Information Security Analyst

Great companies need great teams to propel their operations. Join the group that solves business challenges and enhances the way we work and grow. Working at Gainwell carries its rewards. You’ll have an incredible opportunity to grow your career in a company that values your contributions and puts a premium on work flexibility, learning, and career development. 

Summary

As Information Security Analyst (SA) you will be accountable for all security-related engineering and delivery for the customer(s) assigned. In a typical engagement, you operate as the technical security analyst in the organization, working with the Information Security Leader (ISL) and senior management and focusing specifically on health care industry regulated security requirements and environments in relation to client business objectives. The SA helps the ISL and others understand operational issues and works with the ISL I planning next steps from an information security viewpoint. You will be able to demonstrate industry expertise and understanding of security governance and compliance. Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the National Institute of Standards and Technology (NIST) 800-53 framework are the standard security frameworks that the SA will be engaged with, maintaining, and helping to assess on each designated account or health care product within Gainwell Technologies and its partners.

Your role in our mission

• Ensure Operational teams are fully equipped to take on management of the solution and governance handover checks are complete for information security and compliance
• Architectural appreciation with the ability to talk confidently about client solution deployed across solutions
• Analytical appreciation with the ability to talk confidently about the security content deployed across solutions
• Technical capabilities to update security controls, regulatory, and compliance requirements to document and submit details required by each security control group for the supported public cloud environments
• Work closely with the Gainwell software developers to align to HIPAA, NIST 800-53, FedRAMP, and other customer requirements to design and implement the controls for each compliance requirement
• Keeping state by having a holistic view of all activities associated with the client and managing progress
• Provide and/or assist with report generation for a multitude of Security services, specifically with Security Monitoring (SIEM)
• Point of contact to the Client and/or software developers for any technical questions relating to proposed service additions or existing services
• Be engaged throughout the lifecycle of the deployment of solution from build through to steady state operations.

What we're looking for

• 5 years IT experience of customer delivery/customer services.
• Experience with Public Cloud platforms (AWS and Azure). Working knowledge of deploying and managing public cloud solutions.
• Splunk Enterprise and other SIEM tools experience is a plus.
• Experience with security compliance and regulatory controls for HIPAA and NIST 800-53.
• Experience with security services and configuration.
• Experience with network topology and services knowledge.
• Excellent documentation skills. 
• Evidence of providing training to small/medium groups, working within a software development lifecycle team, dealing with problem management, and managing customers from a service perspective.

What you should expect in this role

• This role is 100% remote.
• Functionally reports to the Regional Information Security Manager as part of the office of the Chief Information Security Officer (OCISO) to coordinate effort, solutions, and promote Security Practices.
• Works in conjunction with the Account Delivery Leader (ADL)
• Partners and collaborates with Information Security staff to leverage existing solutions and promote common standards.

The deadline to submit applications for this posting is June 17, 2023.

The pay range for this position is $54,500.00 - $77,800.00 per year, however, the base pay offered may vary depending on geographic region, internal equity, job-related knowledge, skills, and experience among other factors. Put your passion to work at Gainwell. You’ll have the opportunity to grow your career in a company that values work flexibility, learning, and career development. All salaried, full-time candidates are eligible for our generous, flexible vacation policy, a 401(k) employer match, comprehensive health benefits, and educational assistance. We also have a variety of leadership and technical development academies to help build your skills and capabilities.

We believe nothing is impossible when you bring together people who care deeply about making healthcare work better for everyone. Build your career with Gainwell, an industry leader. You’ll be joining a company where collaboration, innovation, and inclusion fuel our growth. Learn more about Gainwell at our company website and visit our Careers site for all available job role openings.

Gainwell Technologies is committed to a diverse, equitable, and inclusive workplace. We are proud to be an Equal Opportunity Employer, where all qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical condition), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We celebrate diversity and are dedicated to creating an inclusive environment for all employees.