Mosaic

City

Omaha

State

Nebraska

Description

Mosaic serves more than 5,200 people in 13 states and 750 communities. Services are tailored to meet individual needs and goals, allowing people to be as independent as possible. Services are designed for people with disabilities, mental and behavioral health needs and autism, as well as aging adults.

We are hiring for an Information Security / Cyber Security Analyst to join our Information Technology team. This role is highly influential in maintaining a safe and secure data environment for our workforce and for the people we support. This role will have the opportunity to collaborate with partners internally and externally on several project based initiatives related to training / education on security campaigns, HIPAA compliance, Remote Worker programs, and will play an instrumental role in the continuous improvement and evaluation of current policies and procedures as it relates to cyber security within the organization.

In addition, the position will be responsible to plan and carry out security measures to protect Mosaic's computer networks and systems. Understand advanced cyber threats and help stakeholders build appropriate mitigation plans and strategies to ensure the enterprise and production networks are protected. Monitor computer networks for security issues, install security software, and document security issues.

Remote, local candidates (Omaha) highly preferred 

ESSENTIAL JOB FUNCTIONS:

• Conduct vulnerability assessments and penetration testing to identify and prioritize security weaknesses, focusing on HIPAA and NIST CSF controls.
• Analyze security logs and identify potential security incidents with a focus on PHI and HIPAA compliance.
• Investigate and respond to security incidents according to established procedures, adhering to HIPAA breach notification requirements.
• Implement and maintain security controls, such as firewalls, intrusion detection/prevention systems, and data encryption, ensuring compliance with HIPAA and NIST CSF requirements.
• Manage and update security policies and procedures aligned with HIPAA and NIST CSF.
• Assist in developing and delivering security awareness training for employees, emphasizing HIPAA and NIST CSF best practices.
• Stay up-to-date on the latest security threats, industry regulations, and NIST CSF updates, recommending preventative measures.
• Prepare and present security reports to the ISO and other stakeholders, highlighting HIPAA compliance and NIST CSF adherence.
• Assist with security audits and compliance requirements related to HIPAA and NIST CSF.
• Perform other duties as assigned by the ISO.

KNOWLEDGE, SKILLS & ABILITIES:

• Knowledge of Company policies and procedures
• Knowledge of and ability to demonstrate Mosaic’s 7 Essential Practices of Leadership
• Knowledge of HIPAA Security Rule
• Knowledge of CIS Controls
• Strong analytical skills
• Strong critical thinking skills
• Detail-oriented
• Strong problem-solving and troubleshooting skills
• Ability to identify and mitigate network vulnerabilities
• Knowledge of firewalls, antivirus, and IDPS concepts

Requirements

• Bachelor's degree in Information Security, Computer Science, or related field.
• Minimum of 5 years of experience in information security or a related field.
• Certified Information Systems Security Professional (CISSP) preferred
• Familiarity with the HIPAA Security Rule, NIST CSF, and other relevant healthcare regulations.
• Experience with security tools and technologies, such as vulnerability scanners, SIEM/SOC platforms, and SIEM/SOC platforms.

Other Considerations

• McAfee
• KnowBe4
• SIEM
• Google Security Center
• Meraki
• Active Directory
• Rapid7