We are hiring for an Information Security / Cyber Security Analyst to join our Information Technology team. This role is highly influential in maintaining a safe and secure data environment for our workforce and for the people we support. This role will have the opportunity to collaborate with partners internally and externally on several project based initiatives related to training / education on security campaigns, HIPAA compliance, Remote Worker programs, and will play an instrumental role in the continuous improvement and evaluation of current policies and procedures as it relates to cyber security within the organization.

In addition, the position will be responsible to plan and carry out security measures to protect Mosaic's computer networks and systems. Understand advanced cyber threats and help stakeholders build appropriate mitigation plans and strategies to ensure the enterprise and production networks are protected. Monitor computer networks for security issues, install security software, and document security issues.

Remote, local candidates (Omaha) highly preferred

ESSENTIAL JOB FUNCTIONS:

Conduct vulnerability assessments and penetration testing to identify and prioritize security weaknesses, focusing on HIPAA and NIST CSF controls.
Analyze security logs and identify potential security incidents with a focus on PHI and HIPAA compliance.
Investigate and respond to security incidents according to established procedures, adhering to HIPAA breach notification requirements.
Implement and maintain security controls, such as firewalls, intrusion detection/prevention systems, and data encryption, ensuring compliance with HIPAA and NIST CSF requirements.
Manage and update security policies and procedures aligned with HIPAA and NIST CSF.
Assist in developing and delivering security awareness training for employees, emphasizing HIPAA and NIST CSF best practices.
Stay up-to-date on the latest security threats, industry regulations, and NIST CSF updates, recommending preventative measures.
Prepare and present security reports to the ISO and other stakeholders, highlighting HIPAA compliance and NIST CSF adherence.
Assist with security audits and compliance requirements related to HIPAA and NIST CSF.
Perform other duties as assigned by the ISO.

KNOWLEDGE, SKILLS & ABILITIES:

Knowledge of Company policies and procedures
Knowledge of and ability to demonstrate Mosaic’s 7 Essential Practices of Leadership
Knowledge of HIPAA Security Rule
Knowledge of CIS Controls
Strong analytical skills
Strong critical thinking skills
Detail-oriented
Strong problem-solving and troubleshooting skills
Ability to identify and mitigate network vulnerabilities
Knowledge of firewalls, antivirus, and IDPS concepts