Information Security Analyst

For more than 20 years, PointClickCare has been the backbone of senior care. We’ve amassed the richest senior care dataset making our market density untouchable and our connections to the healthcare ecosystem exponentially more powerful than those of any other platform.

With Collective Medical & Audacious Inquiry, we’ve become the most expansive, full-continuum care collaboration network, offering care teams immediate, point-of-care access to deep, real-time insights at every stage of a patient’s journey.

For more information on PointClickCare, please connect with us on Glassdoor and LinkedIn.

**Meet the Role**:

- We are looking for a talented, experienced Information Security Analyst who will have a significant impact across our multi-site structure and will be an invaluable, resource to ensure the highest level of integrity and reliability in identifying, detecting, preventing, investigating, containing, and resolving information security threats and proactively addressing security vulnerabilities.
- The Information Security Analyst will be responsible for configuration, monitoring and management of information security tools and identifying opportunities for improvement in security posture. These responsibilities require collaboration with other security team members and other PointClickCare business units. and technical acumen. plan and carry out security measures to protect PointClickCare’s networks, data centers, endpoints and systems, including a Software and a Service footprint and corporate environments. In addition, the Security Analyst will support and in some instances act as lead specific projects and technologies, assuring effective implementation and management of security tools to continue to improve the security posture of PointClickCare.
- Responsibilities:

- As part of a team, facilitate with the daily monitoring, tuning, assessing and reporting of security incidents from SIEM platform
- Responsible for ongoing Vulnerability Management program to perform routine vulnerability scans and working closely with SaaS Operations and Corporate Technology teams to analyze impact, and coordinate remediation of identified findings.
- Actively assist with Security Incident Response process and support security investigations by documenting findings and root causes as and when needed manage processes relating to the installation, maintenance and operation of security infrastructure and tooling including, but not limited to SIEM, anti-virus, DLP, PAM, IAM, etc.
- Work closely with key business groups across the organization to develop and maintain a proactive company-wide security presence
- Assist with periodic security audits on current PointClickCare infrastructure, and work with appropriate team(s), such as Security, Corporate Technology, SaaS Operations and other departments to remediate any vulnerabilities found
- Participate in security investigations and compliance reviews, as requested by internal or external auditors
- Recommend improvements to security tools, configurations, processes and policies, and as necessary, Assist with the evaluation of security tools and processes
- As assigned, act as a technical lead in security related projects/initiatives such as new security solutions to improve the overall security posture of PointClickCare
- Report monthly security KPIs, change requests, incidents and threats/events.
- Perform ad-hoc threat risk assessment (TRA) on infrastructure and systems as well as cloud-based solutions and facilitate remediation tasks with other operational teams.
- Researching and assessing new threats and security alerts, and determine relevance to PointClickCare environments and staff.
- Complete other duties as assigned.

**Meet the Team**:

- Reporting into the Director, Security Operations, the Security Operations is team of 5 and are part of the larger Security & Trust team which works cross-functionally and collaboratively with SaaS Operations and Corporate Technology.

**Meet Your Colleague**:

- The role is very dynamic, and every day brings a new challenge and opportunities. We are a close-knit team and work very closely helping one another and learning new things. We are collaborative, engaging and transparent when it comes to Information Security.

**About You**:

- College diploma or University degree in the field of computer science and relevant work experience as an Information Security Analyst
- Experience in public cloud information security, such as AWS, or Azure Associate of (ISC)2 is required
- Certifications desired are: CISSP, Security+, CompTIA Security are all assets
- Knowledge of relevant security standards as NIST, ISO, PCI and privacy legislation as PHIPPA, HIPAA, PIPEDA
- Proven experience with security software, such as: SIEM, Vulnerability Scanning, Advance
- Endpoint Protection (Anti-virus/Anti-Malware), Privilege Access Management, Data Loss Prevention solutions.
- Extensive working knowledge of information security and vul