Data Security Analyst

Tempus • Chicago, Illinois, United States • 3w ago

Passionate about precision medicine and advancing the healthcare industry?

Recent advancements in underlying technology have finally made it possible for AI to impact clinical care in a meaningful way. Tempus' proprietary platform connects an entire ecosystem of real-world evidence to deliver real-time, actionable insights to physicians, providing critical information about the right treatments for the right patients, at the right time.

About our Teams:

At Tempus, products are owned and developed by small, autonomous teams composed of developers, designers, scientists, and product managers. You and your team set the goals, build the software, deploy the code, and contribute to a growing software platform that will make a lasting impact in the field of precision medicine.

As a Data Security Analyst, you will be responsible for improving the overall security posture of Tempus. You will evaluate, test and document security solutions and controls, and work closely with other security team members to remediate risk while ensuring the business is able to innovate.

Responsibilities:

Support the Insider Risk Management/Data Loss Prevention Program by reviewing concerning activity and determining if escalation is required.
Support the Data Security Advisory Board (DSAB) by reviewing, documenting, and validating agreed upon actions are performed and technical implementations are aligned to defined designs.
Perform analysis on bespoke data sets to drive insights and determine need to action.
Support Data Security processes by reviewing requests for exceptions or access to critical data sets and ensuring they are aligned with Tempus approved practices.
Participate in technical and non-technical projects requiring information security oversight and to ensure policies, procedures and standards are met.
Assist in the development and maintenance of security policies and procedures.
Collaborate with IT and business units to integrate data security measures with existing systems and processes.
Recommend new security solutions as well as effective improvements to existing security controls that do not negatively impact business innovation.
Stay apprised of current and proposed security changes impacting regulatory, privacy and security industry best practice guidance.
Perform other duties as assigned.

Requirements:

3+ Years of overall IT Experience with a major emphasis on Information Security
Strong analytical and problem-solving skills
Excellent communication and interpersonal skills
Knowledge of regulatory frameworks (HIPAA, GDPR, EU AI Act)
Knowledge of cyber security frameworks (ISO 27001, NIST 800-53, CIS Controls, PCI DSS)

Bonus points for: