Lead Analyst, Security Education & Awareness

Who We Are

Point
32

Health is a leading not-for-profit health and well-being organization dedicated to delivering high-quality, affordable healthcare. Serving nearly 2 million members, Point
32

Health builds on the legacy of Harvard Pilgrim Health Care and Tufts Health Plan to provide access to care and empower healthier lives for everyone. Our culture revolves around being a community of care and having shared values that guide our behaviors and decisions. We’ve had a long-standing commitment to inclusion and equal healthcare access and outcomes, regardless of background; it’s at the core of who we are.

We value the rich mix of backgrounds, perspectives, and experiences of all of our colleagues, which helps us to provide service with empathy and better understand and meet the needs of the communities where we serve, live, and work.

We enjoy the important work we do every day in service to our members, partners, colleagues and communities. Learn more about who we are at Point
32

Health.

Lead Information Security Analyst works closely with technology colleagues and business leadership to align both technical and strategic cyber & information security solutions with business needs. The Lead Information Security Analyst will help bridge the gaps between security best practices, evolving technical landscape, regulatory requirements, and business expectations with system configuration, security processes, control effectiveness, and operational efficiency. This position will work to support the design and continued maturity of cyber & information security processes and will interact regularly with business and technology stakeholders at Point
32

Health and external entities, as appropriate.

• Provides leadership in planning, designing, assessing, and/or implementing strategic security program improvements through:
• Providing advanced information security consultation for all aspects of information security, compliance, policy, risk management, and remediation
• Identifying process improvements and developing plans to meet or exceed security best practices
• Ensure the confidentiality, integrity, and availability of the information residing on or transmitted to/from/through the enterprise’s devices, servers, and other systems and data repositories.
• Providing technical expertise and administration of security solutions, where applicable
• Participate in the design, implementation, and administration of security tools to reduce risk
• Identifying technology trends and evolving social behavior to support the success of the business
• Oversee and maintain system consistency through regular audits
• Provide leadership and education colleagues; participate as an active member of the IT and security community at Point
  32
  
  Health to promote information sharing, respectful challenge, efficiency, control effectiveness, and program quality through continuous improvement
• Create meaningful and detailed metrics based on security needs
• Other duties and projects as assigned.

• Required (minimum):
  Bachelor’s degree in a related field
• Preferred:
  Master’s degree

• Required (minimum): 5-7 years of related work experience.
• Preferred: 5-7 years of experience in information security, with a focus on security analysis or similar roles, including at least 2-3 years in a leadership or supervisory position.

• Broad knowledge of commonly used information security concepts, best practices, and standards
• Demonstrated expertise is at least two leading security areas, e.g., privileged access management, enterprise identity & access management, cloud architecture, data loss prevention, security information & event manager, incident management, third-party vendor risk assessment, API security, network security, malware prevention, database masking, secure development, application security testing, multi-factor authentication schemes
• Self-directed; expected to identify and lead efforts to correct security controls and/or process improvements
• Strong…