Why work at Liberty Software? We offer a comprehensive benefits package starting on a team member's first day:
100% paid medical and life Insurance for team members, with option to add dental and vision insurance coverage at no cost
Option to enroll immediate family members available with Liberty contributing 50% of monthly premium
Fully vested 401K matching on a pre- or post-tax basis
Liberty-paid HSA contributions every paycheck
Generous PTO plan and paid holidays
Annual tuition reimbursement program and professional certification courses available
Adoption expense reimbursement program
Dependent Care FSA availability providing tax savings for qualifying child care expenses
Counseling resources (including mental health, financial planning, etc.
) freely available to all team members and dependents through Optum EAP
Fully-stocked breakroom
.
.
.
and much more! Learn more about Liberty Software at www.
libertysoftware.
com
Liberty Software is a healthcare technology company that develops software for retail pharmacies across the country.
Our pharmacy management platform helps our clients increase profits, improve customer service, and enhance patient safety.
We are seeking a knowledgeable professional with a heart for service to join us as a Senior Information Security Analyst.
The Senior Information Security Analyst is responsible for leading the real-time monitoring, detection, and mitigation of cyber threats at Liberty Software.
They will manage the existing programs for security monitoring, training and awareness, and data protection, and guide the maturation of these programs over time.
This position requires continuous engagement with personnel throughout all business units to enhance security knowledge and requires deep technical skills to help remediate risks.
Liberty Software takes immense pride in its client relations and support and expects all team members, including the Senior Information Security Analyst, to not only have the necessary technical skills, but great interpersonal and communication skills as well.
This role is hybrid, based out of our Southlake, TX office, with team members transitioning to working from home one day per week following their initial six months in the position.
Responsibilities include:
Monitor network and firewall activity for anomalous activity, intrusion attempts, and potential security concerns
Analyze security events from multiple sources, including SIEM, IPS/IDS, firewalls, etc.
and identify the cause of incidents
Detect cybersecurity incidents in real time through centralized monitoring, and respond to incidents by applying containment and eradication strategies
Identify and assess internal IT controls, evaluating operational effectiveness, determining risk exposures, and developing remediation plan
Lead development and maintenance of IT Security and Risk Management program and Standard Operating Procedures (SOPs) related to security tasking
Assess vendors against security requirements and execute periodic vendor security reviews
Education and Work Experience
Bachelor's degree or higher in Computer Science, Information Technology, Cyber Security, and at least five (5) years of related experience in information security
Security+ and/or Certified Ethical Hacker certification strongly preferred
Knowledge of healthcare, privacy, and financial compliance regulation, including HIPAA and HITRUST
Experience providing risk mitigation directives for projects with components in IT, including the mandatory application of controls
High degree of initiative, dependability, and the ability to work with little supervision
Good understanding of the Software Development Life Cycle – including unit testing, and code scanning
Familiarity with static analysis (source code review), open source analysis, and dynamic pen-testing techniques
The ideal candidate will possess proven, in-depth experience working with the following:
Foundational information security tools/systems, such as SIEM, DLP, IDS/IPS, etc.
Vulnerability Assessment solutions such as Tenable Nessus, Rapid7 Nexpose, Qualys, Accunetix, etc.
Widely-accepted security standards, such as ISO 27002, NIST, Shared Assessments, etc.
Automation tools using a scripting language such as Python, PowerShell
Data classification, access control, and security models
#ID2 #ZR