Employee Log-In
Call Today 800.319.9955
We provide the BEST quality service.
Client Specific IT Solutions for Business & Government

Our Quality Commitment

View All Jobs   Job Search   Post Resume   Candidate Login  
Information Security Analyst Rensselaer, NY 
Posted:  2/20/2019
Category:  Analyst
Job Type:  Temp to Perm
Minimum Experience:  6
Required Education:  BS/BA Degree
Job Description

The Tidal team manages the New York State Health Exchange website, application development, database, and technical infrastructure for the state of New York. In addition to normal run and maintain functions, we are embarking on the evolution of the Health Exchange to facilitate a more efficient, modular, service oriented, rules based application design.
Job Description

The Vulnerability & Patch Management Lead will play a governance role in driving information security and vulnerability remediation. This position will report directly to the Program’s Information Systems Security Officer. In this role, you will be engaging with program employees, stakeholders, executives, and vendors to ensure the effective security and compliance management of vulnerabilities and security patches.  
Job Duties:
    •Assess Vendor Security Advisories for systems supporting the New York State of Health Exchange Program (NYSoH). Coordinate distribution of these advisories with all lines of service, including documentation and records pertaining to governmental compliance requirements.

    •Investigate threats and vulnerabilities to assist in prioritizing remediation actions.

    •Foster effective relationships with key stakeholders across a broad range of IT infrastructure, applications, processes, and operations. (See Technical Skills requirements below).

    •Work directly with technology subject matter experts and management in presenting vendor security advisories to ensure that the effective assessment, remediation, tracking, and archiving of identified vulnerabilities occurs in adherence with corporate change control policies and regulatory compliance requirements.

    •Compile metrics which directly relate to status of vulnerability management and remediation.

    •Present the progress of initiatives in writing and/or in presentation to senior leadership on a periodic basis.

    •Participate in the development, interpretation and dissemination of IS policy, standards and awareness throughout the business units.

    •Additional ad-hoc IS & Risk related initiatives and projects.

    •BA/BS in Information Systems or a related technical field.

    •Minimum 6 years’ experience working in an information security, information technology, or information risk management related field.

    •Demonstrated experience building and managing vulnerability management programs.

    •Ability to brief technical risks and issues to executives and business leaders.

    •Possession of industry certifications highly preferred. Including, but not limited to, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and Global Information Assurance Certification (GIAC).

    •Knowledge of healthcare industry, HIPAA, HITECH, MARS–E 2.0, and IRS Pub. 1075 is a plus.

Technical Skills
Demonstrated technical background in multiple security technologies, Windows/Unix operating systems, storage, databases, applications, and network architectures.

Job Requirements

For Additional Information, Contact
Casey Ryan

Login to Apply
User ID: 
Forgot password? 

Other Options
   Apply for this job
  Email this job
   Return to search results

Bookmark and Share

Return to search results | Email this job to a friend

Bookmark and Share
*Logged in members may also add jobs to their job cart