Job Title: SecOps Analyst
Team: Cyber Security
Job Location: Remote
About us:
Softheon is a dynamic and forward-thinking Software as a Service (SaaS) organization that is dedicated to ensuring affordable, accessible, and plentiful healthcare for every American. We are a pioneering force in the healthcare technology industry, driven by our mission to empower individuals and organizations with innovative solutions that transform the healthcare landscape. Our commitment to improving healthcare access and delivery is unwavering, and we are looking for top-tier talent to join our journey and contribute to our vision. If you're seeking an environment where your contributions are impactful and deeply valued, don't just join a company with ambition. Align with a purpose backed by a committed company.
Our Company Culture:
Our culture is built on collaboration, innovation, and appreciation. We value each employee's unique talents and contributions and understand that every individual plays a critical role in our mission to transform healthcare. Every day, we celebrate our team's dedication, creativity, and expertise, which drive us closer to our goals.
At Softheon, Our Mission is powering growth to make healthcare more productive, intelligent, and successful. Our Vision is Making healthcare affordable, accessible, and plentiful for every American.
About the role:
As a SecOps Analyst at Softheon, you will play a critical role in safeguarding our cloud-based healthcare solutions by ensuring the security and integrity of our systems. You will be responsible for monitoring security events, identifying potential threats, and responding to incidents in real time. Working closely with cross-functional teams, you will analyze vulnerabilities, implement security controls, and develop strategies to mitigate risks. Your expertise in threat detection, incident response, and security best practices will be pivotal in protecting sensitive data and maintaining the trust of our clients.
Requirements
You will:
Threat Monitoring and Incident Response
- Actively monitor SIEM tools, IDS, and other security applications for potential threats.
- Investigate security alerts, differentiate between valid threats and false positives, and follow incident response protocols.
- Proactively search for advanced threats in security logs and datasets.
- Set up, manage, and fine-tune SIEM tool alerts and conduct routine security checks.
Collaboration and Knowledge Sharing
- Collaborate with IT and cybersecurity teams, sharing intelligence and addressing security incidents.
- Document system changes and issues, share knowledge across teams, and maintain a Wiki for common issues and resolutions.
- Collaborate on developing and conducting security awareness programs, emphasizing healthcare-specific data security.
Regulatory Compliance and Industry-Specific Awareness
- Align activities and investigations with HIPAA and other healthcare regulations, and report on security incidents and trends.
- Stay informed about threats specific to the healthcare industry, such as targeted ransomware or PHI breaches.
Continuous Improvement and Skill Development
- Regularly tune security tools, create new detection rules, and refine existing ones.
- Recommend and implement enhancements to improve the company's security posture.
- Stay updated on the latest security technologies and trends relevant to the healthcare sector.
- Ensure staff maintain necessary certifications and stay current with emerging certifications.
- Continuously learn and develop skills through training, workshops, and seminars, with a focus on healthcare SaaS environments.
You have:
Education
- Bachelor's degree in Computer Science, Cybersecurity, or a related field.
Experience
- Security Operations: 4+ years of Security Operations experience.
- Azure Cloud Security: 2+ years of Azure Cloud-specific security tool experience.
- Experience with Office 365, SIEMs, EDR Solutions, Vulnerability Management, Active Directory, PowerShell.
Knowledge
- Strong understanding of security technologies and protocols.
- Familiarity with security compliance frameworks like PCI, NIST, ISO, SOC 2, and HIPAA.
Skills
- Excellent communication and collaboration skills, with a focus on continuous learning and improvement.
Attributes
- Focus on continuous learning and improvement.
Required Certifications
- Certifications: CompTIA Security+
- Microsoft Security Operations Analyst SC-200
Preferred Certifications
- SSCP (Systems Security Certified Practitioner)
Benefits
What we offer:
Salary - $95,000- $115,000/yr
- Softheon offers every full-time employee a comprehensive benefits package including:
- Opportunity to work on cutting-edge cloud-based healthcare solutions;
- Work from your home company with a one-time home office stipend;
- Excellent benefits package that includes health, vision and dental coverage for you, your spouse and dependents;
- Additional benefits, including a monthly wellness stipend and internet stipend, 401K w/ a match; immediately vested, employee assistance program, disability/life insurance, and parental leave;
- 15 days to Discretionary PTO based on YOS plus 9 additional holidays;
- Referral bonuses, discretionary bonus program, spot bonuses and professional development opportunities;
- An opportunity for you to be part of a team committed to improving healthcare access and affordability by leveraging innovative technology solutions;
*Please note that candidates applying for this position, must currently reside within the United States.
Join Softheon, and together, we'll shape the future of healthcare in America.
Are you ready to make a difference? Join us at Softheon and help revolutionize healthcare for all.
At Softheon, we embrace and celebrate diversity in all its forms as an equal opportunity employer. We strongly believe that employing a diverse workforce is key to our success. Our recruitment and hiring decisions are made solely on the basis of each candidate's qualifications, experience, and skills. We highly appreciate your dedication to our shared mission of making healthcare affordable, accessible, and abundant for all. Join us in our journey towards continually building a diverse and inclusive workplace, where everyone’s contributions are valued, respected, and celebrated.
Employment with Softheon is at-will, which means either the employee or Softheon may terminate the employment relationship at any time, with or without cause, and with or without notice. Nothing in this job description or in any document or statement shall be construed to constitute a guarantee of employment for a specified period of time.