Title:  Senior IT Security Associate

Division:  Compliance and Audit Services
Schedule:  Monday - Friday, 8 am to 5 pm
Work Location:  Texas Medical Center, Houston, TX
Salary Range:  $86,273 - $97,000
FLSA Status:  Exempt
Requisition ID:  8160


Baylor College of Medicine is shaping the future of medicine, forging a dynamic environment where the best minds come together to discover and deliver the best possible health care. Join the BCM Compliance and Audit Team as we continue to expand our comprehensive compliance program. In the Information Security Analyst role you will assist in developing and maintaining an integrated compliance program to protect the integrity, confidentiality, and availability of Baylor College of Medicine information resources. Primary responsibilities of this position include, information security compliance support of college business, clinical, and research information systems, enterprise network security systems; information security incident investigations and forensic analysis; assisting in the development of information systems compliance policies and procedures; and developing ongoing knowledge of security compliance technologies, issues, and best practices.

Job Duties

  • Investigates information systems security incidents, including appropriate forensic analysis of the resources implicated in an incident.
  • Assists in developing and implementing information systems compliance policies, procedures, guidelines, and measures to support various aspects of BCM-wide information systems.
  • Assists in identifying BCM-wide information security compliance risks and exposures by participating in security compliance reviews, evaluations, and risk assessments.
  • Assists in designing and developing security and control measures to address identified risks.
  • Works effectively as part of the Compliance and Audit Services team, under the direction of the Information Security Officer and more senior team members, to address the team's objectives and priorities.
  • Effectively plans and manages assigned activities to ensure that objectives and schedules are met.

Minimum Qualifications

  • Bachelor's degree.  Four years of relevant experience may substitute for degree requirement. 
  • Two years of relevant experience.

Preferred Qualifications

  • Four to six years of progressive experience in information systems security compliance, to include information systems security controls and management such Endpoint Detection and Response, Vulnerability Assessment/Management, Data Classification/Data Loss Prevention, Intrusion Detection/Intrusion Prevention, Security Information and Event Management, Network Access Control and regulatory requirements such as HIPAA, FISMA, NIST, and PCI 
  • Strongly Preferred:  Certified Information Systems Security Professional (CISSP)
  • Preferred: Certified Incident Handler (GCIH) or Certified Ethical Hacker (CEH) or equivalent certification





Baylor College of Medicine is an Equal Opportunity/Affirmative Action/Equal Access Employer.