The Senior Information Security Analyst (Senior Security Engineer) is an experienced professional with a full understanding of area of specialization; resolves a wide range of issues in creative ways. This analyst is responsible for working directly with the Corporate Security Team and Fitness Business Unit (Chandler, AZ) to ensure Healthways security compliance initiatives around ISO 27001:2005, HIPAA Security and Sarbanes Oxley are maintained. The individual will work directly with business unit leaders, business partners, and local BT management to understand security risks, oversee risk assessment project efforts, develop remediation programs, and in general be the onsite consultant for these topics
This position is based at the Chandler, Arizona office and reports directly to the Healthways Security Officer in Franklin, TN with a dotted line reporting relationship to the Business Technology (BT) VP in Chandler.
Build and maintain and good working relationship with the Fitness Business Unit to ensure Healthways security requirements are in place and working as intended;
Establish and maintain partnership relationships with corporate security, privacy, and audit teams.
Work with Fitness BU Account Managers on the response process to customer assessments and RFPs;
Assist and lead Corporate Security initiatives and projects as required;
Assist Security Architect with technical security testing and operational support;
Assist Fitness BU and Chandler BT in the development of Disaster Recovery and Business Continuity Plans;
Develop and maintain metrics to ensure accurate reporting of risks identified within the Fitness BU;
Perform Risk Assessments, Compliance Assessments, Gap Analysis and Remediation, and Threat and Vulnerability Assessments;
Assist the Fitness BU Business Technology team, Security Architect and outsourced partners with security/risk assessments of application architecture;
Ability to assume ownership of projects and manage them to successful completion;
Establishes effective working relationships w/ peers both internal & external to information security practice;
Assist in the investigation and resolution of security incidents as needed.
Lead and manage ISO 27001 certification project and maintain the certification as the ISMS management representative for the Fitness BU;
More than 4 years of Information Security and/or IT Audit experience;
Degree in Computer Science, CIS/MIS or IT related field or additional experience in the field;
Proficient in project management, and auditing in IT arena;
Solid understanding of HIPAA security and privacy;
Experience with ISO/IEC 27001:2005, FISMA, DIACAP especially as it relates to maintaining them or their implementation (preferred);
Experience with Security tools such as Nessus, Burp Suite, and Firewalls (preferred);
Security certifications preferred (CISSP, CISA, CISM, etc.).
Healthways is the largest independent global provider of well-being improvement solutions. Dedicated to creating a healthier world one person at a time, the Company uses the science of behavior change to produce and measure positive change in well-being for our customers, which include employers, integrated health systems, hospitals, physicians, health plans, communities and government entities. We provide highly specific and personalized support for each individual and their team of experts to optimize each participant's health and productivity and to reduce health-related costs. Results are achieved by addressing longitudinal health risks and care needs of everyone in a given population. The Company has scaled its proprietary technology infrastructure and delivery capabilities developed over 30 years and now serves approximately 40 million people on four continents.
Here at Healthways as we continue to make the world a healthier place, we have also created an environment where people choose to do their best work. Our unique culture thrives on mission-driven individuals who exude a high sense of energy and passion in everything that they do. Collaboration and teamwork are an essential part of everyday life for Colleagues who trust and depend on one another to achieve the highest degree of collective success. We are an organization that strives to recruit the best and the brightest individuals who take pride in the statement 'I work for Healthways.'
Healthways, Inc. is an equal employment opportunity employer and is committed to a proactive program of affirmative action and diversity development. Healthways, Inc. will continue to recruit, hire, train, and promote into all job levels without regard to race, religion, gender, marital status, familial status, national origin, age, mental or physical disability, sexual orientation, gender identity, source of income, or veteran status.
For health insurers, healthy plan members are cheap plan members; that's where Healthways comes in. The health services company...