Information Security Analyst

Job Description

PointClickCare is a leading North American healthcare technology platform enabling meaningful care collaboration and real‐time patient insights. For over 20 years, the company has been focused on realizing its vision: to help create a world in which providers and plans can confidently deliver frictionless care. Since its inception, PointClickCare has grown exponentially, with over 2,200 employees working to impact millions across North America. Recognized by Forbes as one of the top 100 private cloud companies and acknowledged by Waterstone Human Capital as Canada’s Most Admired Corporate Cultures, PointClickCare leads the way in creating cloud-based healthcare software. At PointClickCare, we offer a wealth of opportunities and a vibrant culture that empowers our employees. Our dynamic environment is the perfect place to advance your career while engaging in meaningful work alongside incredible colleagues. Here, you’ll discover a space where your talents can thrive, your career can grow, and your work will have a lasting impact on healthcare across North America. We believe that work becomes profoundly fulfilling when driven by a higher purpose. Join us and be part of a team that is making a real impact. To learn more about us, check out Life at PointClickCare and connect with us on Glassdoor and LinkedIn . Position Summary: The Information Security Analyst will plan and carry out security measures to protect PointClickCare’s networks, data centers, cloud deployments, endpoints and systems, including a Software and a Service footprint and corporate environments. The Information Security Analyst will be responsible for identifying opportunities for improvement in security posture in collaboration with other security team members and other PointClickCare business units. In addition, the Security Analyst will act as lead on specific projects and technologies, assuring effective implementation and management of security tools to continue to improve the security posture of PointClickCare. Key Responsibilities •Primary point of contact to facilitate with the daily monitoring, assessing and reporting of security incidents from the SIEM platform •Assist with ongoing Vulnerability Management program to perform routine vulnerability scans and working closely with SaaS Operations and Corporate Technology teams to coordinate remediation of identified findings. •Provide advice and apply your experience to help tune alerting to reduce false positives •Actively assist with Security Incident Response process and support security investigations by documenting findings and root causes as and when needed •Manage processes relating to the installation, maintenance and operation of security infrastructure including SIEM, anti-virus, DLP, PAM, IAM, etc. •Work closely with key business groups across the organization to develop and maintain a proactive company-wide security presence •Act as a technical lead in security related projects/initiatives such as new security solutions to improve the overall security posture of PointClickCare •Assist with periodic security audits on current PointClickCare infrastructure, and work with appropriate team(s), such as Security, Corporate Technology, SaaS Operations and other departments to remediate any vulnerabilities found •Participating in security investigations and compliance reviews, as requested by the GRC team. •Assist with the evaluation of security tools and processes in conjunction with Director, Security Operations. Recommend improvements to security tools, configurations, processes and policies. •Report monthly security KPIs, change requests, incidents and threats/events. •Perform ad hoc threat risk assessment (TRA) on infrastructure and systems as well as cloud-based solutions and facilitate remediation tasks with other operational teams. •Researching and assessing new threats and security alerts and determining relevance to PointClickCare environments and staff. •Ability to work independently, engage leadership as needed, and be proactive in advancing PointClickCare’s security posture. •Complete other duties as assigned. Qualifications •College diploma or university degree in the field of computer science OR relevant work experience as an Information Security Analyst. •Proven experience with security software, such as: SIEM, Vulnerability Scanning, Advance Endpoint Protection (Anti-virus/Anti-Malware), Privilege Access Management, Data Loss Prevention solutions, Cloud Security Posture Management, and Asset Management. •Extensive working knowledge of information security and vulnerabilities/threats, security best practices, tools, and techniques, including encryption. •Working technical knowledge of IT technical environments with a strong understanding of IP, TCP/IP, network administration protocols, Access Control methods, WAFs, Firewalls, and virtualized access control solutions (e.g., Network Security Groups). •Understanding/working knowledge of Windows, Active Directory, Group Policy, DNS, and Apple operating systems. •Critical thinking skills, detail oriented, well developed troubleshooting, analytical and problem-solving skills. •Good working knowledge of MS Office, MS Project, MS Excel and Visio. •Team player with ability to work autonomously and collaboratively. •Ability to prioritize, and re-prioritize work as required •Solid written & verbal communication Other Requirements: •1-3 years’ experience as a Security Analyst or similar role. •Certifications desired are: Security+, CompTIA Security are desired but not mandatory. •AWS or Azure Cloud Certifications are desired •Associate of (ISC)2 is desired •Knowledge of relevant security standards such as NIST, ISO and HITRUST and privacy legislation such as PHIPPA, HIPPA, PIPEDA. •High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity. •Excellent analytical skills, ability to manage multiple projects under strict timelines, as well as the ability to work well in demanding, dynamic environment and meet overall infrastructure and data protection objectives. •Experience with AI enabled security tooling or methods of utilizing AI in analysis of log or vulnerability data is an asset. $100,000 - $107,000 a year PointClickCare Benefits & Perks: Benefits starting from Day 1! Retirement Plan Matching Flexible Paid Time Off Wellness Support Programs and Resources Parental & Caregiver Leaves Fertility & Adoption Support Continuous Development Support Program Employee Assistance Program Allyship and Inclusion Communities Employee Recognition ... and more! It is the policy of PointClickCare to ensure equal employment opportunity without discrimination or harassment on the basis of race, religion, national origin, status, age, sex, sexual orientation, gender identity or expression, marital or domestic/civil partnership status, disability, veteran status, genetic information, or any other basis protected by law. PointClickCare welcomes and encourages applications from people with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection process. Please contact [email protected] should you require any accommodations. When you apply for a position, your information is processed and stored with Lever, in accordance with Lever’s Privacy Policy . We use this information to evaluate your candidacy for the posted position. We also store this information, and may use it in relation to future positions to which you apply, or which we believe may be relevant to you given your background. When we have no ongoing legitimate business need to process your information, we will either delete or anonymize it. If you have any questions about how PointClickCare uses or processes your information, or if you would like to ask to access, correct, or delete your information, please contact PointClickCare’s human resources team: [email protected] PointClickCare is committed to Information Security. By applying to this position, if hired, you commit to following our information security policies and procedures and making every effort to secure confidential and/or sensitive information. Apply for this job