Jobs · Information Technology · Missouri

Continuity & Security Assurance Analyst

GEHA Health · Lees Summit, MO · 1 mo ago
Information Technology$76k–$96k/yrFull-time

About the role

The Continuity and Security Assurance Analyst supports G.E.H.A’s Cybersecurity and Information Protection (CIP) program by executing security, compliance, and business continuity initiatives.

Responsibilities

  • Develop and execute security, compliance, and risk assessment plans aligned to regulatory requirements, industry standards, and G.E.H.A policies.
  • Monitor security programs and systems, analyze logs and activities, and identify control gaps, anomalies, or areas of elevated risk.
  • Perform audits across key control areas, including Data Loss Prevention (DLP), inbound email security/quarantine processes, and user access management.
  • Support internal and external audits by preparing documentation, coordinating responses, and validating control effectiveness.
  • Create, maintain, and enhance security documentation, procedures, and control artifacts to support governance and audit readiness.
  • Contribute to the development and continuous improvement of programs that ensure the availability and resilience of G.E.H.A’s information systems and data.
  • Support the Business Continuity and Disaster Recovery (BCDR) program, including planning, documentation, testing, and continuous improvement activities.
  • Affiliate with the Third Party Risk Management program, including review and analysis of third-party maturity assessments, SOC reports, and HITRUST certifications.
  • Maintain and monitor third-party security posture and identify risks, gaps, and opportunities for improvement across G.E.H.A’s vendor ecosystem.

Requirements

  • Bachelor’s degree in Computer Science, Information Systems, or a related discipline.
  • Three (3) or more years of experience in Information Technology, Information Security, IT Assurance, Risk Management, Governance, or Business Continuity.
  • One or more industry certifications such as CISSP, HCISPP, CRMA, CGEIT, CRISC, CISM, CISA, CBCP, GIAC, or similar governance, risk, security, or BCDR certifications.
  • Working knowledge of governance, risk, and compliance frameworks such as COSO, COBIT, ITIL, ISO 31000, ISO 27002, ISO 22301, NIST CSF, NIST 800-53, and SANS Critical Security Controls.
  • Experience with enterprise Governance, Risk, and Compliance (GRC) platforms (e.g., Archer, MetricStream, LockPath, etc.).
  • Proficiency with Microsoft Office applications.

Skills and Competencies

  • Strong analytical and problem-solving skills with the ability to identify risk and recommend practical solutions.
  • Effective written and verbal communication skills, including the ability to translate technical risks into business-focused language.
  • Ability to build relationships, influence stakeholders, and collaborate across multiple business units and teams.
  • Strong organizational skills with the ability to manage multiple priorities in a fast-paced environment.
  • Customer service orientation with a focus on delivering high-quality, accurate outcomes.
  • Effective presentation and interpersonal skills.

Benefits

  • Competitive pay/salary ranges
  • Incentive plan
  • Health/Vision/Dental benefits effective day one
  • 401(k) retirement plan company match – dollar for dollar up to 4% employee contribution (pretax or Roth options) plus a 6% annual company contribution
  • Robust employee well-being program
  • Paid Time Off
  • Personal Community Enrichment Time
  • Company-provided Basic Life and AD&D
  • Company-provided Short-Term & Long-Term Disability
  • Tuition Assistance Program

Work-at-home Requirements

  • Must have the ability to provide a non-cellular High Speed Internet Service such as Fiber, DSL, or cable Modems for a home office.
  • A minimum standard speed for optimal performance of 30x5 (30mpbs download x 5mpbs upload) is required.
  • Lateness (ping) response time lower than 80 ms
  • Hotspots, satellite and wireless internet service is NOT allowed for this role.
  • A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information

How We Value You

  • Equal Opportunity Employer
  • Comprehensive benefits package
  • Flexible work arrangements

Similar jobs