The Information Security Analyst II identifies, implements, maintains, and supports technologies designed to protect the confidentiality, integrity or availability of UHS and affiliates information systems. Works with technical and non-technical staff to insure that deployed technologies are effectively and efficiently providing the intended controls consistent with established policies and procedures. Trains and supports technical staff in UHS affiliated locations, where appropriate, to deploy, manage and support selected technologies. Oversees the technical aspects of tasks assigned to less experienced staff or contractors on projects, systems or applications assigned. Adheres to UHS standards of service excellence, professionalism, and integrity while performing duties.

Key Responsibilities include:

• Implements and maintains selected information security technologies within guidelines of policies, accepted best practices, and in keeping with good project management principles.
• Periodically reviews deployed security technologies to insure that the solutions continue to provide the intended protections efficiently and effectively.
• Identifies gaps in protection and recommends solutions to remediate or mitigate the risks associated with the protection gaps.
• Works with staff at all levels in the organization, vendors and contractors to insure protections are effective, efficient and non-disruptive to the appropriate duties, rights and mission of the individuals and the organization(s).
• Acts as the subject matter expert (SME) for at least one technology or process, and provides technical support and guidance to other team members. May oversee efforts of junior staff who assist with the assigned technology or process.
• Monitors the resolution of maintenance or enhancement issues assigned by the UHS Customer Support Center.
• Performs other duties as assigned/required.

• Bachelor’s degree in Information Systems Security and Risk Management, Computer Science, or related field required.
• Minimum 3-5 years’ experience with desktop, server and/or network security administration in a mixed computing environment.
• Experience configuring, managing and supporting some or all of the following or similar information security technologies or processes:
  • Anti-malware protections and analysis
  • Web filtering and security
  • Vulnerability scanning and management
  • Encryption technologies for data at rest and data in transit
  • Mobile device and removable media protection or management systems
  • Authentication – including various forms of SSO and MFA
  • Cloud application security
  • Security Information and Event Management (SIEM) systems
  • Interpreting Common Vulnerabilities and Exposures (CVE ) data
  • Device control
  • Data Loss Prevention (DLP)
  • Forensic analysis

• Familiarity with risk assessment and risk management concepts or processes.
• Working knowledge of various regulatory security requirements – particularly Sarbanes-Oxley (SOX), HIPAA, and HITECH.
• Working knowledge of common cyber security frameworks such as HITRUST, NIST, CSC20, or others.
• Working knowledge of scripting languages such as Python, PowerShell, and VB is a plus.
• Ability to prioritize multiple tasks and be detail oriented.
• An information security certification is a plus - to demonstrate proficiency and knowledge of information security best practices and concepts.
• Excellent communication, interpersonal and project management skills
• Travel to field locations may be necessary to complete assigned projects

• Challenging and rewarding work environment
• Growth and development opportunities within UHS and its subsidiaries
• Competitive Compensation
• Excellent Medical, Dental, Vision and Prescription Drug Plan
• 401k plan with company match
• Generous Paid Time Off

• 
  UHS is a registered trademark of UHS of Delaware, Inc., the management company for Universal Health Services, Inc. and a wholly-owned subsidiary of Universal Health Services, Inc. Universal Health Services, Inc. is a holding company and operates through its subsidiaries including its management company, UHS of Delaware, Inc. All healthcare and management operations are conducted by subsidiaries of Universal Health Services, Inc. To the extent any reference to "UHS or UHS facilities" on this website including any statements, articles or other publications contained herein relates to our healthcare or management operations it is referring to Universal Health Services' subsidiaries including UHS of Delaware. Further, the terms "we," "us," "our" or "the company" in such context similarly refer to the operations of Universal Health Services' subsidiaries including UHS of Delaware. Any employment referenced in this website is not with Universal Health Services, Inc. but solely with one of its subsidiaries including but not limited to UHS of Delaware, Inc.

All UHS subsidiaries are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates. UHS subsidiaries are equal opportunity employers and as such, openly support and fully commit to recruitment, selection, placement, promotion and compensation of individuals without regard to race, color, religion, age, sex (including pregnancy, gender identity, and sexual orientation), genetic information, national origin, disability status, protected veteran status or any other characteristic protected by federal, state or local laws.

We believe that diversity and inclusion among our teammates is critical to our success.

At UHS and all our subsidiaries, our Human Resources departments and recruiters are here to help prospective candidates by matching skillset and experience with the best possible career path at UHS and our subsidiaries. We take pride in creating a highly efficient and best in class candidate experience. During the recruitment process, no recruiter or employee will request financial or personal information (Social Security Number, credit card or bank information, etc.) from you via email. The recruiters will not email you from a public webmail client like Hotmail, Gmail, Yahoo Mail, etc. If you are suspicious of a job posting or job-related email mentioning UHS or its subsidiaries, let us know by contacting us at: https://uhs.alertline.com or 1-800-852-3449.