Security Risk Analyst - Nextech Tampa, FL Bookmark Share Print 184 0 1

Listing Description

Why join Nextech?

We are a leader in specialty healthcare technology solutions, headquartered in Tampa, FL.

We are an ever-growing team, guided by our iCREATE values of Integrity, Collaboration, Respect, Empowerment, Accountability, Trust, and Excellence. We hold these values in high regard and are driven to succeed in all we do.

We’re committed to hiring and retaining talent, which is why we invest in our employees through competitive pay, a generous bonus structure, great healthcare, a comprehensive wellness program, and many other benefits.

If you are a software engineer, finance or accounting professional, customer support specialist, or a business development expert with a passion for healthcare technology (just to name a few), we want to hear from you.

We are an equal opportunity employer with a commitment to diversity. All individuals, regardless of personal characteristics are encouraged to apply. If you are a candidate in need of assistance or an accommodation in the application process, please contact talent@nextech.com.

The Security Risk Analyst will assist in protecting the security of Nextech’s systems and information assets. You will work closely with multiple departments to ensure that our policies and procedures are compliant and are maintained.

All activities must be in compliance with Equal Employment Opportunity laws, HIPAA, ERISA and other regulations, as appropriate.

Essential Functions

Assist in defining, implementing, and maintaining the security risk management program 

Gather KRIs (key risk indicators) and KPIs (key performance indicators) and communicate these to stakeholders

Measure and monitor the maturity level of established security programs and existing controls, including conducting periodic assessments to identify gaps and opportunities for improvement

Champion the company's commitment to security

Perform internal risk assessments and manage the risk register

Protect against the unauthorized access, modification, and destruction of Nextech assets

Keep an eye on security vulnerabilities and threats

Documents business processes, process narratives and flowcharts for identifying risks and mitigating controls.

Work closely with auditors to provide documentation and attestations as to our security processes and procedures to ensure our compliance

Review third party vendor contracts to ensure appropriate security and compliance controls are in place and functioning effectively

Support the evaluation of requests for exception to established security policies, guidelines, and standards, documenting all approved exceptions and review on a recurring basis for continued necessity

Assist in development of targeted phishing/security training campaigns as well as other training and awareness programs for all audiences (technical and non-technical)

Maintain a thorough understanding of the latest security principles, techniques, threats, technologies and protocols

Carry out additional responsibilities as determined and assigned based on business need

Minimum Requirements

2 years of experience in the field of information security

Bachelor’s degree

Experience working in a SaaS organization

Preferred Qualifications

At least one certification (CEH, CISM, CISSP, CISA)

Working Environment/Physical Demands

Works generally at a desk in a well-lighted, air-conditioned cubicle/office, with moderate noise levels.

Long-distance or air travel as needed – not to exceed 10% travel.

Periods of stress may occur.

Physical Demands:

Activities require a significant amount of sitting at office and work desks and in front of a computer monitor.

Some walking and standing relative to interaction with other personnel.

Listing Details

Citizenship: Not Provided
Incentives: Not Provided

Education: Not Provided
Travel: Not Provided
Telework: Not Provided

Listing Description

Listing Details

About Us

Useful Links

Our Contacts