Security Analyst

---

Job description

The Security Analyst is a key member of the Upward Health Technology Department, responsible for maintaining the confidentiality, integrity, and availability of the Upward Health environment, and all data stored therewithin. The ideal candidate will be a quick learner experienced with high demand work environments, proficient with Microsoft Azure technologies and familiar with the compliance and security standards which govern the healthcare industry. Said candidate will be diligent, meticulous, and will understand the vital importance of collaboration and communication.

The Security Analyst role represents a unique opportunity for the right person to gain valuable compliance and technical experience while working in a cohesive team environment to defend, expand, secure, and support Upward Health's cloud-based infrastructure. Applicants must possess a professional demeanor and be self-motivated, having a strong desire to learn while maintaining flexibility and understanding that the scope of services and protocols will evolve along with our organization's mission of improving healthcare delivery for underserved populations.

Responsibilities:

• Primary point of contact for end user queries and reporting around security incidents and resultant investigative or triage efforts, performing various analysis and testing functions as needed, and providing diligent documentation of all end-user communications and troubleshooting efforts.
• Assist with responses to security incidents, investigations into root causes, and the provisioning of access to secure systems commensurate with appropriate role-based permissions.
• Monitoring and enforcing the compliance of all users and technology assets with policy definitions, ensuring the integrity of all forms of sensitive data, and facilitating organizational compliance audits.

• Ensure comprehension of, compliance with, and dissemination of organizational security protocols, especially around PHI and other sensitive types of information.
• Monitor and review Security Information and Event Management (SIEM) logs and utilities, documenting findings and reporting anomalies according to policy.
• Deliver reports and summaries to management which highlight problem areas related to our systems and technical processes, along with resolution proposals.
• Excellent communication and presentation skills, approaching problems with a can-do attitude, exhibiting the ability to work independently, and the intuition to escalate issues when needed.

• Optimization of shared internal resources, such as: environment documentation, departmental SharePoint sites, knowledgebase platforms (wiki, Confluence, etc.), and instructional/training materials.
• Fluent in English; Spanish fluency a plus.

Qualifications:

• A bachelor's degree in computer science, or sufficiently comparable professional experience in a comparable technical role.
• Experience with Microsoft Azure administrative tools, including (but not limited to): Active Directory, Defender, Endpoint Manager (Intune), Exchange, SharePoint, Teams, and Visio.
• Strong verbal and written communication skills, with a focus on simplicity of comprehension and concision.
• Ability to m aintain, and improve, when necessary, a security incident reporting process, and ensure its successful execution.
• Excellent investigative and troubleshooting skills, understanding of the importance of taking a procedural approach to investigations and resolutions, and the ability to work in a collaborative environment.
• Comfortable researching and recommending new/alternative practices, programs, and systems.

This job description is a general outline of duties performed and is not to be misconstrued as encompassing all duties performed within the position.

If you are excited by the thought of using your technology and people skills to positively affect how healthcare is delivered to patients by assisting our employees and helping them get the most out of our technology, then please apply to this job. You will be glad that you did.

Compensation details: 0 Yearly Salary

PI368f33eb19e2-2726

<!– job description page –>