Technical Security Analyst

Professional - Non-Clinical

SwedishAmerican / A Division of UW Health


Full Time

Day Shift



The Security Analyst is responsible for operating and supporting all components of the technical security infrastructure utilized to maintain the security and integrity of systems and data for TriRivers Health Partners. The security analyst is required to have a working knowledge of all aspects of information security within the company. Their primary job function is to analyze, implement and operationalize the security measures of the company to ensure an effective security posture and response capability. The security analyst will perform routine system intrusion testing, monitoring of security infrastructure components and maintain the documentation of the security infrastructure. The security analyst will work with other TriRivers staff members, customers, vendors  and other IT professionals to report security flaws, remediate issues discovered and implement configuration or process changes to continually improve systems and data security. The Security Analyst will maintain documentation of security issues, events, and discrepancies to support the regulatory reporting requirements of the company and its customers.


Bachelor's Degree in Information Systems Security, Computer Sciences, business or a clinical discipline preferred.  In the absence of a Bachelor's degree, strong work history in the field of information systems security may be considered.


CISSP, GIAC or other applicable security certification/accreditation is desirable


At least three years of progressive experience in computing and information technology, including experience with Internet and Information Technology security is required. Demonstrable knowledge of open source security analytics tools and the ability to develop advanced technical knowledge is also required.

Experience within the Health Care Information Technology arena, governmental or military agencies, or corporate/industry information security experience is a plus.

Experience with and knowledge of applicable regulatory requirements such as HIPAA, PCI, HITECH Act, etc. is desirable.