Senior Security Operations Analyst
Penn Medicine, University of Pennsylvania Health System · Philadelphia, PA · 1 mo ago
EngineeringFull-time
Responsibilities
- Monitoring security incident and event management systems, along with responding to alerts and notifications as appropriate
- Initiate escalation procedures to counteract potential threats and/or vulnerabilities
- Investigation of suspicious network and endpoint activity
- Support end-user security issues including phishing, encryption, infected computer systems and more
- Partners with information security engineers to implement and maintain security technologies
- Collaborates with information assurance advisors to address network and endpoint security risks
- Participates in vulnerability management, including scanning and remediation
- Prepare system security reports by collecting, analyzing and summarizing data trends
Requirements
- Bachelor of Arts or Science (Required)
- 5+ years Experience in information technologies, especially information security, such as security operations and incident response, regulatory compliance or audit, vulnerability management, security engineering or similar experience (Required)
- 0-1 years Familiarity with security standards and frameworks such as: HIPAA, PCI DSS, HITRUST, NIST, ISO, etc. (Required)
- 0-1 years Experience with penetration testing tools, such as Kali Linux, Responder, NMAP, Wireshark, Aircrack-ng, Maltego, Nikto, etc. (Required)
- 0-1 years Experience in healthcare and academia (Preferred)
- 0-1 years Information security certifications, such as Security+, Network+, CCNA Security, GSEC, GCIA, GCFA, GPEN, CEH (Preferred)
Qualifications
Education or Equivalent Experience:
- Bachelor of Arts or Science (Required)
- 5+ years Experience in information technologies, especially information security, such as security operations and incident response, regulatory compliance or audit, vulnerability management, security engineering or similar experience (Required)
- 0-1 years Familiarity with security standards and frameworks such as: HIPAA, PCI DSS, HITRUST, NIST, ISO, etc. (Required)
- 0-1 years Experience with penetration testing tools, such as Kali Linux, Responder, NMAP, Wireshark, Aircrack-ng, Maltego, Nikto, etc. (Required)
- 0-1 years Experience in healthcare and academia (Preferred)
- 0-1 years Information security certifications, such as Security+, Network+, CCNA Security, GSEC, GCIA, GCFA, GPEN, CEH (Preferred)