Cherokee Indian Hospital Authority is an Equal Opportunity Employer (Minorities/Females/Disabled/Veterans).  To read more about this, view the EEO is the Law poster and this EEO is the Law Poster Supplement

Start Over with Job Search

Returning Applicant?  Login Now

Information Security Specialist
Job Code:2023-05-030
Department:Information Technology
FT/PT Status:Regular Full Time
Salary Minimum77,144
Salary Midpoint96,430
Position Closes:

Job Responsibilities & Qualifications:

Job Summary

Works directly with the Chief Information Officer (CIO), the Chief Information Security Officer (CISO), Deputy Director of Information Technology and Help Desk Support Supervisor in planning, designing, executing, implementing, modifying, and evaluating a wide variety of complex technical projects related to cybersecurity. Performs a variety of security functions including administrating distribution of MFA cards, and related user services. Monitors and administrates CIHA user security awareness training. Performs specified duties in support of all CIHA Programs.


Essential Duties and Responsibilities

  • Provides the entire CIHA computer network user community with technical support solving problems, answer questions, training, in all areas concerned with cybersecurity in the CIHA environment.
  • Consults in risk assessments of infrastructure and applications based on threats and vulnerabilities
  • Assists in technical and forensic investigations in response to threats and incidents, and participates in the development and implementation of solutions to mitigate and/or eliminate risk
  • Identifies and report recognized or potential Information Security threats and other Information Security issues
  • Demonstrates understanding of security and controls policies, processes, and procedures through application in situations where security consultations are requested
  • Conduct and lead incident response activities as appropriate, including triage, root cause analysis, kill chain analysis, escalations, notifications, and communication within accordance with the CIHA Information Security Incident Response Plan
  • Promotes security and controls awareness throughout the CIHA
  • Administrates, monitors and evaluates user compliance with assigned security awareness training and testing.
  • Assists in communicating CIHA cybersecurity needs to outside consultants or vendors as needed.
  • Assists CIO, CISO and Deputy Director of Information Technology with the evaluation, recommendations, and purchase of new security technologies.
  • Assists the CIO with the evaluations and recommendations of new software needs for CIHA.
  • Maintains an inventory of MFA cards and related security equipment.
  • Performs individual or group cybersecurity training as need (re New Employee Orientation, etc.).
  • Stays abreast of rapidly changing technology and assists in determining what future changes should be incorporated into computer systems of CIHA.
  • Assists service personnel with support of CIHA staff and security-related issues.
  • Provides updates, status and completion information to the CIHA IT management.
  • Performs all duties according to established safety guidelines and CIHA policies.
  • Performs other duties as assigned.


Education/Experience/Minimum Qualifications

  • Post-secondary degree in system administration, network security, network administration or a related field required.
  • Must have experience working with concepts and technologies of Information Systems.
  • At least five years of experience in system support required.
  • 2 or more years of direct experience with the Health Insurance Portability and Accountability Act (HIPAA) preferred
  • Background in Governance, Risk, and Compliance (GRC) preferred
  • 2 years’ experience as a Cyber Security Specialist or similar role preferred
  • Should have Security+ Certification or will be required to become certified within one year.
  • Must possess a valid North Carolina driver’s license.
  • It would take 3-6 months on the job to become proficient.