Insider Trust Information Security Analyst

Children's National Hospital is seeking a dynamic and experienced Senior Level Cyber Security Analyst to develop, implement, and manage a comprehensive Insider Trust program. This program will educate employees about Insider Trust policies, procedures, and best practices. The ideal candidate will have a strong background in cybersecurity, excellent communication skills, and a proactive approach to fostering a culture of security within the organization.

The analyst will assist the Information Security Awareness Manager in developing and executing an Insider Trust program tailored to various departments and roles within the hospital. The Insider Trust Analyst will be responsible for identifying, assessing, and mitigating risks posed by individuals within the organization who may intentionally or unintentionally compromise security. This role involves monitoring user activity, analyzing behavioral trends, and implementing strategies to detect and prevent potential threats. The analyst will collaborate with cybersecurity, HR, physical security, and legal teams to develop policies, conduct investigations, and enhance the organization's insider threat program.

Minimum Education

• Bachelor's Degree Bachelor's degree in a computer science, math, engineering, or another relevant discipline or equivalent training and work experience (Required)

Minimum Work Experience

• 5+ years of experience in cybersecurity with a focus on vulnerability management, cybersecurity operations, analysis, forensics and/or investigations (Required)

Required Skills/Knowledge:

• Some experience in the application of key cybersecurity practices, controls, and frameworks
• Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related concepts to technical as well as nontechnical audiences
• Limited direct experience and knowledge of cybersecurity auditing, compliance, and policy
• Some experience in performing risk assessments, vulnerability management, penetration testing, and threat identification.
• Several years' experience in the management of access controls including identity, active directory, privileged account management, and authentication
• Some experience in participating in cybersecurity incident response, risk remediation, business continuity, disaster recovery, and cyber operations.

Functional Accountabilities:

• Initiates and manages tasks involved in the identification, documentation, and reporting of cyber risks
• Able to initiate and manage tasking for development and documentation of cybersecurity policies, standards, and procedures.
• Engages with other CNH business units to shape initiatives ensuring security of assets, applications, and data
• Initiates and manages tasks that develop and document procedures associated with managing access to CNH systems, data, and other assets
• Initiates and manages tasks associated with cybersecurity incidents, as required