IS System Assurance

  • Kaiser Permanente
  • Greenwood Village, CO, USA
  • Sep 18, 2019

Job Description

Description: As a IS System Assurance (Analyst Cyber Risk Defense) you will participate in: 

  • The development of security configuration standards for Kaiser Permanente resources (servers, databases, operating systems, etc.).
  • Communication of vulnerabilities, threats, or findings to technical and non-technical audiences.
  • Identify and recommend additional data and/or services needed to address key business issues related to process or solutions design.
  • Identify the impact of security configuration requirements on upstream and downstream solution components.
  • Recommends process improvements which align with sustainable best practices

This individual contributor is primarily responsible for supporting the protection and maintenance of integrity and reliability of the security of data, systems and networks, while resolving problems with tools, systems and procedures.

Essential Responsibilities:
Completes work assignments by applying up-to-date knowledge in subject area to meet deadlines; following procedures and policies, and applying data and resources to support projects or initiatives; collaborating with others, often cross-functionally, to solve business problems; supporting the completion of priorities, deadlines, and expectations; communicating progress and information; identifying and recommending ways to address improvement opportunities when possible; and escalating issues or risks as appropriate.Pursues self-development and effective relationships with others by sharing resources, information, and knowledge with coworkers and customers; listening, responding to, and seeking performance feedback; acknowledging strengths and weaknesses; assessing and responding to the needs of others; and adapting to and learning from change, difficulties, and feedback.Provides proactive monitoring and/or response to known or emerging threats against the KP network.Effectively communicates investigative findings to non-technical audiences.Participates in regular operations meeting with TDA, TRI, and/or TAG teams.Identifies opportunities for cyber security improvements within assigned cyber defense domain.Works with the CDC Policy Engineers and Remediation teams to contain identified issues and determine the best approach for improving security posture.Participates in follow-up remediation design and review.Conducts investigation and triage of security events within assigned domain.Performs data analysis in support of security event management processes, including root cause analysis.Provides on-call duties and after hours support of incident management as required.Supports incident response plans which may include after-hours support and coordination among responsible teams.Assists in the execution of incident handling processes which may include containment, protection, and remediation activities.

Minimum Qualifications:
Bachelor's degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and Minimum three (3) years experience in IT or a related field, including Minimum one (1) year in information security or network engineering. Additional equivalent work experience may be substituted for the degree requirement.

Preferred Qualifications:
Two (2) years experience working on project or technical teams. One (1) year work experience requiring the development of technical documents or presentations. One (1) year experience in cyber security threat and/or vulnerability research

Primary Location: Colorado,Greenwood Village,Greenwood Plaza IT Scheduled Weekly Hours: 40 Shift: Day Workdays: Mon, Tue, Wed, Thu, Fri Working Hours Start: 8:00 AM Working Hours End: 5:00 PM Job Schedule: Full-time Job Type: Standard Employee Status: Regular Employee Group/Union Affiliation: Salaried, Non-Union, Exempt Job Level: Individual Contributor Job Category: Information Technology Specialty: IS Cyber Risk Defense Department: Technology Risk Office Travel: Yes, 5 % of the Time Kaiser Permanente is an equal opportunity employer committed to a diverse and inclusive workforce. Applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), age, sexual orientation, national origin, marital status, parental status, ancestry, disability, gender identity, veteran status, genetic information, other distinguishing characteristics of diversity and inclusion, or any other protected status.

External hires must pass a background check/drug screen. Qualified applicants with arrest and/or conviction records will be considered for employment in a manner consistent with federal and state laws, as well as applicable local ordinances, including but not limited to the San Francisco and Los Angeles Fair Chance Ordinances.