We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
#alert
Back to search results

Information Security Analyst I - Governance, Risk, and Compliance (GRC)

Universal Health Services
paid time off, 401(k)
United States, Pennsylvania, Tredyffrin
Nov 24, 2024
Responsibilities

One of the nation's largest and most respected providers of hospital and healthcare services, Universal Health Services, Inc. (UHS) has built an impressive record of achievement and performance. During the year, UHS was again recognized as one of the World's Most Admired Companies by Fortune; and listed in Forbes ranking of America's Largest Public Companies. Operating acute care hospitals, behavioral health facilities, outpatient facilities and ambulatory care access points, an insurance offering, a physician network and various related services located all over the U.S. States, Washington, D.C., Puerto Rico and the United Kingdom. www.uhs.com

http://www.uhsinc.com.

The Corporate Information Services Department is seeking a dynamic and talented Information Security Analyst I.

The Information Security Analyst I participates in the identification, implementation, maintenance, and support of technologies designed to protect the confidentiality, integrity or availability of UHS and affiliates' information systems. Works with technical and non-technical staff to insure that deployed technologies are effectively and efficiently providing the intended controls consistent with established policies and procedures. Where appropriate, trains and supports technical staff in UHS affiliated locations to deploy, manage and support selected technologies. May oversee the technical aspects of tasks assigned to less experienced staff or contractors on projects, systems or applications assigned.

Key Responsibilities include:

  • Maintains selected information security technologies within guidelines of policies and in keeping with good project management principles. Monitors the resolution of maintenance or enhancement issues assigned by the UHS Customer Support Center.
  • Periodically reviews deployed security technologies to insure that the solutions continue to provide the intended protections efficiently and effectively.
  • Identifies gaps in protection, and recommends solutions to remediate or mitigate the risks associated with the protection gaps.
  • Assists more experienced members of the Information Security Team implement and support new information security technologies or processes.
  • Works with staff at all levels in the organization, vendors and contractors to insure protections are effective, efficient and non-disruptive to the appropriate duties, rights and mission of the individuals and the organization(s) affected.

Qualifications

Position Requirements:

  • Bachelor's degree in Information Systems Security and Risk Management, Computer Science, or related field required.
  • Minimum of 1-3 years' experience with desktop, server and/or network security administration in a mixed computing environment.
  • Experience managing and supporting some or all of the following or similar information security technologies or processes:
    • Anti-malware protections and analysis
    • Web filtering and security
    • Vulnerability scanning and management
    • Encryption technologies for data at rest and data in transit
    • Mobile device and removable media protection or management systems
    • Authentication - including various forms of SSO and MFA
    • Cloud application security
    • Security Information and Event Management (SIEM) systems
    • Interpreting Common Vulnerabilities and Exposures (CVE ) data
    • Device control
    • Data Loss Prevention (DLP)
    • Forensic analysis
  • Familiarity with risk assessment and risk management concepts or processes.
  • Working knowledge of various regulatory security requirements - particularly Sarbanes-Oxley (SOX), HIPAA, and HITECH.
  • Working knowledge of common cyber security frameworks such as HITRUST, NIST, CSC20, or others.
  • Working knowledge of scripting languages such as Python, PowerShell, and VB is a plus.
  • Ability to prioritize multiple tasks and be detail oriented.
  • An information security certification is a plus -- to demonstrate proficiency and knowledge of information security best practices and concepts.
  • Excellent communication, interpersonal and project management skills

Travel Requirements: Up to 5% - 10% US - to field locations may be necessary to complete assigned project

This opportunity provides the following:

  • Challenging and rewarding work environment
  • Growth and development opportunities within UHS and its subsidiaries
  • Competitive Compensation
  • Excellent Medical, Dental, Vision and Prescription Drug Plan
  • 401k plan with company match
  • Generous Paid Time Off

*UHS is a registered trademark of UHS of Delaware, Inc., the management company for Universal Health Services, Inc. and a wholly-owned subsidiary of Universal Health Services, Inc. Universal Health Services, Inc. is a holding company and operates through its subsidiaries including its management company, UHS of Delaware, Inc. All healthcare and management operations are conducted by subsidiaries of Universal Health Services, Inc. To the extent any reference to "UHS or UHS facilities" on this website including any statements, articles or other publications contained herein relates to our healthcare or management operations it is referring to Universal Health Services' subsidiaries including UHS of Delaware. Further, the terms "we," "us," "our" or "the company" in such context similarly refer to the operations of Universal Health Services' subsidiaries including UHS of Delaware. Any employment referenced in this website is not with Universal Health Services, Inc. but solely with one of its subsidiaries including but not limited to UHS of Delaware, Inc.

UHS is not accepting unsolicited assistance from search firms for this employment opportunity. Please, no phone calls or emails. All resumes submitted by search firms to any employee at UHS via-email, the Internet or in any form and/or method without a valid written search agreement in place for this position will be deemed the sole property of UHS. No fee will be paid in the event the candidate is hired by UHS as a result of the referral or through other means.

EEO Statement

All UHS subsidiaries are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates. UHS subsidiaries are equal opportunity employers and as such, openly support and fully commit to recruitment, selection, placement, promotion and compensation of individuals without regard to race, color, religion, age, sex (including pregnancy, gender identity, and sexual orientation), genetic information, national origin, disability status, protected veteran status or any other characteristic protected by federal, state or local laws.

We believe that diversity and inclusion among our teammates is critical to our success.

Notice

At UHS and all our subsidiaries, our Human Resources departments and recruiters are here to help prospective candidates by matching skillset and experience with the best possible career path at UHS and our subsidiaries. We take pride in creating a highly efficient and best in class candidate experience. During the recruitment process, no recruiter or employee will request financial or personal information (Social Security Number, credit card or bank information, etc.) from you via email. The recruiters will not email you from a public webmail client like Hotmail, Gmail, Yahoo Mail, etc. If you are suspicious of a job posting or job-related email mentioning UHS or its subsidiaries, let us know by contacting us at: https://uhs.alertline.com or 1-800-852-3449.

Applied = 0

(web-5584d87848-9vqxv)