Security Analyst

This is a fully remote position, open to applicants in United States.

📋 Description

• Monitor security alerts and events throughout the environment; investigate, triage, and respond to incidents promptly.

• Administer and uphold Google Workspace security controls, encompassing DLP policies, Gmail security settings, Drive sharing policies, and audit log reviews.

• Manage operations for endpoint detection and response.

• Supervise device compliance policies, conditional access rules, and endpoint security baselines.

• Administer and enforce MFA policies along with password complexity standards across all user demographics.

• Conduct quarterly role-based access audits for critical systems, including Athena, Luma, Google Workspace, and BigQuery.

• Own and maintain a least-privilege access model across enterprise applications and identity platforms.

• Manage email security controls such as phishing protection, spam filtering, and DMARC/DKIM configurations.

• Design and implement phishing simulation campaigns; provide user security awareness training.

• Support HIPAA security compliance, including participating in risk assessments, updating policies, and ensuring audit readiness.

• Assist with identity and access management (IAM) administration, which includes SSO and Google Identity.

• Collaborate with the network team on ZTNA policy enforcement and Zscaler security configurations.

• Contribute to incident response plans, disaster recovery documentation, and security runbooks.

• Track and report on key security KPIs such as MFA adoption, device compliance rates, open vulnerabilities, and audit findings.

• Perform other related security duties as assigned.

• Occasional travel may be required for critical issues or growth opportunities.

• Participate in an on-call rotation.

⛳️ Requirements

• 3–5 years of experience in information security, as a security analyst, or in IT security operations.

• Hands-on experience managing Google Workspace security features, including the admin console, audit logs, DLP, and OAuth app controls.

• Experience with endpoint security platforms; preference for CrowdStrike Falcon, with Microsoft Defender for Endpoint also considered.

• Familiarity with Microsoft security products such as Intune, Microsoft Defender, and Entra ID.

• Strong understanding of identity and access management concepts: SSO, MFA, RBAC, and least privilege.

• Experience in conducting access reviews, user provisioning audits, and enforcing policies.

• Working knowledge of email security protocols (SPF, DKIM, DMARC) and the current email threat landscape.

• Strong analytical abilities to investigate alerts and identify indicators of compromise.

• Excellent written and verbal communication skills, with the capacity to explain security concepts to non-technical users.

• Familiarity with the HIPAA Security Rule requirements and obligations related to healthcare data protection.

🏝️ Benefits

• Medical, Dental, and Vision Insurance.

• 401(k) with Company Match.

• Generous Paid Time Off (PTO) plus Paid Company Holidays.

• Company-Paid Life Insurance.

• Short-Term and Long-Term Disability Insurance.

• Employee Assistance Program (EAP).

• Opportunities for Career Growth and Development.

• A collaborative, mission-driven culture focused on delivering exceptional patient care.