Cabinet Peaks Medical Center is looking for a Security Analyst to join our IT team! Under the guidance of the IT manager, assists with identifying and detecting security incidents and security weaknesses across the computing infrastructure and for receiving, reviewing, and responding to cybersecurity incidents. Keeps current with the latest information security trends to provide a secure environment for CPMC patients and staff. Maintains the highest standards of professionalism, integrity, and confidentiality, assisting with the mitigation of cyber threats and ensuring compliance with privacy and security laws. This role is also responsible for educating end users by conducting quarterly cybersecurity education and phishing attempts. Major Job Duties & Responsibilities Customer Relations/Satisfaction Provides interpersonal care/service including friendliness, respect, promptness, and courtesy to all patients and others. Promotes a cooperative working environment. Understands the value of teamwork and shows an enthusiasm and willingness to help the department function as a unit. Encourages and assists new staff members. Follow Through Resolves end-user problems relative to hospital standard software products. Responsible for timely and continued updating of the help desk database. Assist in development of policies, procedures, and training materials for applications. Information Services Department Assist with monitoring and responding to security alerts and events from various security tools and technologies. Performs triage and escalates when necessary Interface directly with CPMC employees when necessary, providing a high level of confidence and thoroughness during the investigative process. Work with IT team to perform analysis of security logs, network traffic, and endpoint data. Participate in the planning and design of enterprise security architecture. Assist IT team with the implementation of new detections, integrations, and to tune alerting for security controls. Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, playbooks, and procedures) under the direction of management and other IT staff, where appropriate. Document and report incident findings, actions taken, and lessons learned. Work with the training team to develop new information security training on policies and procedures. Participate in the planning and design of an enterprise business continuity plan and disaster recovery plan, under the direction of the management and other IT staff, where appropriate. Participate in the design and execution of vulnerability assessments, penetration tests, and information security audits. Serve as an on-call resource for major information security incidents. Initiative Willingly performs additional assignments not directly related to daily assignment when workload requires or requested by supervisor. Establish and maintain rapport with CPMC employees in order to establish their comfort level with new and existing systems usage and to address their information technology security needs and understanding to the fullest extent possible. Judgment Integrates the hospital's mission and vision into daily tasks through dedication to customer satisfaction, quality improvement, and collaborative working relationships. Professional Growth Keeps abreast of industry advancement through research, trainings, and vendor offerings. Attends required in-services and maintains competence in job requirements. Participates in department meetings. Recognizes own strengths and weaknesses through self-assessment. Keeps up to date with the current trends and developments in the profession. Technical Aspects Performs technical and advisory functions in the analysis and evaluation of standard products through the IT department. Responsible for assessment and timely resolution of user issues regarding security incidents. Assist in the needs assessment, definition of requirements, preparation of Vendor Requests for Information and/or Proposals and security evaluation of new applications and systems. Assist with performing investigations of suspicious events using security technologies, leveraging managed security services provider's (MSSP) tooling and intelligence. Troubleshooting Develops and recommends new procedures and techniques to improve the security effectiveness of existing processes. Collaborate with other security team members and IT staff to address security incidents and mitigation efforts. Serves as incident owner. Skills, Knowledge, & Abilities Technical Skills: Strong understanding of network protocols, operating systems, security tools, and cybersecurity concepts. Analytical Skills: Ability to analyze large datasets, identify patterns, and interpret security alerts. Problem-solving Skills: Capability to troubleshoot security issues and develop effective solutions. Communication Skills: Clear communication of security risks and recommendations to both technical and non-technical stakeholders. Staying Updated: Continuous learning to keep pace with evolving cyber threats and security technologies. Experience 3-5 years of similar or related experience. Educational Requirements Bachelor's degree in a computer related field. Certifications in cybersecurity (CEH, CompTIA Security+, CISSP) are desired. Schedule Typically Monday through Friday although hours and days may vary based on the needs of the department. Benefits Package Available. Cabinet Peaks Medical Center is committed to providing a safe, efficient, and productive work environment for all employees. To help ensure a safe and healthful working environment, each applicant to whom an offer of employment has been made will be required as a condition of employment to undergo a substance test. Additional pre-employment items may be required. Please contact Human Resources for details. Department CPMC Information Tec Employment Type PTREG Minimum Experience Mid-level Compensation $28.17-$39.44 DOE