Analyst I, Security Operations

Concentra is recognized as the nation’s leading occupational health care company.

With more than 40 years of experience, Concentra is dedicated to our mission to improve the health of America’s workforce, one patient at a time. With a wide range of services and proactive approaches to care, Concentra colleagues provide exceptional service to employers and exceptional care to their employees.

The Analyst I, Security Operations will be responsible for establishing and implementing security policies, standards and guidelines related to all information systems. The Security Analyst will also be responsible for conducting investigations into any alleged computer or network security compromises, incidents, or problems. Responsibilities of this position include the monitoring of compliance to HIPAA, SOX, and PCI security requirements as well as the development and maintenance of security policies and procedures. Provide secondary support for the Information Service Department, while delivering quality customer service. The position will be assigned more complex, and comprehensive tasks and projects than what is expected from the Security Specialist and will be expected to effectively leverage their established subject matter expertise to drive progress and to overcome obstacles. They must illustrate an additional level of ownership and individual accountability of assigned initiatives. This position will be expected to effectively interact with senior business leaders.

The position is also challenged with ensuring that state-of-the art security techniques are employed to maintain the highest level of security for all platforms and applications maintained by the company while at the same time not compromising system efficiency. In addition, the Security Analyst must resolve any security incident in a timely manner. Responsible for identifying opportunities for process and technology enhancements and communicating those opportunities as well as their proposals to implement them to management.

• Identify information protection goals and objectives within the scope of a strategic plan. This should be reviewed on an annual basis.
• Implement and administer security management practices and monitoring tools.
• Ensure platform level compliance to information security policies, standards and best practices through a security monitoring and compliance review program.
• Create, maintain and update disaster recovery procedures and the Configuration Management Database (CMDB) when changes in hardware or applications occur.
• Monitor access control logs and security violation logs.
• Keep abreast of “state of the art” security techniques to advise systems designers and users on security methods that best implement stated policy and standards.
• Lead investigation efforts into any alleged computer or network security compromises, incidents, or problems under the direction of leadership.
• Provide support in defining, updating and standardizing systems configurations for all applications; and thoroughly test any modifications prior to deployment to ensure disruptions to operations are not caused by those changes.
• Develop reports, upon request, utilizing various report-writing tools in all applications.
• Recognize and identify potential areas where existing policies and procedures require change, or where new ones need to be developed, especially regarding future business expansion and recommend ways to improve them to management.
• Monitor servers and networks to detect possible intrusion attempts. Report on any security violation related to the unwarranted access to corporate data.
• Ensure compliance to HIPAA, SOX, and PCI security requirements.
• Ensure that all applications and system related problems are resolved in a timely and efficient manner.
• Willingness to travel a must.
• Maintain awareness of the rapidly changing Select Medical environment and recommend cost efficient techniques when supporting corporate and field systems.
• Support the mission of and direction of Select Medical Information Services both within the department and throughout the corporation.
• Completion of any activities, tasks, and projects as defined.
• Ensure all changes comply with the Change Management policies and procedures.
• Assist with change and problem management activities to ensure that information security concerns are incorporated into information technology development efforts.
• Take lead role in the User Access Request process for projects including application rollouts, acquisitions, joint ventures, and other business expansions.

• Education Level: Bachelor’s Degree ; Major: Business Systems, Computer Science, Security Risk Analysis, Cybersecurity
• Experience in lieu of required education is acceptable
• Four (4) years of systems or other professional experience.
• Excellent attention to detail.
• Large-scale multi-site IS operations experience.
• PC Hardware and peripheral experience.
• Knowledge of Microsoft productivity applications.
• Knowledge of browser-based technology.
• Understanding of operating systems such as Windows and OS X/iOS.
• Strong understanding of HIPAA, Data Privacy, SOX, and PCI Security Regulations a plus.
• Understanding of applicable control frameworks including, NIST RMF/CSF, and Mitre Att&ck a plus.
• Experience with security administration and network monitoring tools.
• Understanding of Essential Security Business Practices.
• Experience with managing personal and enterprise firewalls a plus.
• Excellent report writing skills a plus.
• Healthcare experience a plus.

Job-Related Skills/Competencies

• Proven experience making impactful contributions to successful projects.
• Requires superior teamwork skills.
• Strong interpersonal and communication skills a must; ability to read, write, and speak in a professional manner.
• Excellent analytical and problem solving skills are essential.
• Must possess a personal sense of urgency.
• Ability to effectively multi-task and adapt to changing business priorities.
• Superior customer service skills.
• Excellent time management and organizational skills are required.
• Excellent attention to detail.

Employee Benefits

• 401(k) Retirement Plan with Employer Match
• Medical, Vision, Prescription, Telehealth, & Dental Plans
• Life & Disability Insurance
• Paid Time Off
• Colleague Referral Bonus Program
• Tuition Reimbursement
• Commuter Benefits
• Dependent Care Spending Account
• Employee Discounts

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation, if required.

*This job requires access to confidential and sensitive information, requiring ongoing discretion and secure information management*

Concentra is an Equal Opportunity Employer, including disability/veterans