Information Security Specialist

Company: Somatus
Location: Trenton
Posted on: March 17, 2023

Job Description:

Information Security Specialist at Somatus
Remote
Summary:
The Information Security Specialist is responsible for ensuring the security and confidentiality of Somatus' information assets. The specialist will work closely with IT teams and other stakeholders to identify, evaluate and mitigate information security risks, and to develop and implement effective security controls.
Essential Duties and Responsibilities:

• 
  
• 
  Conduct regular vulnerability assessments and scans to identify potential security risks and vulnerabilities in Somatus' information systems.
  
  
• 
  Develop and implement security policies, standards and procedures to ensure the confidentiality, integrity, and availability of Somatus' information assets.
  
  
• 
  Monitor and analyze security logs and alerts to identify potential security incidents and respond to them in a timely and effective manner.
  
  
• 
  Conduct security awareness training for employees and contractors to ensure that they understand and comply with Somatus' security policies and procedures.
  
  
• 
  Work with IT teams to design and implement security controls, including firewalls, intrusion detection and prevention systems, and encryption mechanisms.
  
  
• 
  Conduct risk assessments to identify and prioritize security risks and vulnerabilities and develop and implement risk mitigation plans.
  
  
• 
  Work with third-party vendors to ensure that they meet Somatus' security requirements and comply with relevant security standards and regulations.
  
  
• 
  Stay up to date with the latest security threats, vulnerabilities, and trends, and make recommendations for improvements to Somatus' security program.
  
  
• 
  Participate in incident response activities and investigations, and ensure that appropriate measures are taken to prevent similar incidents from occurring in the future.
  
  
• 
  Provide regular reports on the state of information security to senior management, and make recommendations for improvements to Somatus' security program.
  
  
  Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.
  Required Education and Experience:
  
  • 
    
  • 
    Bachelor's degree from an accredited institution, with degree preferred in Computer Science or Information Technology Systems Security or related field.
    
    
  • 
    Minimum of two (2) years' experience in health care technology.
    
    
  • 
    Three or more years' experience in an information security role.
    
    
  • 
    Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification is a plus.
    
    
  • 
    Experience with HITRUST CSF adoption and certification is a plus.
    
    
    Knowledge, Skills, and Abilities:
    
    • 
      
    • 
      Strong knowledge of security frameworks (e.g. NIST, HITRUST, ISO 27001).
      
      
    • 
      Ability to advise infrastructure and product engineering staff in securing their respective environments.
      
      
    • 
      Experience with security assessment tools and technologies.
      
      
    • 
      Familiarity with HIPAA and understanding of risks in the healthcare industry.
      
      
    • 
      Ability to work independently and as part of a team.
      
      
    • 
      Effective oral and written communication skills.
      
      
      Physical Requirements
      
      • 
        
      • 
        This job operates in a professional setting. While performing the duties of this job, the employee is regularly required to sit or stand for extended periods of time. Normal manual dexterity is required.
        
        
      • 
        Normal speaking and hearing abilities to interact with others in an office environment, over telephone or other video conferencing platform.
        
        
      • 
        The employee is occasionally required to stand; walk; and reach with hands and arms and continuously repeat the same hand, arm finger motion many times as in typing.
        
        
        OTHER DUTIES:
        Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.
        Our priority is the health and safety of our members, colleagues, partners, and community. Proof of COVID-19 Vaccination is required for employment. If you are unable to be vaccinated for medical reasons or sincerely-held religious beliefs, we will consider requests for reasonable accommodations consistent with our policy, and where we are able to provide such accommodations without undue hardship to the company pursuant to applicable law.
        Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions .
        Somatus, Inc. provides equal employment opportunity to all individuals regardless of their race, color, creed, religion, gender, age, sexual orientation, national origin, disability, veteran status, or any other characteristic protected by state, federal, or local law. Further, the company takes affirmative action to ensure that applicants are employed, and employees are treated during employment without regard to any of these characteristics. Discrimination of any type will not be tolerated.

Keywords: Somatus, Trenton , Information Security Specialist, Other , Trenton, New Jersey