Cyber Security Analyst

Who We Are:

Managed Health Care Associates, Inc.

(MHA), provides care communities with access, solutions, and insights to help them run their businesses more effectively.

Our members include post-acute providers across the care continuum including long-term care, home infusion, and specialty pharmacies, as well as senior living and other group living facilities.

Our team of associates are passionate about our common mission of helping people age with grace, and champion our core values of being Curious Learners, Selfless Advocates, and Relentless Finishers.

Who we’re looking for:

The Cybersecurity Analyst at Managed Health Care Associates, Inc.

(MHA) plays a crucial role in safeguarding the organization's digital assets by proactively identifying and mitigating security threats.

This includes safeguarding the organization’s assets within the Azure cloud and beyond.

This position is essential for maintaining the confidentiality, integrity, and availability of MHA's information systems.

Through continuous monitoring of the security infrastructure, conducting detailed vulnerability assessments, and responding swiftly to any security incidents, the Analyst ensures the organization's networks and data are protected against cyber-attacks.

Collaborating closely with the Cybersecurity Manager, this role contributes to the development and enforcement of comprehensive cybersecurity policies and strategies, enhancing the organization's security posture and compliance with regulatory requirements.

 

What You’ll Be Doing:

Supporting the maturation and development of the MHA Cybersecurity Program:


* Aid in implementing new security controls in line with MHA’s security roadmap, in line with the NIST 2.0 framework, including Cloud Security Posture Management (Azure Cloud), Server and Workstation controls


* Support the alignment of internal cybersecurity initiatives with our parent company’s cybersecurity program, ensuring consistency and strategic focus


* Participate in cross-functional teams to integrate cybersecurity measures across the organization


* Work with various departments to ensure cybersecurity practices are seamlessly integrated into business processes.


* Advance cybersecurity strategies and governance for cloud, software, systems, data, networks, and hardware


* Ensure compliance with standards like HIPAA, HITRUST, SOC, and ISO


* Assist in the evaluation and enhancement of cybersecurity policies and practices

Security Monitoring and Incident Response:


* Monitor security systems and networks for anomalies


* Lead initial incident response efforts


* Document and analyze security incidents

Vulnerability Management:


* Conduct vulnerability scans and risk assessments


* Prioritize and remediate identified vulnerabilities

Risk Management and Compliance:


* Aid in maturing the organization’s information security risk management program, aligned with acceptable risk toler...