Information Security Specialist

Job Description

Job Description

Community Health Network of Connecticut, Inc. (CHNCT) is currently seeking an Information Security Specialist. This is a full-time, hybrid position requiring 2 days per week onsite in our Wallingford, CT office.

Primary Responsibilities:

• Under the direction of the Director of Information Security, the Information Security Specialist is responsible for operations, auditing, and technical monitoring of CHNCT’s Information Security and related activities.
• These activities include but are not limited to implementing and maintaining Information Security related systems, policies and processes in compliance with applicable security regulations (i.e., HIPAA and State of CT Security laws), and establishing and developing security-related operating procedures and standards.
• Works directly with contracted vendors for the implementation and maintenance of security hardware, software and services.
• Assists with the selection and evaluation of security related state-of-the-art systems.

Tasks Performed:

• Monitors and maintains all aspects of the information security program.
• As a COMPUTER SECURITY INCIDENT RESPONSE TEAMS (CSIRT) member, logs and responds to incidents including communication of potential violations of the company’s information security policies to CHNCT’s Chief Information Security Officer.
• Independently acts to prevent or deter security breaches or intrusions that threaten the integrity of mission critical data or applications.
• Monitors email and Data Loss Prevention logs and responds to potential policy or regulatory violations.
• Monitors Phishing alerts and end user notifications.
• Audits network and file permissions structure and password and account maintenance.
• Assists in the development and testing of the Disaster Recovery and Business Continuity Plans.
• Processes exception requests and performs risk analysis on these and other customer requests.
• Actively reviews threat alerts and determines relevance and criticality to the organization.
• Contributes to project activities as a project team member or ad-hoc as requested.
• Other duties as assigned.

Essential Functions:

• Implementation and maintenance of Information security related software, hardware and systems.
• Systems include but are not limited to phishing identification and prevention, Internet content filtering, Data Loss Prevention (DLP), Intrusion Detection/Prevention (IDS/IPS), Endpoint Detection and Response (EDR), Log Management, and Advanced Threat Mitigation.
• Duties include information security policy administration and configuration, security related server management, Disaster Recovery Planning, proactively identifying or rapidly responding to customer security issues and security events.

Desired Education: 2 years post-secondary schooling

Desired Degree: Associate’s degree

Desired Major: Computer Assurance or Computer Science

Desired Job Experience: 3+ years’ direct information security experience, preferably in healthcare

Other Qualifications: Security+ or other security-related certification. Hands on exposure to providing information security operational support in a medium to large scale healthcare organization preferred. Knowledgeable in the management and setup of security related software and hardware Working knowledge of security administration, DLP, or other information security systems. Knowledge of EDR, EPP, IDS/IPS, AD and network infrastructure. Detail oriented, with meticulous attention to system and procedure documentation.

CHNCT Offers Great Benefits:

• Medical, dental and vision coverage options
• Flexible spending and health savings accounts
• Group term life insurance
• A 401(k) plan with company-match and immediate vesting
• Voluntary accidental injury coverage
• Tuition reimbursement and continuing education opportunities
• A generous paid-leave bank and company holidays
• Wellness program

We are dedicated to having a workplace where everyone feels valued, respected, and empowered to succeed. We embrace a wide range of perspectives and backgrounds, ensuring fair treatment and opportunities for all employees. We value our team’s rich array of experiences and viewpoints, which contribute to our innovative and collaborative environment.