Cyber Security Analyst

Job Description

Mosaic Health is a national care delivery platform focused on expanding access to comprehensive primary care

for consumers with coverage across Commercial, Individual Exchange, Medicare, and Medicaid health plans.

The Business Units which comprise Mosaic Health are multi-payer and serve nearly one million consumers

across 19 states, providing them with access to high quality primary care, integrated care teams, personalized

navigation, expanded digital access, and specialized services for higher-need populations. Through Mosaic

Health, health plans and employers have an even stronger care provider partner that delivers affordability and

superior experiences for their members and employees, including value-based primary care capacity

integrated with digital patient engagement and navigation. Each of the companies within Mosaic Health

provide unique offerings that together promise to improve individuals' health and wellbeing, while helping

care providers deliver higher quality care. For more information, please visit or

follow Mosaic Health on LinkedIn.

Formed in 2008 and headquartered in Fort Myers, Florida, with offices in Florida, North Carolina, and Texas,

Millennium Healthcare is the largest independent physician group in the state of Florida and one of the largest

in the United States. At Millennium Physician Group, our employees are the foundation of our success. Our

promise is to provide you with the tools to do your job successfully, as well as providing a team atmosphere

that empowers you to seek better ways to deliver care to our patients and their families. We also promise to

care for you as an individual and help you grow in your role.

The Cyber Security Analyst will support all business units within Mosaic Health and is responsible for ensuring

the security, integrity, and confidentiality of the organization's data, systems, and networks. Reporting to the

Cyber Security Manager (or equivalent), this role plays a critical part in protecting against cyber threats,

identifying vulnerabilities, and implementing security measures across the organization. The Cyber Security

Analyst will work closely with IT, compliance, and other business units to maintain a proactive and reactive

security posture, ensuring regulatory compliance and best practices in information security.

This role requires knowledge of network security, incident response, risk management, and threat intelligence,

and is essential to ensuring that systems and data are protected from cyber-attacks and unauthorized access.

Responsibilities

• Monitor and analyze security alerts from various sources (e.g., SIEM tools, firewalls, IDS/IPS) to

detect potential security breaches and threats.

• Perform regular security assessments and vulnerability scans on networks, systems, and applications

to identify weaknesses and recommend improvements.

• Respond to security incidents, investigating and mitigating threats, ensuring timely resolution, and

documenting incidents as per the incident response plan.

• Maintain and improve firewall rules, endpoint protection, intrusion detection systems (IDS/IPS), and

access controls to safeguard systems from attacks.

• Ensure that security policies, procedures, and best practices are followed, working to continually

improve the organization's security posture.

• Collaborate with internal teams (IT, network, systems, and development) to implement security

measures that are aligned with business objectives and compliance requirements.

• Conduct risk assessments to identify areas of vulnerability in the organization's IT infrastructure,

providing recommendations for mitigations.

• Perform penetration testing and vulnerability assessments to simulate attacks and assess the

security of systems.

• Ensure that data encryption, multi-factor authentication, and data backup strategies are effectively

implemented across the organization.

• Support regulatory compliance efforts, ensuring the organization adheres to HIPAA, PCI-DSS, GDPR,

and other relevant security standards.

• Develop, update, and test security incident response plans, ensuring the organization is prepared to

react to and recover from cybersecurity incidents.

• Monitor third-party vendor risks and ensure that security measures are in place for vendor-managed

systems.

• Stay up to date with the latest cyber threats, vulnerabilities, and trends in the cybersecurity

landscape, recommending strategies to mitigate risks.

• Assist in security training and awareness programs for employees to promote a culture of security

within the organization.

• Demonstrate excellent guest service to internal team members and patients.

• Perform other related duties as assigned.

Qualifications

• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field.

• 2+ years of experience working in cybersecurity, IT security, or related roles.

• Strong knowledge of network security concepts, firewall management, IDS/IPS systems, and SIEM

tools.

• Experience with endpoint security solutions, antivirus software, and data loss prevention (DLP)

systems.

• Familiarity with cloud security frameworks (AWS, Azure, GCP) and security practices for cloud

environments.

• Hands-on experience with penetration testing, vulnerability assessments, and security auditing tools.

• Knowledge of regulatory standards such as HIPAA, GDPR, PCI-DSS, and NIST security frameworks.

• Proficient in risk management practices, including identifying and mitigating security risks and

vulnerabilities.

• Strong analytical and problem-solving skills with the ability to assess complex security issues and

provide clear recommendations.

• Excellent communication skills, with the ability to explain security concepts to both technical and

non-technical stakeholders.

• Certifications preferred: Certified Information Systems Security Professional (CISSP), Certified Ethical

Hacker (CEH), CompTIA Security+, Certified Information Security Manager (CISM), or similar.

• Ability to work independently in a fast-paced, cross-functional environment.

• A commitment to providing excellent service to internal team members and patients.

• High level of professionalism and integrity in all interactions.

• Ability to work independently in a fast-paced, cross-functional environment.

Physical Demands

• Sedentary work. Exerting up to 10 pounds of force occasionally and/or negligible amount of force

frequently or constantly to lift, carry, push, pull, or otherwise move objects. Repetitive motion.

Substantial movements (motions) of the wrists, hands, and/or fingers. The worker must have close

visual acuity to perform an activity such as: preparing and analyzing data and figures; transcribing;

viewing a computer terminal; extensive reading. Ability to lift to 15 lbs. independently not to exceed

50 lbs. without help.

Equal Employment Opportunity

• Mosaic Health is an Equal Employment Opportunity employer and all qualified applicants will receive

consideration for employment without regard to age, citizenship status, color, creed, disability,

ethnicity, genetic information, gender (including gender identity and gender expression), marital

status, national origin, race, religion, sex, sexual orientation, veteran status or any other status or

condition protected by applicable federal, state, or local laws.

• If you require an accommodation for the application or interview process, please let us know and we

will work with you to meet your needs. Please contact for assistance.

Job Posted by ApplicantPro

Full-time