Cloud Security Compliance Analyst
What you will do• Manage and triage NIST 800-53, FedRAMP and related security issues and non-compliance events• Manage compliance monitoring including inventory, vulnerability management, POA&M and continuous monitoring and reporting and other recurring compliance activities• Lead and support security policy and procedure maintenance and documentation improvements• Manage security information gathering (SIG) requests by ensuring accurate and timely vendor and data partner responses• Lead and support annual third-party assessment organization and other 3rd-party risk assessment activities• Assist with coordination required security training activities• Lead and support contingency planning and incident response testing and training.
About You• Security is a priority in everything you do• Hold basic familiarity with HIPAA, NIST 800-53 and security compliance frameworks• Keep up to date on data science tools and distributed computing methodologies• Familiar with scalable and/or cluster compute architectures• Know the relevance of monitoring and measuring systems to identify challenges and risks• Comfortable with Shell scripting, Python, Ruby, or similar languages.
Desired Skills and Experience• 2+ years information security and/or system administration experience under Linux-focused on patching, configuration management, and vulnerability remediation• ISC2, SANS or similar security certifications• Working knowledge of Nmap, Nessus, OpenVPN, tcpdump, OpenSSL and other security related tools• Comfortable with scripting in Python and Bash• Understanding of data network configuration and infrastructure concepts, including TCP/IP, DNS, routers, internet/intranet/extranet, firewalls, web servers and security hierarchy including the application of encryption key infrastructures and authentication processes.
HealthVerity security team members are trustworthy company advisors. As such, we will ask for your certification details in order to verify authenticity.Base salary for the role is commensurate with experience and can range between $54,000 - 120,000 + annual bonus opportunity.
About HealthVerityAt HealthVerity we are actively solving some of the greatest challenges in healthcare through innovative technology and data solutions. Our customers and partners including pharmaceutical manufacturers, payers and government organizations look to HealthVerity to partner on their most complicated use cases, leveraging our transformative technologies and real-world data infrastructure. The HealthVerity IPGE platform, based on the foundational elements of Identity, Privacy, Governance and Exchange, enables the discovery of RWD across the broadest healthcare data ecosystem, the building of more complete and accurate patient journeys and the ability to power best-in-class analytics and applications with flexibility and ease. To learn more about the HealthVerity IPGE platform, visit www.healthverity.com.
Why you'll love working here
We are making a difference – Our technology is at the forefront of some of the biggest healthcare challenges in the world. We are one team – Our people define our culture and always will. We take time out to celebrate each other at the end of every week through company-wide shout outs, and acknowledge the value that each of us adds towards our greater mission. Come share all you have to offer.We are learners – Every team member is continually learning, no matter if we've been in a role for one year or much longer. We are committed to learning and implementing what is best for our clients, partners, and each other.
Benefits & Perks• Compensation: competitive base salary & annual bonus opportunity (for non-commissioned roles)• Benefits: comprehensive benefits with coverage on Day 1, medical, dental, vision, 401k, stock options• Flexible location: our HQ is in Philadelphia with 50% of the team distributed across 25+ states • Generous PTO: Take time off as needed, targeted at 4 weeks per year, including vacation, personal and sick time, plus paid maternity and paternity leave.• Comprehensive and individualized onboarding: mentorship program, departmental talks, and a library of resources are available beginning day 1 for each new team member to minimize the stress of starting a new job• Professional development: biweekly 1:1s, hands-on leadership that is goal-and growth-oriented for each team member, and an annual budget to support professional development pursuits
HealthVerity is an equal opportunity employer devoted to inclusion in the workplace. We believe incorporating different ideas, perspectives and backgrounds make us stronger and encourages an environment where ageism, racism, sexism, ableism, homophobia, transphobia or any other form of discrimination are not tolerated. At HealthVerity, we’re working towards an innovative and connected future for healthcare data and believe the future is better together. We can only do that if everyone has a seat at the table. Read our Equity Inclusion and Diversity Statement.
If you require a reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to email@example.com
HealthVerity offers in-office and remote options, so you can work from anywhere within the US! #LI-Remote
Tags: Analytics Bash Cloud Compliance DNS Encryption FedRAMP Firewalls Governance HIPAA Incident response Linux Monitoring Nessus NIST Nmap Privacy Python Risk assessment Ruby SANS Scripting SecOps TCP/IP Vulnerability management
Other jobs like this
Explore more Cybersecurity career opportunities
Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cyber Security in general, filtered by job title or popular skill, toolset and products used.
- Open Infrastructure Security Engineer jobs
- Open Head of Information Security jobs
- Open Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Information System Security Officer (ISSO) jobs
- Open Security Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Senior Penetration Tester jobs
- Open SOC Analyst jobs
- Open Senior Infrastructure Security Engineer jobs
- Open Lead Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Senior SOC Analyst jobs
- Open Senior Air Defense/BMD Subject Matter Expert jobs
- Open Staff Application Security Engineer jobs
- Open Senior Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Information Security Specialist jobs
- Open Application Security Engineer/Architect jobs
- Open Staff Product Security Engineer jobs
- Open Cyber Program Manager jobs
- Open Offensive Security Engineer jobs
- Open Pentesting-related jobs
- Open Network security-related jobs
- Open SaaS-related jobs
- Open GCP-related jobs
- Open Clearance-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs
- Open APIs-related jobs
- Open CISM-related jobs
- Open CI/CD-related jobs
- Open CISA-related jobs
- Open SQL-related jobs
- Open DevSecOps-related jobs
- Open Finance-related jobs
- Open PowerShell-related jobs
- Open Security assessment-related jobs
- Open Splunk-related jobs
- Open IDS-related jobs