrequent - Working indoors: Continuous - Working outdoors (temperature extremes): Infrequent - Working from elevated areas: Frequent - Working in confined/cramped spaces: Frequent - Kneeling: Infrequent - Bending at the waist: Continuous - Twisting at the waist: Frequent - Squatting: Frequent - Manual Dexterity & Strength: - Pinching operations: Frequent - Gross motor use (fingers/hands): Continuous - Firm grasping (fingers/hands): Continuous - Fine manipulation (fingers/hands): Continuous - Reaching overhead: Frequent - Reaching in all directions: Continuous - Repetitive motion (hands/wrists/elbows/shoulders): Continuous - Full use of both legs: Continuous - Balance & coordination (lower extremities): Frequent - Lifting & Force Requirements: - Lift/carry 50 lbs. unassisted: Infrequent - Lift/lower 50 lbs. from floor to 36”: Infrequent - Lift up to 25 lbs. overhead: Infrequent - Exert up to 50 lbs. of force: Frequent - Vision & Sensory: - Maintain corrected vision 20/40 (one or both eyes): Continuous - Recognize objects (near/far): Continuous - Color discrimination: Continuous - Depth perception: Continuous - Peripheral vision: Continuous - Hearing acuity (with correction): Continuous - Tactile sensory function: Continuous - Gross motor with fine motor coordination: Continuous Company Description If you like working with energetic enthusiastic individuals, you will enjoy your career with us! The Medical University of South Carolina is an Equal Opportunity Employer. MUSC does not discriminate on the basis of race, color, religion or belief, age, sex, national origin, gender identity, sexual orientation, disability, protected veteran status, family or parental status, or any other status protected by state laws and/or federal regulations. All qualified applicants are encouraged to apply and will receive consideration for employment based upon applicable qualifications, merit and business need. Medical University of South Carolina participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees.

Related Job Pages

More Security Analyst Jobs

Full TimeRemoteTeam 501-1,000H1B No Sponsor

• Act as the first responder for customer support requests submitted via the service desk (ServiceNow). • Monitor the CrowdStrike detection queue and provide Tier 1 support for endpoint security inquiries. • Perform initial triage of low-to-medium severity alerts using established mini-playbooks. • Accurately document findings and categorize detections as Benign, an Event, or requiring escalation. • Escalate complex technical issues, unresolved user problems, and potential Incidents to senior Endpoint Security Operators for advanced investigation and response. • Assist senior operators by running pre-defined compliance reports, tracking task completion in the ticketing system, and helping to maintain accurate records for auditing purposes.

South Carolina
CACI International Inc logo

Document Management Analyst II

CACI International Inc

Expertise and Technology for National Security

Full TimeRemoteTeam 10,001+Since 1962H1B No Sponsor

• Obtain contractor support for administrative, processing, records management, and reporting activities that support daily HR operations. • Assist with processing and tracking personnel actions, including SF-52 and SF-50 transactions. • Generate, review, and reconcile HR reports; support data calls and audits. • Maintain electronic Official Personnel Folders (eOPFs) and HR records in accordance with federal requirements. • Track HR actions, maintain logs, schedule meetings, and prepare routine correspondence. • Respond to routine HR inquiries and refer complex matters to HR specialists, as appropriate. • Timely and accurate processing of assigned HR actions. • Regular status reports on completed and pending work. • Accurate maintenance of HR records and tracking systems. • Reports and reconciliations as requested by management. • Review documents for relevance according to established guidelines and criteria. • Perform legal and administrative duties as requested by attorneys for Section investigations and trials. • Assist with case organization and maintenance; plays integral role in preparing team for witness interviews, discovery, and trials. • Provide in-courtroom assistance, exhibit collection and review, and legal research as needed based on trial demands. • Utilize eDiscovery platforms to perform document review, communicating detailed summaries and analyses of findings. • Cultivate and maintain positive relationships with DOJ components, Federal agencies, counsel, and others as needed. • Organize and prioritize numerous tasks effectively and completes tasks under strict time constraints. • Work on multiple cases simultaneously and multi-task with minimal supervision. • Log and organize incoming and outgoing discovery productions. • Proofread material as needed for contextual, grammatical, and formatting errors.

United States
$28 / hour
Job Closed
Full TimeRemoteTeam 1,001-5,000Since 2002H1B No Sponsor

• Support the design and improvement of identity, access, profile, workflow, and integration processes; • Participate in initiatives to automate, standardize, and evolve IAM solutions; • Analyze opportunities to improve provisioning, review, approval, and access governance; • Support system integrations, define requirements, and validate identity controls; • Contribute to the evolution of RBAC, SoD, identity lifecycle, and access controls; • Support technical documentation, procedures, flows, and governance criteria; • Work closely with architecture, infrastructure, squads, governance, and IAM operations.

Brazil
Full TimeRemoteTeam 1,001-5,000Since 2002H1B No Sponsor

• Manage, review and improve firewall, IPS/IDS, NAC, segmentation and defense-in-depth controls; • Evaluate rules, policies, flows, exceptions and risks related to network security; • Support connectivity, segmentation, expansion, cloud, datacenter and environment integration projects; • Conduct technical analyses of network-related incidents, events, failures and exposures; • Define operational standards, documentation, metrics and improvement recommendations; • Interact with Infrastructure, Architecture, BlueOps, CSIRT and vendors; • Support hardening actions, attack surface reduction and visibility improvement;

Brazil