Health care is constantly changing, and at Banner Health, we are at the front of that change. We are leading health care to make the experience the best it can be. We want to change the lives of those in our care - and the people who choose to take on this challenge. If changing health care for the better sounds like something you want to be part of, we want to hear from you.
Banner Health is looking for a Cybersecurity Business Systems Analyst III to be a member of the Cybersecurity Governance, Risk and Compliance (GRC) team. This role would focus on the following: Cybersecurity framework management (i.e. NIST), risk rating methodology and implementation, risk tolerance methodology, performing risk assessments and control validation assessments, Cybersecurity data governance, and lead IT Policy and Standards lifecycle management, to include risk and Policy exception management. We are looking for a strong, confident, highly motivated individual and team player that can take direction, produce results, be accountable, as well as be a thought leader on our team. This position may lead certain IT and Cybersecurity risk related initiatives mentioned above and others as specific needs arise based on identified risk.
This is a full-time, salaried position, and the typical schedule is a 40+ hour work week. After hours/weekend work is not typically expected or required. The primary work location during COVID-19 protocols is remote. After, during normal operations, this role will be at Banner Corporate (Phoenix Plaza - off Thomas and Central) and can be onsite and/or remote. An ideal candidate would possess a Bachelor's degree in Computer Science, Information Systems, Engineering, Business Administration, or a related field with at least 5 years of related experience. A certification such as a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Systems Security Certified Practitioner (SSCP), Payment Card Industry - Internal Security Assessor (PCI-ISA), Certified in Risk and Information Systems Control (CRISC), HealthCare Information Security & Privacy Practitioner (HCISSP), CompTIA Security+ or other relevant certification.
Within Banner Health Corporate, you will have the opportunity to apply your unique experience and expertise in support of a nationally-recognized healthcare leader. We offer stimulating and rewarding careers in a wide array of disciplines. Whether your background is in Human Resources, Finance, Information Technology, Legal, Managed Care Programs or Public Relations, you'll find many options for contributing to our award-winning patient care.
POSITION SUMMARY This position is responsible for delivering Cybersecurity objectives to plan and designing, developing, and implementing, efficient business, technical, financial, and operational practices or systems in support of core organizational functions and business processes. This includes gathering and analyzing data or requirements in support of business cases, proposed projects, and systems requirements. This individual is competent to work at the highest practical understanding of the Essential Functions across the Cybersecurity organization. You will be required to apply proven communication, analytical, technical, and problem-solving skills to help maximize the benefit of Cybersecurity practices and investments. Provides all customers, both internal and external, of Banner Health with excellent service experience by consistently demonstrating our core and leader behaviors each and every day.
CORE FUNCTIONS 1. Manage process enhancement and redesign efforts to streamline Cybersecurity delivery. Review and analyze the effectiveness and efficiency of existing systems and processes to develop strategies for improving or further leveraging, consolidating, or decommissioning.
2. Ability to work independently and as a team with minimal oversight to identify and establish scope and parameters of required analysis in order to define outcome criteria and deliver measurable actions as part of daily efforts as well as in projects.
3. Ability to determine key data points from raw data and generate information to create meaningful actionable metrics and represent at an executive level.
4. Ability to translate complex, technical specifications into understandable and actionable business requirements.
5. Ability to manage financial planning processes and deliver financial results and reporting including month end, total cost of ownership, ROI, and CBA.
6. Conduct research to make recommendations and to support decision making with the ability to communicate effectively at all levels of the organization.
7. Provides guidance, direction, and oversight for compliance with all federal, state, and local mandated information security laws, rules, and guidelines. Remain current with the latest industry information.
8. Ability to interpret, evaluate, manage, and strategize vendor relationships.
9. Under general direction, this position is responsible for Cybersecurity across multiple departments system-wide and requires interaction at all levels of staff and management.
Must possess strong knowledge of business, cybersecurity, information technology and/or computer science as normally obtained through the completion of a bachelor's degree. Certification may be required in at least one of the following areas within one year of entering the position. Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Systems Security Certified Practitioner (SSCP), Payment Card Industry - Internal Security Assessor (PCI-ISA), Certified in Risk and Information Systems Control (CRISC), HealthCare Information Security & Privacy Practitioner (HCISSP), CompTIA Security+ or other certification designated by the Information Security Leader.
Must possess four years of experience in a healthcare or related environment or an equivalent combination of relevant education, technical, business and healthcare experience. Must demonstrate expertise in information technology and healthcare. Needs experience in medium to large scale project planning and reporting either individually or in a team. Requires communication and presentation skills to engage technical and non-technical audiences. Requires ability to communicate and interact across facilities and at various levels. Ability to balance project workloads with customer support and on-call demands. As is typical in this industry, variable shifts and hours and carrying/responding to a pager may be required.
Demonstrate proficiency with the Microsoft Suite of products and other tools depending on position requirements.
PREFERRED QUALIFICATIONS Advanced degree may substitute for work experience.
Additional related education and/or experience preferred.
What might draw you to Banner Health? A great health care career, of course—and a great place to live, no matter what stage of life you’re in. With facilities across the West, there is a health care career for everyone, from big city living in the Phoenix area to friendly small towns in the mountains and plains. As one of the largest nonprofit health systems in the country, Banner Health offers both the stability that comes with success and the possibility of exploring new areas of the country. If you’re looking to be a key contributor to a forward-looking organization, you’ll experience a wide variety of professional advantages:
Our expansive system offers you an unmatched variety of clinical settings – from large urban trauma center to small rural hospital, ambulatory to home health.
Our commitment to healthcare innovation means you always have the latest technologies at your fingertips to help you provide the finest care possible.
The size, success and growth of our system provide you with the stability and options to pursue your desired career path.
Competitive compensation and comprehensive benefits offer you options to complement your unique needs.