Skip to main content

Analyst Cyber Risk Defense - Risk Management

Primary Location Oakland, California Worker Location Remote Job Number 1323589 Date posted 11/30/2024
Submit Interest

Navigating the Hiring Process

We're here to support you!

Having trouble with your account or have questions on the hiring process?

Please visit the FAQ page on our website for assistance.

Need help with your computer and browser settings?

Please visit the Technical Information page for assistance or reach out to the web manager at kp-hires@kp.org.

Do you need a reasonable accommodation due to a disability?

A reasonable accommodation is any modification or adjustment that enables you to fully participate in completing the following:

  • Online Submissions
  • Pre-Hire Assessments
  • Interview Process

Please submit your accommodation request and an HR Representative will contact you.

Description:
Job Summary:

This individual contributor is primarily responsible for supporting the protection and maintenance of integrity and reliability of the security of data, systems and networks, while resolving problems with tools, systems and procedures.


Essential Responsibilities:

  • Completes work assignments by applying up-to-date knowledge in subject area to meet deadlines; following procedures and policies, and applying data and resources to support projects or initiatives; collaborating with others, often cross-functionally, to solve business problems; supporting the completion of priorities, deadlines, and expectations; communicating progress and information; identifying and recommending ways to address improvement opportunities when possible; and escalating issues or risks as appropriate.
  • Pursues self-development and effective relationships with others by sharing resources, information, and knowledge with coworkers and customers; listening, responding to, and seeking performance feedback; acknowledging strengths and weaknesses; assessing and responding to the needs of others; and adapting to and learning from change, difficulties, and feedback.
  • Provides proactive monitoring and/or response to known or emerging threats against the KP network.
  • Effectively communicates investigative findings to non-technical audiences.
  • Participates in regular operations meeting with Cyber Risk Defense Center (CRDC) teams.
  • Identifies opportunities for cyber security improvements within assigned cyber defense domain.
  • Works with the CRDC Policy Engineers and Remediation teams to contain identified issues and determine the best approach for improving security posture.
  • Participates in follow-up remediation design and review.
  • Conducts investigation and triage of security events within assigned domain.
  • Performs data analysis in support of security event management processes, including root cause analysis.
  • Provides on-call duties and after hours support of incident management as required.
  • Supports incident response plans which may include after-hours support and coordination among responsible teams.
  • Assists in the execution of incident handling processes which may include containment, protection, and remediation activities.
Minimum Qualifications:

  • Bachelors degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and Minimum three (3) years experience in IT or a related field, including Minimum one (1) year in information security or network engineering. Additional equivalent work experience may be substituted for the degree requirement.

Additional Requirements:

Preferred Qualifications:
  • Two (2) years experience working on project or technical teams.
  • One (1) year work experience requiring the development of technical documents or presentations.
  • Familiarity with and medical device/IoT security
  • Strong understanding of IT risk management concepts and concerns, quantitative and qualitative risk scoring methodologies, and experience creating remediation action plans
  • Experience with with Governance, Risk, and Compliance (GRC) tools,  data analysis and creating reporting for stakeholders and executive leadership
Primary Location: California,Oakland,1800 Harrison Scheduled Weekly Hours: 40 Shift: Day Workdays: Mon, Tue, Wed, Thu, Fri Working Hours Start: 08:00 AM Working Hours End: 05:00 PM Job Schedule: Full-time Job Type: Standard Worker Location: Remote Employee Status: Regular Employee Group/Union Affiliation: NUE-IT-01|NUE|Non Union Employee Job Level: Individual Contributor Specialty: IS Cyber Risk Defense Department: KPIT ADMIN - ITO WT EES ENG - 9601 Pay Range: $118000 - $152680 / year Kaiser Permanente strives to offer a market competitive total rewards package and is committed to pay equity and transparency. The posted pay range is based on possible base salaries for the role and does not reflect the full value of our total rewards package. Actual base pay determined at offer will be based on labor market data and a candidate's years of relevant work experience, education, certifications, skills, and geographic location. Travel: No Remote: Work location is the remote workplace (from home) within KP authorized states. Worker location must align with Kaiser Permanente's Authorized States policy. At Kaiser Permanente, equity, inclusion and diversity are inextricably linked to our mission, and we aim to make it a part of everything we do. We know that having a diverse and inclusive workforce makes Kaiser Permanente a better place to receive health care, a more supportive partner in our communities we serve, and a more fulfilling place to work. Working at Kaiser Permanente means that you agree to and abide by our commitment to equity and our expectation that we all work together to create an inclusive work environment focused on a sense of belonging and wellbeing.

Kaiser Permanente is an equal opportunity employer committed to a diverse and inclusive workforce. Applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), age, sexual orientation, national origin, marital status, parental status, ancestry, disability, gender identity, veteran status, genetic information, other distinguishing characteristics of diversity and inclusion, or any other protected status. Submit Interest