×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Information Security Analyst

Job in Augusta, Kennebec County, Maine, 04338, USA
Listing for: Highmark Health
Full Time position
Listed on 2026-02-16
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

Overview

Company : Highmark Health

Job Description : JOB SUMMARY

CANDIDATE MUST BE US Citizen (due to contractual/access requirements)

This role is responsible for implementing and administering information security policies and procedures, as well as developing and maintaining information systems to enforce those policies. The incumbent will actively engage in threat hunting, SIEM engineering, log source onboarding, and detection engineering, alongside conducting investigations into potential and existing security threats. Key responsibilities include enforcing security policies, ensuring compliance, troubleshooting security issues, participating in and remediating purple team exercises, and providing advanced incident response support.

Additionally, this position evaluates security risk assessments, presents security information to diverse audiences, assists with MSSP vendor management, and supports the workforce with security-related inquiries and problems, all while ensuring compliance with relevant security standards.

Essential responsibilities
  • Perform operational support of information security technology.
  • Perform analysis and resolve problems regarding information security.
  • Complete project tasks to enable the on time, within budget and scope delivery of information security projects.
  • Present new and existing information security information to workforce and management.
  • Assist in incident response procedures.
  • Assist Change Management.
  • Assist in conducting application risk assessments against HIPAA and PCI.
  • Assure compliance to required standards, procedures, guidelines and processes.
  • Other duties as assigned or requested.
Education

Required

  • Bachelor’s Degree - Information Security, Information Systems, Information Assurance, Computer Science or related field
  • Substitutions
  • 5 years of Information Security, Governance, Risk and/or Compliance, Information Technology or Business Analysis
  • Preferred
  • None
Experience

Required

  • 3 - 5 years of experience with Information Security and Systems Analysis
  • 3 - 5 years of experience with Information Security and/or Information Risk Management and/or Information Technology
  • 3 - 5 years of experience with Information Security Governance, Risk and/or Compliance functions and activities
  • 3 - 5 years of experience developing, communicating and presenting Information Security and Risk Management concepts to varying audiences
  • 3 - 5 years of experience with technologies such as Intrusion Prevention Systems (IPS), firewalls, endpoint protection, web/email filtering, Data Loss Prevention (DLP), digital rights management, encryption, Security Event and Incident Management (SEIM), and virtualization platforms

Preferred

  • 5 - 7 years of experience with information security and systems analysis
  • Experience working within an information security function using the HITRUST Common Security Framework (HITRUST CSF), or the NIST 800-83 cyber security framework
  • Experience supporting SSAE 16 or SOC 2 Security Trust Principle audits
  • IT/information security risk advisory experience
  • Governance Risk and Compliance (GRC) tool experience such as ARCHER
  • In-depth understanding of network security architecture, network and networking protocol
Licenses and Certifications

Required

  • None

Preferred

  • Certified Information Systems Security Professional (CISSP)
  • Security SKILLS
  • Knowledge of HITRUST CSF, NIST 800-83 cyber security framework, PCI, HIPAA, HITECH, COBIT, ISO 27001/2, and ITIL 3
  • Knowledge of NIST Risk Assessment methodology
  • Familiarity with secure SDLC best practices
  • Knowledge of Microsoft Apps and Suites, Windows server, SharePoint, etc.
  • Strong teamwork and inter-personal skills
Language Requirement

None

Travel Requirement

0 - 25%

Physical, Mental Demands and Working Conditions

Position Type:
Office-Based

Teaches/Trains others regularly:
Occasionally

Travels regularly from the office to various work sites or from site-to-site:
Occasionally

Works primarily out-of-the office selling products/services (Sales employees):
Does Not Apply

Physical Work Site

Required:

Yes

Lifting: up to 10 pounds:
Does Not Apply

Lifting: 10 to 25 pounds:
Does Not Apply

Lifting: 25 to 50 pounds:
Does Not Apply

Disclaimer:
The job description has been designed to…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search