Healthcare Information Security Analyst I - FT -Day Shift
: Job Details :

HOURLY RANGE: $35.48 - $48.52 DISTINGUISHING FEATURES OF THE CLASS: The work involves providing for the security of the computer systems and network for the Health Information Systems Department at the Erie County Medical Center Corporation (ECMCC). The incumbent plans and executes security measures to protect the computer systems and network against infiltration, viruses, malware and cyberattacks. The incumbent monitors computer systems and network proactively looking for potentially dangerous threats and determines the risk and remediation activities. The incumbent also researches information technology security vulnerabilities, alerts and threat trends. Supervision is not a function of this position. Work is performed under the direct supervision of the Healthcare Information Security Manager or other higher-level Healthcare Information Security personnel. Does related work as required. TYPICAL WORK ACTIVITIES: Monitors enterprise compliance with information technology security policies and procedures for hospital systems and infrastructure; Deploys information technology security controls and processes for hospital systems and infrastructure; Monitors information technology systems, network and processes for security events; Assists with risk assessments to identify vulnerabilities or security exposures; Monitors information technology logs and reports; Documents and monitors security controls, reports and processes; Performs account access review audits to ensure proper functioning of data processing activities and security measures; Coordinates and documents application access compliance across critical applications portfolio; Safeguards system security and improves overall server and network efficiencies by training staff and promoting security awareness; Reviews violations of security procedures and provides training to ensure violations do not occur; Assists with security documentation and technical drawing updates. FULL PERFORMANCE KNOWLEDGES, SKILLS, ABILITIES AND PERSONAL CHARACTERISTICS: Thorough knowledge of ECMCC policies and procedures for operation and support of secure data networks, systems and applications; thorough knowledge of ECMCC information technology security domains; ability to train others in tech-related topics; working knowledge of information security concepts, protocols and practices; working knowledge of information technology security management tools and products; working knowledge of enterprise-wide integrated application systems; working knowledge of computer security threats and solutions; ability to perform information technology risk assessments and respond to security incidents; ability to communicate effectively, both orally and in writing; ability to establish and maintain effective working relationships with a diverse constituency; ability to utilize a variety of electronic software applications; sound professional judgment; capable of performing the essential functions of the position with or without reasonable accommodation. MINIMUM QUALIFICATIONS:

• Possession of a Bachelor's Degree* in Information Technology (including Artificial Intelligence related programs), Computer Science, Cybersecurity or closely related field and six (6) months experience in information security**; or:
• Possession of an Associate's Degree* in Information Technology (including Artificial Intelligence related programs), Computer Science, Cybersecurity or closely related field and two (2) years of experience in systems software, systems analysis or application programming, of which six (6) months experience was in information security**.

**Information security, for the purpose of qualifying applications, is defined as the processes designed and implemented to protect information, systems and networks against unauthorized access, use or disruption utilizing various forms of technology. NOTE*: Your degree must have been awarded by a college or university accredited by a regional, national or specialized agency recognized as an accrediting agency by the U.S. Department of Education/U.S. Secretary of Education.If your degree was awarded by an educational institution outside the United States and its territories, you must provide independent verification of equivalency.A list of acceptable companies who provide this service can be found on the internet at must pay the required evaluation fee. NOTE 2: Verifiable part-time and/or volunteer experience will be pro-rated toward meeting full-time experience requirements.