INFORMATION SECURITY ANALYST-SENIOR - 07072026-78984

Finance
Nashville, United States of America
7 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 101K

Job location

Nashville, United States of America

Tech stack

Data analysis
Software System Penetration Testing
Computer Security
Digital Assets
Intrusion Detection Systems
Microsoft Office
Security Information and Event Management
Systems Architecture
Software Vulnerability Management
Vulnerability Analysis

Job description

The Information Security Analyst Sr. serves as a key member of the Tennessee Department of Health's information security team, responsible for protecting critical systems, networks, and data assets. This position provides advanced expertise in security monitoring, incident response, risk assessment, vendor management and compliance with regulatory and organizational standards. The analyst collaborates across the various areas of Health to design, implement, and maintain robust information security controls and initiatives that support the organization's strategic and operational goals., * Lead efforts to identify, analyze, and mitigate cybersecurity threats and vulnerabilities across systems.

  • Monitor, investigate, and respond to security incidents by working closely with Enterprise security teams.
  • Analyze data from tools such as SIEM, EDR, IDS/IPS, and vulnerability management platforms.
  • Conduct regular risk assessments, penetration tests analysis, and security audits to ensure compliance with industry standards (e.g., NIST, ISO 27001).
  • Develop and maintain information security policies, procedures, and incident response plans.
  • Provide guidance and mentorship to other analysts and IT staff on security best practices.
  • Collaborate with IT, legal, and compliance teams to manage data protection and privacy initiatives.
  • Evaluate new security technologies and recommend improvements to the organization's security posture.
  • Prepare reports, dashboards, and metrics for management on security events, vulnerabilities, and compliance status.
  • Conduct audit of security related areas and work closely with audit teams, 1. Manage high-priority security projects
  1. Advise on compliance strategy
  2. Lead cross-functional response teams
  3. Communicate complex security topics clearly
  4. Drive improvements in enterprise security posture

Tools & Equipment

  1. Security Information and Event Management (SIEM)
  2. Compliance Management Tools
  3. Forensic Analysis Tools
  4. Vulnerability Scanners
  5. Microsoft Office Suite

Requirements

Education and Experience: Bachelor's degree and five years of experience in information security, risk management, or policy implementation.

Substitution of Graduate Coursework: Graduate coursework in information security may substitute for one year of experience.

Substitution of Experience for Education: Experience in cybersecurity or incident response may substitute for education up to four years.

Alternate Qualification: Three years as an Information Security Analyst - Junior or CISSP certification also qualifies., 1. Strategic Mindset

  1. Customer Focus
  2. Decision Quality
  3. Optimizes Work Processes
  4. Strategic Mindset

Knowledges:

  1. Advanced cybersecurity best practices
  2. Regulatory and compliance frameworks
  3. Risk assessment methodologies
  4. Systems architecture and defense-in-depth
  5. Data privacy and protection strategies

Skills:

  1. Risk and threat analysis
  2. Policy creation and enforcement
  3. Forensic investigation
  4. Team supervision and training
  5. Report preparation and presentation

Apply for this position