Web Analytics

Lead Analyst - Information Security (REMOTE)

  • Care Centrix
  • Connecticut, USA
  • Sep 10, 2019

Job Description

Job Description:


CareCentrix seeks an experienced Information Security Analyst Lead to lead its team of information security analysts and its Governance, Risk and Compliance (GRC) program. This individual is directly responsible for working with senior management, compliance, legal, and Business Technology leaders to complete internal, vendor, and third party risk assessments; lead our annual HITRUST assessment process; manage internal and third party risk; and to direct the work of other analysts in event handling, ticket support, and policy creation,.

The right candidate has strong technical skills, excellent verbal and written communication skills, a proven history of increasing responsibility in information security, the ability to work in a fast-paced, team environment, and a passion for mentoring and teaching about information security.


Lead a team of security analysts, including mentoring in career development as well as managing projects and tasks
Assist in developing and implement CareCentrix's Governance, Risk and Compliance (GRC) program
Drive the company's annual HITRUST assessment process
Respond to RFPs and client security assessments accurately and in a timely manner
Drive recurring risk assessments in a timely manner with little supervision or direction
Conduct third party risk assessments
Track identified risks and exceptions, and manage to resolution
Collaborate with clients, internal partners, and third parties to prioritize, mitigate and resolve identified risks
Identify and drive risk scenarios to actualize risk and risk remediation activities
Establish and maintain the highest level of credibility and trust
with business partners and leadership while recommending initiatives, communicating risks, and proposing solutions
Identify and implement opportunities to drive effectiveness and efficiency into the IT Risk Management process
Execute assigned tasks and responsibilities in timely and professional manner
Consistently deliver on commitments, deadlines and objectives on multiple competing priorities
Help lead organization-wide information security initiatives
Provide insight into CareCentrix's information security roadmap
Support CareCentrix's Vice President of Information Security in day-to-day and long-term responsibilities


Bachelor's Degree in Computer Science with a focus in Information Security or equivalent experience required
6 or more years' experience in information security
2 or more years' experience in risk assessment, including HITRUST CSF
Must have CISSP, CRISC or CISM, and be a Certified HITRUST Common Security Framework Practitioner.
Prior experience leading and mentoring a team is required
Must have proven track record of successful IT risk management
Must have previous experience in the vendor risk management lifecycle
Must have excellent communication skills and the ability to work with a variety of internal customers from network and systems engineers to customer service agents
Demonstrated passion about information security and commitment to continued education via ISC2's CISSP or related management and technical information security accreditations
Self-motivated and comfortable making day-to-day decisions.
Strong analytical skills.
Ability to work well in a fast-paced, constantly changing environment.

*This position can be worked remotely from home.

CareCentrix maintains a drug-free workplace.

We are an equal opportunity employer. Employment selection and related decisions are made without regard to age, race, color, national origin, religion, sex, disability, sexual orientation, gender identification, or being a qualified disabled veteran or qualified veteran of the Vietnam era or any other category protected by Federal or State law.

- provided by DiceTracking.aspx?fCdmnmo3A5e2WmMEo7skZwg