We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
Networking Technologies + Support jobs

Security Analyst - Risk Management Program

Networking Technologies + Support
United States, Virginia, Midlothian
14421 Justice Road (Show on map)
Jun 11, 2026

NTS is seeking an experienced Security Analyst to support the Risk Management Program for a leading academic healthcare and research environment in Charlottesville, Virginia. This position will play a critical role in protecting clinical, research, and business information assets by conducting security risk assessments, evaluating security controls, supporting regulatory compliance initiatives, and partnering with stakeholders across healthcare, research, and technology teams.

The ideal candidate possesses a strong cybersecurity background combined with experience in risk management, governance, compliance, and project coordination within a healthcare, higher education, or regulated environment.

Key Responsibilities

Risk Management & Security Assessments

  • Conduct security risk assessments for healthcare, research, and enterprise technology initiatives.

  • Evaluate risks related to confidentiality, integrity, and availability of protected health information (PHI), research data, and critical business systems.

  • Identify security gaps and develop risk-based recommendations for remediation.

  • Maintain risk registers, track mitigation activities, and support ongoing risk reporting.

  • Perform vendor and third-party security reviews to assess organizational risk exposure.

Security Control Reviews

  • Review and validate technical, administrative, and physical security controls.

  • Assess compliance with organizational policies and regulatory requirements.

  • Evaluate security controls supporting research projects, clinical systems, cloud environments, and enterprise applications.

  • Collaborate with IT and security teams to ensure required controls are implemented and operating effectively.

  • Document findings, recommendations, and corrective action plans.

Governance, Risk & Compliance (GRC)

  • Support cybersecurity governance and risk management programs.

  • Assist with security audits, compliance reviews, and evidence collection activities.

  • Contribute to the development and maintenance of security standards, policies, and procedures.

  • Support compliance efforts related to HIPAA, NIST Cybersecurity Framework, NIST 800-53, SOC 2, ISO 27001, and other applicable regulations and frameworks.

  • Participate in internal and external audit activities.

Project Management & Stakeholder Engagement

  • Serve as the cybersecurity representative on healthcare, research, and enterprise technology projects.

  • Coordinate security reviews throughout project lifecycles, from planning through implementation.

  • Track security deliverables, timelines, risks, and dependencies.

  • Communicate security requirements and recommendations to technical and non-technical stakeholders.

  • Facilitate cross-functional collaboration to balance security requirements with operational and research objectives.

Research Security & Data Protection

  • Support data security reviews for research initiatives involving regulated, restricted, or sensitive information.

  • Assist with Data Security Plan reviews and risk evaluations for research projects.

  • Evaluate data protection controls supporting research environments and clinical studies.

  • Partner with investigators, compliance teams, and technology stakeholders to ensure secure handling of research data.

Required Qualifications

  • Bachelor's degree in Cybersecurity, Information Technology, Information Security, Computer Science, or a related field; equivalent experience may be considered.

  • 3+ years of cybersecurity, risk management, governance, compliance, or security operations experience.

  • Experience conducting security risk assessments and control reviews.

  • Strong understanding of healthcare security requirements and regulatory frameworks.

  • Knowledge of security technologies, risk management methodologies, and cybersecurity best practices.

  • Excellent written communication, documentation, and stakeholder engagement skills.

Preferred Qualifications

  • Experience supporting healthcare, academic medical centers, research institutions, or higher education environments.

  • Familiarity with IRB-reviewed research, research security programs, and regulated research data.

  • Experience with security frameworks including NIST CSF, NIST 800-53, CIS Controls, HIPAA, ISO 27001, and SOC 2.

  • Professional certifications such as Security+, CySA+, CISSP, CISM, CRISC, HCISPP, or similar.

Required Conditions of Employment

  • Ability to pass pre-employment background screening and drug testing.

  • Valid driver's license and reliable transportation.

  • Ability to work on-site in Charlottesville, VA as required.

Why Join NTS?

  • Support one of the nation's premier academic healthcare and research environments.

  • Work on meaningful cybersecurity and risk management initiatives that protect patient care and research innovation.

  • Collaborate with healthcare, research, compliance, and technology leaders.

  • Competitive compensation and benefits package.

  • Hybrid work environment with opportunities for professional growth.

NTS is a drug-free workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

Applied = 0
MORE JOBS LIKE THIS

(web-77cf7d65c7-wmmd7)