Cybersecurity Awareness and Training Analyst

Children's National Hospital is seeking a dynamic and experienced Mid-Level Security Awareness and Training Analyst to join our cybersecurity team. The ideal candidate will have a strong background in information security and a passion for educating and empowering employees to recognize and respond to security threats. This role involves developing, implementing, and managing security awareness programs that promote a culture of security within the organization.

They will assist the Security Awareness Manager in the development and execution of a comprehensive security awareness program and campaign aimed at educating employees about information security best practices, policies, and procedures. They will accomplish this by creating engaging and informative training materials, including presentations, videos, newsletters, and e-learning modules. Additionally, this person will conduct regular security awareness training sessions, workshops, and simulations, such as phishing exercises.

Staying current with the latest security trends, threats, and technologies, and providing regular updates and guidance to employees while collaborating with cross-functional teams to integrate security awareness into organizational processes and projects is an integral part of this role. This ensures we maintain a culture of security within our hospital.

Minimum Education
Bachelor's Degree Bachelor's degree in a computer science, math, engineering, or another relevant discipline or equivalent training and work experience (Required)

Minimum Work Experience
3 years of experience in cybersecurity with a focus on vulnerability management, cybersecurity operations, analysis, forensics and/or investigations (Required)

Required Skills/Knowledge

• Some demonstrated ability to apply key cybersecurity practices, controls, and frameworks
• Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related concepts to technical as well as nontechnical audiences
• Understanding and some application of practices associated with cybersecurity auditing, compliance, and policy
• Understanding of and some application of key practices associated with risk assessment, vulnerability management, penetration testing, and threat identification.
• Understanding and some application of controls and practices associated with access management, active directory, privileged account management, and authentication
• Understanding and some application of key practices associated with incident response, risk remediation, business continuity, disaster recovery, and cyber operations.

Functional Accountabilities
Cyber Analysis

• Responsible for tasks involved in the identification, documentation, and reporting of cyber risks

• Execute tasking for development and documentation of cybersecurity policies, standards, and procedures.

• Engage directly with other CNH business units to ensure security of assets, applications, and data

• Responsible for the documentation of procedures associated with managing access to CNH systems, data, and other assets

• Engages in tasks associated with cybersecurity incidents, as required

Organizational Accountabilities
Organizational Accountabilities (Staff)
Organizational Commitment/Identification

• Anticipate and responds to customer needs; follows up until needs are met

Teamwork/Communication

• Demonstrate collaborative and respectful behavior

• Partner with all team members to achieve goals

• Receptive to others' ideas and opinions

Performance Improvement/Problem-solving

• Contribute to a positive work environment

• Demonstrate flexibility and willingness to change

• Identify opportunities to improve clinical and administrative processes

• Make appropriate decisions, using sound judgment

Cost Management/Financial Responsibility

• Use resources efficiently

• Search for less costly ways of doing things

Safety

• Speak up when team members appear to exhibit unsafe behavior or performance

• Continuously validate and verify information needed for decision making or documentation

• Stop in the face of uncertainty and takes time to resolve the situation

• Demonstrate accurate, clear and timely verbal and written communication

• Actively promote safety for patients, families, visitors and co-workers

• Attend carefully to important details - practicing Stop, Think, Act and Review in order to self-check behavior and performance