Senior Information Security Analyst
San Diego, CA

Job Description

Senior Information Security Analyst, User Governance

WHY XIFIN?

XIFIN is a San Diego based SaaS company that leverages diagnostic information to improve the quality and economics of healthcare. Our cloud-based platform facilitates connectivity and workflow automation for accessing and sharing clinical and financial diagnostic data, improving the delivery and reimbursement of care.

We are self-driven innovators who are looking to make a difference in the healthcare technology space.

Who are we looking for?

The Senior Information Security Analyst will be a resourceful go-getter looking to build upon their existing knowledge base. You will be a subject matter expert on User Governance, able to work with team members inside and outside the department. The ideal candidate will be well rounded for reviewing the user provisioning processes in all XIFIN information systems and identifying improvements to tighten security controls to follow best practices.

The candidate will be solution oriented and will seek out answers to the challenges of providing an efficient yet secure process. You will be comfortable building relationships and partnering across the organization. This role can provide a pathway to further developing your skills as a Senior Information Security Analyst, with

opportunities to grow and improve the security and compliance processes within the organization.

Responsibilities

* Perform user entitlement reviews on all XIFIN information systems on a regular basis
* Identify opportunities to enforce minimum necessary use and least privilege and report these findings for remediation
* With help from the Cyber Security Director, be the security department approval in the workflow for user provisioning for XIFIN information systems that contain sensitive data

What qualifications are needed?

* BS in Computer Science or equivalent experience
* 5+ years of experience in Information Security
* Have a strong understanding of principles in network technology, incident response, data loss prevention, security architecture, and information security policy
* Ability to manage multiple assignments and track through to completion
* Requires excellent verbal and written communication, interpersonal and customer service skills with the strong ability to interact professionally with a diverse group, executives, managers, and subject matter experts
* Extremely detailed orientated with superior time management skills
* Takes initiative and proactive approach to work
* Nice to haves: Security certifications such as CISSP, CISA, or CHPS also a plus, or a desire to achieve any such certifications; Familiarity with HIPAA and/or PCI-DSS; financial industry/accounting and/or laboratory or other medical industry background

EEO Statement

XIFIN provides equal opportunity for all applicants without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, disability, genetic information, marital status, sexual orientation, veteran status, or any other basis protected by state or federal law.