Description: Support the Manager, Information Security in maintaining the confidentiality, availability, and integrity of the District’s information assets.

Typical Duties:

• Assist in the development of data security procedures for the Information Technology Department. Review and update applicable District policies to promote regulatory compliance and information security best practices.
• Assist with testing and updating the Information Technology Department’s disaster recovery plan. Coordinate monthly tests of backup media and document test results.
• Assist with ongoing information security risk assessments and network vulnerability scans.
• Participate in the Computer Security Event Response Team (CSERT) as required, in order to address data security breaches. Investigate other information security matters at the request of District management.
• Assist auditors, consultants, and other third parties with information security reviews and investigations. Activities may include coordinating document requests, arranging interviews with key stakeholders, and reporting results to District management.

Qualifications:

• Bachelor’s degree from an accredited four-year college or university.
• Between 1 and 3 years work experience as a privacy-security compliance specialist, information security specialist, or information technology auditor. Experience in the health care industry is preferred.
• Knowledge of federal and state data security legislation including (but not limited to) HIPAA, PCI-DSS, and data breach notification laws is highly desirable.
• Familiarity with network architectures; Windows Active Directory; Windows-Linux server and desktop operating systems; IBM mainframes; Lawson and Siemens application suites is preferred.
• Knowledge of network vulnerability scanning tools including Qualys, Retina, and ISS is preferred.
• CISA and/or CISSP are preferred.
• Report writing skills are required. Must be able to summarize and communicate technical data to a non-technical audience.

JPS Health Network offers competitive salary and comprehensive benefits.

Please apply online at www.jpshealthnet.org. EOE

Link to the position

Applicants need to have a minimum of two years experience with information security technologies. B.S. in Computer Science, Information Systems or related field is required. CISSP, SSCP, or CISA certification is preferred. Essential is a solid foundation in information security practices, security architectures, computer forensics, network communications and architecture, incident response, and threat management, as are excellent communication skills, both oral and written.

For additional information and to apply online, please see the University Of Scranton's HR Position Vacancy List page: http://matrix.scranton.edu/humanresources/hr_vacancy_list.shtml.