Sr Information Security Analyst

WHY UT SOUTHWESTERN?
With over 75 years of excellence in Dallas-Fort Worth, Texas, UT Southwestern is committed to excellence, innovation, teamwork, and compassion. As a world-renowned medical and research center, we strive to provide the best possible care, resources, and benefits for our valued employees. Ranked as the number 1 hospital in Dallas-Fort Worth according to U.S. News & World Report, we invest in you with opportunities for career growth and development to align with your future goals. Our highly competitive benefits package offers healthcare, PTO and paid holidays, on-site childcare, wage, merit increases and so much more. We invite you to be a part of the UT Southwestern team where you'll discover a culture of teamwork, professionalism, and a rewarding career

JOB SUMMARY
The purpose of this job is to identify, promote, and implement information security best practices in a decentralized health care environment for UTSW or Southwestern Health Resources (SWHR). This role is responsible for safeguarding the confidentiality, integrity, and availability of sensitive data within the health care organization, including patient records and other critical information. The job will involve proactive monitoring of security systems, performing risk assessments, identifying vulnerabilities, and implementing security strategies in compliance with regulations such as HIPAA. The ideal candidate will possess a strong cybersecurity background with a focus on health care environments.

Must live in the DFW area. 

BENEFITS
UT Southwestern is proud to offer a competitive and comprehensive benefits package to eligible employees. Our benefits are designed to support your overall wellbeing, and include:

• PPO medical plan, available day one at no cost for full-time employee-only coverage
• 100% coverage for preventive healthcare-no copay
• Paid Time Off, available day one
• Retirement Programs through the Teacher Retirement System of Texas (TRS)
• Paid Parental Leave Benefit
• Wellness programs
• Tuition Reimbursement
• Public Service Loan Forgiveness (PSLF) Qualified Employer
• Learn more about these and other UTSW employee benefits

EXPERIENCE AND EDUCATION
Required

• Education
  Bachelor's Degree in a computer science and technology or related field.

• Experience
  5 years of experience in information security is required.

• Licenses and Certifications
  (CISSP) CERT INFO SYSTEMS SECURTY PROF or
  (CISA) CERT INFO SYSTEMS AUDITOR or
  (GIAC) GLOBAL INFORMTN ASSURANCE CERT or
  CEH (Certified Ethical Hacker) or
  CISM (Certified Information Security Manager) or
  CompTIA Security+

Preferred

• Education
  Master's Degree in Information Security, Cybersecurity, or a related field.

• Experience
  2 years or more years of experience in a Senior information security position or role.
  Extensive experience with a focus on healthcare environments, including a thorough understanding of healthcare security regulations such as HIPAA, PCI, and other applicable laws.
  Proven experience with security technologies such as SIEM tools, IDS/IPS, firewalls, endpoint protection, and cloud security in healthcare.
  Experience as a network, server, database, or application administrator.
  Experience as a security or technology administrator in Higher Education or a similarly decentralized environment.
  Strong background in third-party risk management and vendor security assessments, particularly in the healthcare industry.
  Experience implementing and managing security frameworks, such as the NIST Cybersecurity Framework (CSF), in a healthcare setting to enhance risk management and security strategies.

JOB DUTIES

• • Security Incident Response & Forensics: Direct responses to security incidents to prevent further loss, obtain and preserve forensic evidence, and lead root cause analysis efforts to identify improvement opportunities. Maintain a database of security incidents and provide reports to leadership, university management, and external regulatory agencies. Work closely with IT, disaster recovery, and application support teams, including the service desk, to ensure rapid incident response and recovery.
  • Security Safeguards & System Protection: Assist technical support staff in identifying and implementing appropriate security safeguards, ensuring compliance with security patch applications, antivirus management, and virus protection policies. Oversee Active Directory protection alerts and remediation to maintain system integrity. Collaborate with the IT team to support the disaster recovery plan and ensure alignment with security protocols.
  • Email Gateway & Endpoint Security: Respond to email gateway alerts, manage quarantine folder reviews, and coordinate email gateway agent updates. Conduct regular reviews of the EDR (Endpoint Detection and Response) and SIEM portals for potential security threats, ensuring prompt remediation of identified issues.
  • Monitoring & Reporting: Aggregate and analyze SIEM logs to detect and respond to security events. Administer and review data loss prevention (DLP) tools and TRAP (Threat Response and Adaptive Protection) alerts, ensuring the organization's data is safeguarded. Deliver monthly metrics reports, project updates, and yearly penetration testing results to leadership.
  • Training & Awareness Programs: Provide security training and awareness programs for technical and non-technical users. Disseminate security notices and alerts, coordinating campus-wide security collaboration and communication initiatives.
  • Surveillance & Access Control: Review quarterly reports to identify and address security concerns related to physical access control systems.
  • Collaboration with IT and Support Teams: Work closely with IT, disaster recovery, application support teams, and the service desk to ensure that security measures are integrated across all technology functions. Coordinate efforts to resolve service desk tickets related to security incidents and support disaster recovery planning and execution.
  • Reporting & Leadership Communication: Prepare technical briefings, reports, and slide presentations on security incidents, trends, and initiatives for leadership, ensuring ongoing communication about the organization‿s security posture.
  • Provide the management team with intel, threat updates, and escalations, while supporting the Governance, Risk, and Compliance (GRC) and Third-Party Risk Management (TPRM) teams by delivering critical information from security tools to ensure informed decision-making and effective risk management.
  • Performs other duties as assigned.

SECURITY AND EEO STATEMENT
Security
This position is security-sensitive and subject to Texas Education Code 51.215, which authorizes UT Southwestern to obtain criminal history record information.

EEO Statement
UT Southwestern Medical Center is committed to an educational and working environment that provides equal opportunity to all members of the University community. As an equal opportunity employer, UT Southwestern prohibits unlawful discrimination, including discrimination on the basis of race, color, religion, national origin, sex, sexual orientation, gender identity, gender expression, age, disability, genetic information, citizenship status, or veteran status.

• UT Southwestern is proud to offer a competitive and comprehensive benefits package to eligible employees. Our benefits are designed to support your overall wellbeing, and include:
  • PPO medical plan, available day one at no cost for full-time employee-only coverage
  • 100% coverage for preventive healthcare – no copay
  • Paid Time Off, available day one
  • Retirement Programs through the Teacher Retirement System of Texas (TRS)
  • Paid Parental Leave Benefit
  • Wellness programs
  • Tuition Reimbursement
  • Public Service Loan Forgiveness (PSLF) Qualified Employer
  • Learn more about these and other UTSW employee benefits