IT Security Analyst II

The Role:

The IT Security Analyst II helps develop and implement internal security policies & procedures to protect internal I.S. assets and ensures the security of the products developed and delivered to our customers. This position will perform regular security testing of the company’s infrastructure and its products, and ensure the security of data, computers, servers, and networks in a multi-site Windows environment. This position will also work closely with all departments of iA to deliver exceptional support and services.

What you'll do:

• Act as a project lead on new security projects
• Assist with physical security controls, including key management, badge/fob administration, and oversight of intrusion alarm and camera systems.
• Support compliance initiatives, audits, and implementation of controls for frameworks such as HIPAA, CMMC, SOC 2, NIST 800-171, NIST CSF, and CIS.
• Assist with developing and maintaining security standards and best practices.
• Manage identity lifecycle processes, including provisioning, deprovisioning, access reviews, and administration of remote access solutions for internal and third-party users.
• Oversee secure sanitization and destruction of storage media in accordance with company policy and compliance requirements.
• Administer and support Mobile Device Management (MDM) solutions to enforce security policies on mobile endpoints.
• Administer and support Multi-Factor Authentication (MFA) systems for all applicable platforms.
• Deploy, configure, and monitor Intrusion Prevention/Detection Systems (IPS/IDS) to protect network infrastructure.
• Implement and manage Data Loss Prevention (DLP) solutions for endpoints, email, and cloud applications (CASB).
• Administer email security controls, including DMARC, SPF, and DKIM, to protect against phishing and spoofing.
• Collaborate with security vendors, resolve technical issues, and maintain vendor management documentation.
• Manage the company’s SIEM solution and coordinate vulnerability scanning, assessment, and remediation activities across IT assets.
• Provides technical and professional guidance to members of the team.
• Acts as point of escalation for complex issues
• Maintain intimate knowledge of IT security trends and events.
• Performing risk assessments and assisting with developing remediation strategies.
• Design and deliver security awareness campaigns, including phishing simulations and user training on new security products and procedures.
• Assists with penetration testing to determine the likelihood of vulnerability exploitation.
• Monitor networks for security breaches and investigate violations when they occur.
• Draft, maintain, and update security policies, procedures, incident reports, asset inventories, vendor management documentation, and breach reports.
• Support deployment and administration of emergency mass notification systems.
• Administer security for cloud-based services such as Microsoft 365.
• Assist with the development of DRP/BCP plans.
• Track renewals and compliance status for security tools and services.
• Ensure security of network services (SCCM, Intune, DNS, DHCP, Entra, Active Directory, NPS, etc.)
• Assist with maintaining the security of switches, routers, wireless access points and firewalls.
• Interact with laptops, workstations & servers in a Windows environment.
• Ensure devices interconnect securely with diverse systems including authentication servers, file servers, email servers, application servers and administrative systems.
• Manage Endpoint Protection and EDR tools.
• Research solutions to enhance or replace existing hardware and software.
• Perform other tasks and work with other departments as directed by supervisor.

Who you are:

• Requires degree with a focus in Information Technology or Cybersecurity, or
• Requires 2+ years relevant experience in cybersecurity and 4+ years relevant experience in a Windows Server, Active Directory, and LAN/WAN environment.
• Experience implementing and maintaining controls for compliance frameworks such as HIPAA, CMMC, SOC 2, NIST 800-171, NIST CSF, and CIS.
• Experience with physical security systems such as access control, alarm monitoring, and video surveillance.
• Familiar with standard concepts, practices, and procedures of Systems and Network Administration
• Excellent communication skills, including the ability to communicate technical concepts in a simple and straightforward manner.
• Ability to prioritize and manage multiple responsibilities that are time sensitive.
• Adjustments to requirements may be made for those with comparative experience.

It would be great if you also have:

• Requires Security+ certification, or equivalent security certification.
• Experience with automation tools and Microsoft Power Platform (Power Apps, Power BI, Power Automate)
• Ability to work in a fast-paced environment.
• Ability to work independently.
• Can effectively utilize productivity software, presentation software, various hardware & network diagnostic tools.
• Experience in a manufacturing or healthcare environment

Applicants must be authorized to work for ANY employer in the U.S. Employer will not sponsor applicants for work visas.

What are the perks?

• Generous time off policy that allows you to put your family first
• Opportunity to work on the cutting edge of pharmacy automation in a high growth tech company
• Competitive benefits, salary, and talent development opportunities
• Commitment to professional development and working for a company where your voice is heard

Compensation:

The estimated base annual salary range for this position is $89,287 to $105,043, though a candidate's base annual salary shall be determined on a range of factors, including, but not limited to, qualifications and experience. This position may additionally be eligible for an annual discretionary bonus.

More about iA:

Our Mission: We partner with providers to transform pharmacy through our leading-edge software enabled fulfillment technology and partners to deepen the patient-pharmacist relationship, enhancing patient safety and choice while increasing operational efficiency. iA empowers pharmacists to focus on patient care. iA can run the prescription fulfillment process from start to finish, helping pharmacies manage fulfillment and inventory to help lower costs, improve efficiency, increase safety, and provide comprehensive Rx tracking and real-time support.

Our Products:

• Software
• Modular Hardware
• Sophisticated Counting and Collation Devices

Our Core Values:

• Solutions Driven
• Customer Centric
• Championing Diversity
• Empowering Ownership
• Trust Daringly

To learn more about iA’s product, people and culture visit us at iarx.com OR check us out on LinkedIn, Facebook or Twitter!

iA provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.