Senior Cyber Security Analyst
Company: UW Medicine IT Services
Posted on: June 20, 2022
Req #: 206262 Department: UW MEDICINE IT SERVICES Appointing
Department Web Address: http://uwmits_hires.uwmedicine.org/ Job
Location: Bellevue, Harborview Medical Center, Health Sciences
Center, Other Location, Remote/Hybrid, Renton, Seattle - Downtown,
Seattle - Northgate, Seattle - Other, Seattle - Sand Point, Seattle
- South Lake Union, Seattle Campus, UW Medical Center - Montlake,
UW Medical Center - Northwest, UW Medicine Primary Care Job
Location Detail: Primary work location may be fully remote within
the US or at the Safeco Plaza Building on the corner of 4th and
Madison in downtown Seattle Posting Date: 04/28/2022 Closing Info:
Open Until Filled Salary: Salary is commensurate with education and
experience. Shift: First Shift Notes: As an employee you will enjoy
generous benefits and work/life programs. For detailed information
on Benefits for this position, click here. A higher degree of
All across UW Medicine, our employees collaborate to perform the
highest quality work with integrity and compassion and to create a
respectful, welcoming environment where every patient, family,
student and colleague is valued and honored.
UW Medicine's IT Services department has an outstanding opportunity
for an Senior Cyber Security Analyst!
UW Medicine's Information Technology Services (ITS) department is a
shared services organization that supports all of UW Medicine. UW
Medicine is comprised of Harborview Medical Center (HMC), UW
Medical Center-Montlake (UWMC-Montlake), UW Medical
Center-Northwest (UWMC-NW), Valley Medical Center (VMC), UW Primary
Care (UWPC), UW Physicians (UWP), UW School of Medicine (SOM) and
Airlift Northwest (ALNW). In addition, UW Medicine shares in the
ownership and governance of Children's University Medical Group and
Seattle Cancer Care Alliance (a partnership between UW Medicine,
Fred Hutchinson Cancer Research and Seattle Children's). ITS is
responsible for the ongoing support and maintenance of the
infrastructure and applications which support all of these
institutions, along with the implementation of new services and
applications that are used to support and further the UW Medicine
In collaboration with UW Medicine IT Services ('ITS') and under the
general guidance of the Information Security Manager, the primary
focuses of the Senior Cyber Security Analyst ('Sr. Analyst')
providing technical leadership and expertise for:
special assessments, unprecedented/non-routine engagements, and the
highly complex analysis work;
operational teams implementing and maintaining UW Medicine
information security/technology infrastructure;
the enterprise on the secure design of technical solutions,
applications, and network architecture;
research or review security controls, information systems, and
business practices for violations of information security policies,
standards, or regulatory requirements;
delivering expert or specialized security consulting and technical
services to technical, hospital, business, operations and vendor
staff and teams;
collaborating with cyber security analysts and engineers to conduct
vulnerability and risk assessment activities, with significant
impact to business operations for all UW Medicine and vendors;
designing, developing and implementing security tools, platforms
and methodologies drawing from industry requirements and frameworks
such as HIPAA, HITRUST, and NIST to identify and support the
mitigation of risks to patient care and critical operations;
deploying prescribed tools to discover system and/or software
vulnerabilities and inform and/or validate risk assessments
throughout the enterprise;
guiding team efforts to integrate threat information into
institutional vulnerability assessments, risk assessments and
guiding team efforts to integrate computer and software
vulnerability findings into the risk management program at UW
executing or supporting internal phishing simulations;
anddeveloping and delivering user training, security awareness
programs and UW Medicine-wide security documentation such as
policies, standards, and operating procedures.
Areas of responsibility include, but are not limited to:
improving business and executive leadership decisions and
prioritization through risk assessment, compliance, and
tracking and mitigating known and emergent threats to UW Medicine
information assets to support institutional threat awareness, risk
assessments, threat detection and analysis, incident response, and
cyber security operations;
guiding team support for projects, applications, and other ITS
technology efforts with information security expertise to ensure
that design and implementation of technical solutions align with
organizational risk management goals;
consulting with technical and non-technical stakeholders, including
internal and external entities, on security best practices to
reduce the risk of compromise across people, processes and
monitoring and developing monitoring processes to proactively
identify and respond to threats, vulnerabilities, or risks within
supporting cyber security engineers in information security
incident triage, containment, and investigative activities, as
mentoring student assistants and other team members.
Security Consulting and Technical Security Services (40%)
Provide technical leadership for special assessments,
unprecedented/non-routine engagements, and the highly complex
Deliver expert or specialized security consulting and technical
services to technical, hospital, business, operations and vendor
staff and teams concerning implementation of UW Medicine security
standards, processes, and NIST 800-53 "best practices" on secure
system design and risk mitigation strategies.
Provide technical expertise in specified efforts to design and
implement recommendations to operational teams implementing and
maintaining UW Medicine information security/technology
Provide technical expertise to the enterprise on the secure design
of technical solutions, applications, and network architecture.
Deploy approved security tools in accordance with formal policies
and procedures to assess the vulnerability of the UW Medicine
workforce and/or assets to general and specific threats.
Develop, review, and implementation of information security
policies, standards, and procedures that promote or ensure the
safeguarding of confidentiality, integrity, and availability of
enterprise information systems and data.
Enterprise Risk Management, Threat Assessment, and Security
Guide expert or specialized information security services related
to risk management, threat assessments, and security analysis.
Navigate unprecedented situations, and draw on extensive experience
to deliver standard and non-standard solutions.
Contribute to the overall direction of the team by taking technical
lead on high complex situations.
Conduct risk and vulnerability assessments, analyze findings, and
determine levels of risk throughout the enterprise.
Document and report information security risks to UW Medicine.
Develop, propose, or monitor organizational risk acceptance,
mitigation, or remediation activities in accordance with
established procedures and ensure risks are updated with relevant
information and escalated to leadership when required.
Monitor corrective action plans and performance improvement of
information security related issues communicated in internal and
Ensure security risk assessments align with best practices,
standards, and frameworks such as NIST, PCI, and OWASP.
Maintain understanding of threat actors, their tools, techniques
and practices, and the assets they target.
Evaluate significance of threats to UW Medicine's risk posture.
Convert analyses and insights into actionable use cases and
Integrate computer and software vulnerability findings into
enterprise risk management program.
Security Education and Outreach (15%)
Guide specified efforts to research or review security controls,
information systems, and business practices for violations of
information security policies, standards, or regulatory
Provide expert or specialized information security services related
to information security policies, standards, and procedures.
Represent the Information Security team at technical advisory
groups, project meetings, and other committees, as assigned, and
provide transparent reporting on relevant issues and statuses.
Maintain collaborative relationships with Office of CISO staff and
other stakeholders (including government and private sector
organizations) engaged in the sharing and dissemination of threat
Develop, revise, and deliver information security training,
education, awareness and conduct outreach activities, as
Coordinate revisions to information security policies and standards
with program leadership and lead collaborative discussions with
senior departmental liaisons and stakeholders throughout UW
Medicine in collaboration with the information Security
Threat Prevention, Detection, Management, and Incident Response
Support team efforts to respond to cyber-security intrusions,
investigations, and investigative reporting, as needed.
Support team efforts to define and develop reporting and post-event
follow-up activities related to information security incidents.
Support team efforts to monitor, analyze, update and/or maintain UW
Medicine's information security tools and provide management with
Participate in all aspects of improving the team, including
education/training of other team members and contributing to
process/communication improvement initiatives.
Train, mentor and guide other analysts and team members.
Work with manager to set professional goals for career
Act as back-up for other team members and functions, as needed.
Bachelor's degree in Computer Science, Information Technology, HIM,
or related field or equivalent combination of
Current security certification (e.g. CISSP, GIAC, CISM, CISA, SSCP,
CEH, Security+) or equivalent combination of
4+ years of experience must include:
4+ years' information security experience to include experience in
several of the following areas: Security Audit, Compliance,
Security Engineering, Security Analysis, Security Project
Management, Security Architecture, implementing best practices,
tools and technology and/or demonstrated Information Security
Extensive work experience designing, implementing, or maintaining
security tools (including threat assessment tools, risk management
tools, or vulnerability management scanning systems).
Extensive work experience conducting security assessments, security
control analysis, risk assessments, vulnerability assessments,
awareness & training activities or penetration tests.
Advanced understanding of, and extensive work experience with,
security-related technologies, systems, and tools.
Demonstrated experience using threat modeling and vulnerability
review to impact the design of highly interconnected enterprise
Advanced understanding of information security threats and
vulnerabilities and how they translate to risks.
Advanced knowledge of common information security regulations
and/or standards such as NIST 800-53/CSF, ISO 27001/2, HIPAA, PCI
DSS, and SOC and how to apply them.
Recognized mentor and educator in risk management concepts,
methodologies, metrics, and reporting.
Previous experience in and knowledge of academic healthcare systems
and/or operational environments.
Advanced degree (e.g., Master's, PhD, etc.)
Knowledge of common health care workflows.
Experience with hybrid cloud and on-premise environments.
Scripting knowledge across one or more languages.
Experience designing, implementing and maintaining tools related to
security information and event management, intrusion
Experience designing and maintaining reports in Tableau.
Familiarity with major technology products commonly used in large
healthcare systems such as Epic.
CONDITIONS OF EMPLOYMENT
This is an Information Technology deadline-driven work
The individual in this position is expected to work normal daytime
hours. The work may be performed in either an office environment or
by telecommuting with manager approval, during normal business
hours; however, significant off-hours and weekends may be needed to
resolve problems and respond to emergencies. This individual is
expected to be available for emergencies (business
continuity/disaster recovery efforts) on a 24x7 basis as
Must have the ability to meet in person as directed by manager.
Because of the physically separated sites for UW Medicine, this
position requires the ability to travel to alternative work
locations as needed.
Must coordinate projects without direct supervisory authority.
Must work within the constraints of multiple technical
ITS provides services to all UW Medicine organizations - HMC,
UWMC-Montlake, UWMC-NW, VMC, UWNC, UWP, SOM, and ALNW. The
individual in this position must learn many organizational
structures and cultures and continually foster collaboration.
Ability to communicate effectively in English, both verbally and in
#monster REQUIREMENTS: See above.
Applicants considered for this position will be required to
disclose if they are the subject of any substantiated findings or
current investigations related to sexual misconduct at their
current employment and past employment. Disclosure is required
under Washington state law.
Committed to attracting and retaining a diverse staff, the
University of Washington will honor your experiences, perspectives
and unique identity. Together, our community strives to create and
maintain working and learning environments that are inclusive,
equitable and welcoming.
The University of Washington is a leader in environmental
stewardship & sustainability, and committed to becoming climate
The University of Washington is an affirmative action and equal
opportunity employer. All qualified applicants will receive
consideration for employment without regard to race, color,
religion, sex, sexual orientation, gender identity, gender
expression, national origin, age, protected veteran or disabled
status, or genetic information.
To request disability accommodation in the application process,
contact the Disability Services Office at 206-543-6450 or
COVID-19 VACCINATION REQUIREMENT Governor Inslee's Proclamation
21-14.2 requires employees of higher education and healthcare
institutions to be fully vaccinated against COVID-19 unless a
medical or religious exemption is approved. Being fully vaccinated
means that an individual is at least two weeks past their final
dose of an authorized COVID-19 vaccine regimen. As a condition of
employment, newly hired employees will be required to provide proof
of their COVID-19 vaccination. View the Final candidate guide to
COVID-19 vaccination requirement webpage for information about the
medical or religious exemption process for final candidates.
Keywords: UW Medicine IT Services, Bellevue , Senior Cyber Security Analyst, Professions , Bellevue, Washington
Didn't find what you're looking for? Search again!