Information Security Analyst

Job ID 2024-7064

Technology Portland, Oregon Newark, New Jersey

Apply

Description

Position at WebMD

WebMD is the most recognized and trusted brand of health information and the leading provider of health information services, serving consumers, physicians, healthcare professionals, employers and health plans through our public and private online portals and WebMD the Magazine. The WebMD Health Network includes WebMD, Medscape, MedicineNet, eMedicine, RxList, theheart.org and Medscape Education. Our consumer portals and mobile health applications provide engaging, relevant and credible health and wellness information, personalized health assessment tools and access to online communities.

WebMD is an Equal Opportunity/Affirmative Action employer and does not discriminate on the basis of race, ancestry, color, religion, sex, gender, age, marital status, sexual orientation, gender identity, national origin, medical condition, disability, veterans status, or any other basis protected by law.

About the role:

The Security Operations Analyst (SOA) assists with day-to-day cyber security administration and operations. They must understand common security tools and protocols. The SOA is our first contact for any security events, researches and reports on emerging threats, and is responsible for security administration.

Responsibilities:

  • Monitor and respond to real-time threat information and provide security support to our users.
  • Hands-on experience with SIEM platforms.
  • Analyzing security logs, alerts, and other data generated by the SIEM system to detect and investigate potential security threats or incidents.
  • Assisted in analyzing and interpreting vulnerability scan results to identify potential security risks.
  • Collaborating closely with the organization's security team to develop and implement security policies, procedures, and incident response plans.
  • Taking part in internal and 3rd party Pen testing.
  • Taking part in on-call rotation.
  • Participating in Incident Response and Vendor Risk Review.

Requirements:

  • Three or more (3+) years of experience with Information System roles
  • Experience in network security management.
  • Technical knowledge of Operating Systems (Windows/Linux), Networking, and Web technologies
  • Basic understanding of email, web, cloud security, identity, and access management.
  • Basic understanding of vulnerability scanning and penetration testing.
  • Knowledge of security threat and risk assessment and threat modeling.
  • Knowledge of security events and incident management.
  • Knowledge of wired and wireless network access control and industrial controls security.
  • Overall understanding of the functions of departments served and their requirements.
  • Overall understanding of mobile security.
  • Familiarity with industry standard frameworks such as NIST, FISMA, HiTrust, HIPAA, or SOC I & II
  • Ability to establish and maintain effective working relationships with a variety of internal and external contacts and to provide advice, information, and assistance to same.
  • Ability to communicate effectively both orally and in writing.
  • Ability to think analytically and problem-solve.
  • Ability to develop presentations and training material and present and train others on relevant information.
  • Ability to work well in a team environment.

 

Apply Apply Later
← Back to Current Openings

Share