Analyst, Cyber Security

Navitus

Navitus - Putting People First in Pharmacy - Navitus was founded as an alternative to traditional pharmacy benefit manager (PBM) models. We are committed to removing cost from the drug supply chain to make medications more affordable for the people who need them. At Navitus, our team members work in an environment that celebrates diversity, fosters creativity and encourages growth. We welcome new ideas and share a passion for excellent service to our customers and each other.

USD $82,586.00 - USD $101,332.00 /Yr.

M-F 8am to 5pm

Navitus Health Solutions is seeking a Analyst, Cyber Security to join our IT Security, Networking & Government department! 

 

As a member of the Information Security Team, the Analyst, Cyber Security collaborates with cross-functional IT and Business teams to monitor the organization’s security infrastructure for harmful infiltration of external and internal threats, analyzing the organization’s websites and networks for cyber threats such as unauthorized intrusions, malware, DDoS attacks, social media threats and emerging persistent threats and independently implementing mitigation actions as required to neutralize the threat.

 

Is this you? Find out more below!

How do I make an impact on my team? 

• Monitor, prioritize, correlate, and analyze logs and alerts from a variety of different sources (IPS, Firewall, SIEM, etc.), enhancing the organization’s ability to identify potential intrusion attempts through the analysis of relevant security event details, with the key goal of assessing and improving the organization’s ability to detect abnormal or malicious behavior. Working independently to identify and mitigate active threats within the environment
• Composing and disseminating security alert notifications to support staff about any active threats and mitigation actions being taken to resolve those threats
• Work with IT staff to ensure systems are patched, hardened, and updated to ensure systems meet or exceed Information Security standards and SLAs
• Work with Network Operations to provision and secure the Firewall configurations
• Provide guidance in penetration and security assessment testing, working closely with external assessment teams and internal IT teams to remediate any identified vulnerabilities or threats.
• Perform periodic on-demand vulnerability assessments and system audit scans to validate compliance with security policies
• Perform Security Ops Coverage with other team members
• Perform On-call coverage for Security Alerts and Incident Response
• Assist in developing corporate information security strategies, including deployment, administration, configuration and support of security related systems, policies and procedures
• Other duties as assigned

What our team expects from you?

• Bachelor’s degree required. or 4+ years equivalent work experience (ex. System Admin, Network Admin, Cybersecurity Analyst)
• Bachelor’s degree in the field of Computer Science with a focus on Cyber Security preferred
• CompTIA Network+, Security+, or CySA+, GIAC GSec, Associate of (ISC)², or equivalent
• (ISC)² CISSP, ISACA CISM, or equivalent preferred
• 4+ years of experience with progressively increasing responsibilities in Information Security disciplines, such as network security, intrusion protection, cyber-threat management, vulnerability management and access control
• Experience in conducting research on emerging security threats and investigation and documentation of security related incidents to reduce potential client impact
• Solid understanding of networking, cyber security concepts, cyber threat intelligence, and vulnerability identification/Attack Surface Reduction is necessary
• Working knowledge of Log Rhythm (SIEM), Tenable (Vulnerability), Source Fire/Firepower (IPS), Software Defined Networking/Network Segmentation, AMP (Malware), or Splunk (Log analysis) a plus
• Working knowledge of operating systems security (Windows, Linux, Apple, and Mobile Android/iOS), Access Control Policies, Data Security concepts, and Cloud/Container/API security concepts
• Working knowledge of secure coding practices and SDLC
• Knowledge of "best practice" security frameworks (NIST Cyber Security Framework, NIST SP 800-53, CIS CSC, and HITRUST Security Framework) are preferred
• Experience working in a Regulated Industries preferred. Familiarity with healthcare regulatory (HIPAA, HITECH, PCI) environments is a plus
• Experience working with Agile Scrum & Kanban project management teams
• Participate in, adhere to, and support compliance program objectives
• The ability to consistently interact cooperatively and respectfully with other employees

We are unable to offer remote work to residents of Alaska, Hawaii, Maine, Mississippi, New Hampshire, New Mexico, North Dakota, Rhode Island, South Carolina, South Dakota, West Virginia, and Wyoming.

 

#LI-Remote