Information Security Operations Analyst

Lets do great things together!

About Moda
Founded in Oregon in 1955 Moda is proud to be a company of real people committed to quality. Today like then were focused on building a better future for healthcare. That starts by offering outstanding coverage to our members compassionate support to our community and comprehensive benefits to our employees. It keeps going by connecting with neighbors to create healthy spaces and places together. Moda values diversity and inclusion in our workplace. We aim to demonstrate our commitment to diversity through all our business practices and invite applications from candidates that share our commitment to this diversity. Our diverse experiences and perspectives help us become a stronger organization. Lets be better together.

Position Summary
The Operations Analyst is a technical role within Modas Information Security team and will play a vital role in keeping the organizations proprietary and sensitive information secure. This position works interdepartmentally to investigate issues identify and correct flaws in security systems solutions and programs and recommend measures to improve the companys overall security posture. Acting as a liaison between Security and IT management the analyst assists IT strategy and architecture design from a security perspective and identifies issues concerns or recommendations as the organization grows its technology infrastructure and processes.This is a FT WFH position.

Pay Range
$70496.52- $91647.55 annually (depending on experience)
*This role may be classified as hourly (non-exempt) depending on the applicants location. Actual pay is based on qualifications. Applicants who do not exceed the minimum qualifications will only be eligible for the low end of the pay range.

Please fill out an application on our company page linked below to be considered for this position.

Dental Vision Pharmacy Life & Disability

Required Skills Experience & Education:

1. Bachelors or masters in Computer Science Information Security Cybersecurity or a related field.
2. 5 years of experience as a security operations analyst or in related fields such as IT audit enterprise risk management penetration testing or red team/incident response.
3. Experience with common security tools such as SIEM platforms EDR solutions and cloud platforms (e.g. Microsoft Azure Amazon AWS).
4. Knowledge of Microsoft Azure configuration and management is highly desirable.
5. 3 years of experience with regulatory compliance and information security management frameworks (e.g. HIPAA NIST IS0 27000 or COBIT).
6. Strong documentation and reporting skills including the ability to record security events investigations and recommendations for technical and non-technical audiences.
7. Excellent collaboration and communication skills with the ability to influence and work effectively across cross-functional teams.
8. Industry recognized cybersecurity certification (e.g. CISSP CISM CompTIA Security) preferred.

Primary Functions:

1. Defend against cybersecurity incidents and identify analyze communicate and contain incidents as they occur.
2. Monitor systems and networks for security alerts notifications and issues including patching and update process issues and investigate and document any security issues or events that may occur.
3. Own and drive the investigation of security events and other cybersecurity incidents including review triage and response to alerts and notifications.
4. Take a lead role in the documentation of security events and incidents and the assessment of the damage they cause.
5. Review threat intelligence and analyze the current threat landscape and apply threat analysis to Modas infrastructure systems and networks to identify and address vulnerabilities or exploitable attack paths.
6. Build and drive proactive threat hunting programs including detailed threat analysis of exploitable vulnerabilities leading to actionable remediation plans.
7. Work with IT resources and architects to develop and implement cloud security strategies to facilitate migration of key assets into a public cloud hosted environment.
8. Advise on installation and configuration of security controls systems and software to protect systems and information infrastructure and recommend enhancements based on compliance requirements and industry best practices.
9. Work with IT and Security leadership to perform tests or support external testing such as network penetration tests vulnerability testing and disaster response failover tests to uncover network vulnerabilities.
10. Advise on installation and configuration of security controls systems and software to protect systems and information infrastructure and recommend enhancements based on compliance requirements and industry best practices.
11. Take a proactive and operational role in creating the best practices for IT security companywide.
12. Support cybersecurity risk assessment activities.
13. Work with both Security and IT management to ensure security policies and goals are met in infrastructure and development contexts.
14. Stay current on IT security trends and news including evolving standards.
15. Collaborate and communicate effectively with cross functional colleagues at all levels.
16. Other duties as assigned.

Working Conditions:

• Remote office environment with extensive close PC and keyboard use constant sitting and frequent phone communication. Must be able to navigate multiple computer screens. A reliable high-speed hard-wired internet connection required to support remote or hybrid work. Must be comfortable being on camera for virtual training and meetings. Work in excess of standard workweek including evenings and occasional weekends to meet business need.
• Internally with all departments. Externally with auditors clients technology partners and other various entities.

Together we can be more. We can be better.

Moda Health seeks to allow equal employment opportunities for all qualified persons without regard to race religion color age sex sexual orientation national origin marital status disability veteran status or any other status protected by law. This is applicable to all terms and conditions of employment including recruiting hiring placement promotion termination layoff recall transfer leaves of absences compensation and training.

For more information regarding accommodations please direct your questions to Kristy Nehler & Danielle Baker via email.