WHY WORK AT LIBERTY SOFTWARE? WE OFFER A COMPREHENSIVE BENEFITS PACKAGE STARTING ON A TEAM MEMBER’S FIRST DAY:

• 100% paid medical and life Insurance for team members, with option to add dental and vision insurance coverage at no cost
• Option to enroll immediate family members available with Liberty contributing 50% of monthly premium
• Fully vested 401K matching on a pre- or post-tax basis
• Liberty-paid HSA contributions every paycheck
• Generous PTO plan and paid holidays
• Annual tuition reimbursement program and professional certification courses available
• Adoption expense reimbursement program
• Dependent Care FSA availability providing tax savings for qualifying child care expenses
• Counseling resources (including mental health, financial planning, etc.) freely available to all team members and dependents through Optum EAP
• Fully-stocked breakroom
  …and much more! Learn more about Liberty Software at www.libertysoftware.com
  Liberty Software is a healthcare technology company that develops software for retail pharmacies across the country. Our pharmacy management platform helps our clients increase profits, improve customer service, and enhance patient safety. We are seeking a knowledgeable professional with a heart for service to join us as a Senior Information Security Analyst.
  The Senior Information Security Analyst is responsible for leading the real-time monitoring, detection, and mitigation of cyber threats at Liberty Software. They will manage the existing programs for security monitoring, training and awareness, and data protection, and guide the maturation of these programs over time. This position requires continuous engagement with personnel throughout all business units to enhance security knowledge and requires deep technical skills to help remediate risks.
  Liberty Software takes immense pride in its client relations and support and expects all team members, including the Senior Information Security Analyst, to not only have the necessary technical skills, but great interpersonal and communication skills as well.

EDUCATION AND WORK EXPERIENCE

• Bachelor’s degree or higher in Computer Science, Information Technology, Cyber Security, and at least five (5) years of related experience in information security
• Security+ and/or Certified Ethical Hacker certification strongly preferred
• Knowledge of healthcare, privacy, and financial compliance regulation, including HIPAA and HITRUST
• Experience providing risk mitigation directives for projects with components in IT, including the mandatory application of controls
• High degree of initiative, dependability, and the ability to work with little supervision
• Good understanding of the Software Development Life Cycle – including unit testing, and code scanning
• Familiarity with static analysis (source code review), open source analysis, and dynamic pen-testing techniques

THE IDEAL CANDIDATE WILL POSSESS PROVEN, IN-DEPTH EXPERIENCE WORKING WITH THE FOLLOWING:

• Foundational information security tools/systems, such as SIEM, DLP, IDS/IPS, etc.
• Vulnerability Assessment solutions such as Tenable Nessus, Rapid7 Nexpose, Qualys, Accunetix, etc.
• Widely-accepted security standards, such as ISO 27002, NIST, Shared Assessments, etc.
• Automation tools using a scripting language such as Python, PowerShell
• Data classification, access control, and security models
  

  ID2 #Z

• Monitor network and firewall activity for anomalous activity, intrusion attempts, and potential security concerns
• Analyze security events from multiple sources, including SIEM, IPS/IDS, firewalls, etc. and identify the cause of incidents
• Detect cybersecurity incidents in real time through centralized monitoring, and respond to incidents by applying containment and eradication strategies
• Identify and assess internal IT controls, evaluating operational effectiveness, determining risk exposures, and developing remediation plan
• Lead development and maintenance of IT Security and Risk Management program and Standard Operating Procedures (SOPs) related to security tasking
• Assess vendors against security requirements and execute periodic vendor security reviews