Dignity Health Cybersecurity Business Intelligence Analyst in SAN FRANCISCO, California


Dignity Health, one of the nation’s largest health care systems, is a 22-state network of more than 9,000 physicians, 63,000 employees, and 400 care centers, including hospitals, urgent and occupational care, imaging and surgery centers, home health, and primary care clinics. Headquartered in San Francisco, Dignity Health is dedicated to providing compassionate, high-quality, and affordable patient-centered care with special attention to the poor and underserved. In FY17, Dignity Health provided $2.6 billion in charity care, community benefit, and unpaid cost of government programs. For more information, please visit our website at. You can also follow us on and.


The Business Solutions Analyst (BSA) works as a liaison between key business stakeholders and the Information Technology (IT) department. BSAs are responsible for working with stakeholders to understand their business needs and working with IT partners to implement solutions that meet the business needs, goals and objectives. BSAs play a critical role in defining business solutions and place particular emphasis on the following:

  1. Root Cause/Problem Definition - BSAs interface with both the business stakeholders and core IT; they improve communication and lead to defining a clearer understanding of the drivers that created the business problem/opportunity.

  2. Cost Effectiveness - BSAs are internal consultants whose primary responsibility is to drive the organization to the most efficient and cost effective business decisions.

  3. Solution/Protocol - BSAs follow a protocol to elicit and document clear, complete and comprehensive requirements. They evaluate, define, analyze and document business problems collaborating with appropriate partners to lead to the most appropriate business solution.

Qualified candidates must possess a combination of business, technical and leadership skills. They must be quick learners and capable of thinking on their feet. BSAs must analyze and synthesize large amounts of information, much of which may be unfamiliar to them. Customer service skills and working well in a team environment are critical to success. Finally, qualified BSA candidates must be confident and independent thinkers, capable of making solid business system decisions.

Specifically, The Cybersecurity Business Solutions Analyst (CBSA) IV role is an analytical position within the Cybersecurity organization. This position reports directly to, and assists, the Senior Manager of Cybersecurity Business Intelligence.

The CBSA will play a critical role in defining and developing business intelligence with particular emphasis on the following:

Maturity Analytics- Assist in driving enterprise cybersecurity maturity, aligned with the Dignity Health Cybersecurity Framework, through analysis, forecasting, and reporting.

Risk Analytics– Assist with developing quantitative models and metrics for cybersecurity risk events, analysis, and mitigations.

Performance Analytics– Assist in developing and maintaining models and tools to measure, analyze, track, and report on the actual and forecasted operational health and performance of the Cybersecurity Operations and the Cybersecurity Program.

Business Intelligence and Decision Support- Ensures that the use of business intelligence data, predictive modelling and applications enhance business decision making capabilities.


  • Gather cybersecurity business intelligence data for the Cybersecurity Program

  • Develop the tools and data collection processes to assist in quantitative measurement of cybersecurity risks for the organization.

  • Collect NIST Cybersecurity Framework control information from control owners; analyze data and report on maturity actuals and forecasts

  • Measure, analyze, track, and report on the actual and forecasted operational health and performance of the Cybersecurity Program

  • Provide reporting of cybersecurity performance indicators and make recommendations to enable informed decisions, promote awareness, and drive Continuous Strategic Improvement

  • Contribute to the cybersecurity vision, strategy, and program effectiveness through the delivery of cyber business analytics and intelligence

  • Assist in driving enterprise cybersecurity maturity, aligned with the Dignity Health Cybersecurity Framework, through analysis, forecasting, and reporting

  • Conduct ad hoc analysis as needed

  • Works on multiple projects as a project team leader, sometimes as a business subject matter expert (SME) in multiple functions.

  • Works with enterprise-wide business customers and IT senior management to understand business issues and their environment in order to manage enterprise-wide reporting information support systems.

  • Provide data analysis, insight, and support to internal personnel and external entities (subcontractors, contractors and vendors) concerning cybersecurity program maturity and performance effectiveness

  • Provides assistance and support as requested to Security Engineering, IDM Engineering, Network Engineering, Security Risk Management and/or Information Security Ops.

  • Provides functional and technical expertise and direction for the development of complex enterprise-wide information system solutions.

  • Promote cybersecurity strategy and program alignment with the Organization’s business objectives and risk appetite

  • Establishes relationships with customers, IT colleagues, contractors, vendors and consultants to influence strategic IT initiatives while managing their expectations.

  • Coaches team members on problem definition and understanding stakeholder needs.

  • Oversees teams to ensure projects remain focused on the solution scope

  • Transforms business needs into clearly defined requirements that can feasibly be tested and implemented in a solution.

  • Coaches others on performing Business Analysis Planning and Monitoring phase activities including: 1) identification of stakeholders, 2) selection of business analysis techniques and the process that will be used to manage requirements and 3) identification of how to assess the progress of the work across all levels.

  • Works with stakeholders and teams to ensure as-is and to-be business processes are documented.

  • Leads the development, writing and communication of business requirements documentation and ensures appropriate stakeholder sign-off.

  • Facilitates requirements reviews with all impacted stakeholders including business functions, IT security, IT infrastructure, application support, compliance, legal, and contracting.

  • Develops initial budget estimates and resource requirements for solution implementation

  • Oversees and consults on system and integration testing activities to ensure system is developed according to defined requirements.

  • Oversees user acceptance testing and obtains sign-off from business customers

  • Drives and oversees the solution selection process and helps identify which solution best fits the business need. Activities can include: vendor product research, RFP development, vendor demonstrations and scenario scripting, vendor selection criteria/scoring methodology.

  • Stays abreast of significant change management initiatives, assesses organizational impacts and presents to appropriate leadership.

  • Leads other business solutions analysts on team. Mainly responsible for mentoring, training and problem solving assistance to other team members.

  • Actively leads activities to grow and develop the department.

  • Leads special committees to continuously improve processes, tools or the organization in general.

  • Pursue continuing education to grow and maintain knowledge of best practices, compliance requirements, threats and trends in information security, translating into operational action items, policies, procedures, standards and guidelines as part of the Cybersecurity team


Minimum Qualifications:

  • Bachelor’s degree in programming, computer science, MIS or equivalent experience.

  • Minimum of 6 years of experience leading teams and business solutions analysis projects.

  • Expert in SDLC; solid understanding in multiple methodologies (Waterfall, Agile, etc.)

  • Solid foundation in project management methodologies

  • Expert assessing medium to high complexity solutions and participating in solution selections through RFI/RFP.

  • Ability to become internal expert on department data sources; conversant in the Cybersecurity domain and the NIST Cybersecurity Framework; familiarity with the HIPAA Security Rule, PCI-DSS, and relevant industry frameworks and standards

  • Must be highly skilled and experienced working with Microsoft Excel, Visio, PowerPoint, & Word

  • Excellent data analytic and data modeling skills; power-user of MS Excel

  • High comfort level with mathematics

  • Verbal, visual, and analytical skills to contextualize department data in order tell a compelling and actionable business story to stakeholders

  • Some exposure or familiarity with SQL, Visual Basic, and ETL techniques

  • Effectively manages time and balances multiple priorities.

  • Ability to multi-task in a highly dynamic and growing environment

  • Intellectual flexibility to work comfortably with evolving maturity and new or undefined processes

Other skills and abilities:

  • Able to span from big picture to detail levels

  • Expertly analyzes problems utilizing logic and systematic processes.

  • Works effectively as part of a team and accomplishes goals through collaboration

  • Takes initiative and acts without waiting for direction

  • Displays a strong sense of urgency

  • Projects self-confidence and management presence

  • Anticipates customers’ needs and meets and/or exceeds expectations

  • Capable of influencing without authority

  • Strong interpersonal skills; builds rapport and relates well with all kinds of people. Treats everyone with respect.

  • Flexibility and adaptability to change and ambiguous situations.

  • Writes in ways that make abstract concepts, issues and information clear and understandable to a wide variety of audiences.

  • Manages time and balances multiple priorities

Preferred Qualifications:

  • Experience with best practices in Operations Management, Continuous Strategic Improvement, project management best practices (Agile and/or Waterfall)

  • Experience with SharePoint


Travel variable

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.

Connect With Us!

Not ready to apply, or can't find a relevant opportunity?

to learn more about a career at Dignity Health and experience #humankindness.

Equal Opportunity

Dignity Health is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected Veteran status or any other characteristic protected by law. For more information about your EEO rights as an applicant, please

If you need a reasonable accommodation for any part of the employment process, please contact us by telephone at (415) 438-5575 and let us know the nature of your request and your contact information. Requests for accommodation will be considered on a case-by-case basis. Please note that only inquiries concerning a request for reasonable accommodation will be responded to from this telephone number.

Job ID 2018-49532

Employment Type Full Time

Department IT Security

Hours / Pay Period 80

Facility Dignity Health

Shift Day


State/Province CA

Standard Hours Mon-Fri (8-5 PM)