3rd Party Risk Analyst (Healthcare Exp Required)

Description

Job Details Responsible for performing risk assessments on internally and externally hosted applications. Identifying, remediating and communicating application level risk to the organization. The Information Security team within IT Technology Services and Support is committed to assisting The Medical Center and its patients. Position Summary Responsible for completing application risk assessments, 3rd party risk assessments, and control / compliance assessments. The individual will work with other teams within OSUWMC IT to provide security expertise when needed. Responsible for documenting and improving risk management process. Duties and Responsibilities The duties of this position are performed with some review and supervision. Most assignments will be completed independently and are subject to periodic review and approval. Support & Maintenance (75%) Support -Under general direction performs routine risk assessments and security control evaluations. Maintenance -Under general supervision assesses the risk of applications for the organization. -Under general direction or guidance completes 3rd party risk assessments. -Under general direction assists with data classification and data governance standards. -Under general direction conducts routine assessments of information security controls and business practices -Under general direction executes technical analysis functions to ensure all applicable IS security requirements are met - Under general direction audits computer access to ensure that appropriate controls exist, that processing is efficient and accurate, and that systems and procedures are in compliance with IT security standards. - Under general direction assists in the maintenance of Identity & Access Management concepts including legal & regulatory compliance requirements as needed. -Supports the Security Officer and Privacy Officer with investigations. Projects (15%) -Assists in project consultations for the development, implementation and administration of infrastructure security devices and tools such as access controls, firewalls, IPS and authentication devices. -Assists in the evaluation of acquisition requests for compatibility with the security architecture. -Assists in the development and implementation of technical security standards. -Coordinates with IT staff to enforce information security policies, standards, and procedures. -Assists IT staff by providing security specifications for vendor products -May assist in the following IT Security areas: security documentation management and program governance, risk management framework and strategy, information security outreach, awareness and training, and IT security certification and accreditation coordination. -Assist with contingency plan development and evaluation -Participates in projects requiring additional specialized technical knowledge in information security -Documents and completes all assign tasks Other (10%) -Reads and responds to (as appropriate) work-related e-mail -Attends and participates in team meetings and other scheduled group discussions not associated with a project or other specific initiative -Provides status reports and perform timekeeping on a weekly basis -Participates on departmental committees and other administrative duties not specifically described herein -Reviews and analyzes new technological advances in Information Security products such as software, devices, etc. and recommend acquisition of products based on needs assessments and budgetary constraints. -Professional development -Other duties as assigned -If certification is required for your role, you are expected to obtain and maintain your certification as a condition of your employment

Skills

Risk management, Risk assessment, Third party risk, Application Risk Assessments, Nist, Healthcare

Top Skills Details

Risk management,Risk assessment,Third party risk,Application Risk Assessments,Nist,Healthcare

Additional Skills & Qualifications

Organizational Expectations Practices within the Medical Center's policies and procedures. Adheres to the Intensive Caring Value statements as demonstrated through positive patient/guest relations, positive and effective interactions with staff, and formulating and meeting developmental goals. Minimum Qualifications For Hire: -Bachelor’s degree or equivalent cybersecurity related degree or 2 years systems analyst experience -The ability to demonstrate knowledge of information security best practices - Knowledge of the risk assessment life cycle and risk management. -Good verbal and written communication skills On going: -Enhance knowledge of information security analysis methodologies and techniques; develop knowledge of industry developments in the areas of security systems standards, interfaces, communications protocols and operating systems and computing platforms.

Experience Level

Expert Level

Pay and Benefits

The pay range for this position is $55.00 - $65.00/hr.

Eligibility requirements apply to some benefits and may depend on your job
classification and length of employment. Benefits are subject to change and may be
subject to specific elections, plan, or program terms. If eligible, the benefits
available for this temporary role may include the following:

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)

Workplace Type

This is a hybrid position in Columbus,OH.

Application Deadline

This position is anticipated to close on Sep 5, 2025.

h4> About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We’re a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We’re a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We’re strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We’re building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.