Summary: 

The Security Analyst is responsible for assessing information security risk, facilitating remediation of identified vulnerabilities, and continuously monitoring the organization’s security posture. 

This role performs vulnerability and risk assessments across networks, systems, and applications using established security tools and methodologies. The Security Analyst documents findings, provides remediation recommendations, and tracks mitigation efforts through completion. The position also supports audits, compliance initiatives, and client-facing security inquiries. 

Essential Duties and Responsibilities: 

• Monitor and investigate security alerts 

• Respond to client security questionnaires 

• Monitor physical access requirements for corporate office environment  

• Provide independent testing and auditing of security control effectiveness including policy compliance, intrusion detection, and selective spot sample testing of information security controls 

• Assist in operational and performance management of security components of vRad Technology Platform 

• Assist in the designing, development, deployment, and utilization of monitoring and alerting tools for performance management and issue identification of security components 

• Maintain technical understanding of Information Security standards as it relates to company compliance requirements such as HIPAA, SOX, and SOC2.  

• Provide 24/7 Service Restoration support in the event of vRad Technology Platform outages or major issues 

• Participate in the development and implementation of disaster recovery and business continuity procedures as they pertain to the infrastructure for vRad 

• Collaboration with other vRad departments and team members in reporting and resolving security, hardware, software and operational issues 

• Maintain working knowledge of vRad’s business model and functionality of core Technology Platform components 

• Other duties as assigned 

Qualifications/Education: 

• Bachelor’s Degree preferred 

• CompTIA Security+ certification preferred; required to obtain within 6 months of employment.  

• CompTIA Network+ certification preferred; required to obtain within 12 months of employment.  

• Cisco Certified Network Associate (CCNA) preferred 

• Commitment to continued education as it relates to security and healthcare 

• Experience interacting with enterprise security solutions such as 

• Endpoint protection 

• IDS/IPS 

• Vulnerability scanning 

• File Integrity Monitoring 

• SEIM  

• Enterprise asset management 

• Knowledge of common vulnerabilities and exploitation techniques 

• Forensics and investigation exposure 

Job Classification: 

Light- Exerting up to 20 pounds of force occasionally, and/or up to 10 pounds of force frequently and/or a negligible amount of force constantly.  A job is light if it involves less than or up to the indicated pounds of force, and one or more of the following apply; walking or standing to a significant degree, sitting and pushing/pulling arm or leg controls, or constant pushing and pulling to maintain a production rate even when weight is negligible.