Cybersecurity Specialist

Duke Health is seeking a highly skilled Information Security Analyst to join our team. As a key member of our Information Security Office, you will play a critical role in protecting the confidentiality, integrity, and availability of our organization's information assets.

• Design, implement, manage, and monitor technical, administrative, and physical controls to protect our information assets.
• Assist in providing access support for the implementation and administration of Identity and Access Management (IAM) supported platforms.
• Ensure IAM solutions adhere to regulatory, compliance, and internal requirements.
• Provide Break/Fix and enhancement support following existing change management procedures.
• Collaborate with cross-functional teams to address identified security issues and implement effective security controls and measures.
• Document and report findings, recommendations, and remediation steps in clear and concise reports tailored to technical and non-technical audiences.

• Bachelor's degree in a related clinical or technical field, or four years of equivalent technical experience.
• One or more information security industry certifications (e.g. CISSP, CISM, CISA, CEH, or equivalent) are required for Level 3.
• Strong conceptual familiarity with information security practices, standards, and systems, including data loss prevention, intrusion detection and prevention systems, security information event management, virtual private networks, encryption technologies, and endpoint security.
• Working knowledge of at least one of the following regulatory compliance requirements and IT management frameworks: FISMA, NIST information security standards, HIPAA Security and/or Privacy Rules, HITECH and Meaningful Use, HITRUST Common Security Framework (CSF), ISO 27000-series standards, and PCI DSS.

Duke Health offers a competitive salary and benefits package, as well as opportunities for professional growth and development. We are an equal opportunity employer committed to creating a diverse and inclusive work environment.