Qualified Health - IT / Security Operations Analyst
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• 3-5 years in IT operations, security operations, or GRC roles • Experience with IAM platforms (Okta, Azure AD/Entra, or similar) • Familiarity with MDM solutions and endpoint management • Understanding of compliance frameworks (HITRUST, SOC 2, HIPAA) • Bachelor's degree in Information Technology, Cybersecurity, Computer Science or a related field • Bachelor's degree • Vendor management experience — assessing third-party security posture and managing remediation • Healthcare industry experience — understanding of HIPAA requirements and health system security expectations • Experience with compliance automation tools (Vanta, Drata, or similar) • Background managing outsourced IT support relationships • Experience at a fast-growing startup where operational processes were being built alongside daily execution • Organizational Mastery: You manage dozens of concurrent operational tasks — vendor reviews, access requests, device enrollments, questionnaire responses — without dropping any of them • Organizational Mastery: • Documentation Rigor: You keep processes documented, evidence organized, and compliance records audit-ready at all times • Documentation Rigor: • Responsiveness: When someone needs access provisioned, a vendor reviewed, or a security questionnaire completed, you handle it promptly and accurately • Responsiveness: • Process Improvement: You don't just run the operational playbook — you improve it. You look for ways to automate, streamline, and reduce manual effort • Process Improvement: • Discretion: You handle sensitive information (access credentials, security findings, vendor assessments) with the appropriate level of confidentiality and professionalism • Discretion: • Technical Environment: • You'll work with healthcare data from diverse sources including: • Epic (Clarity, Chronicles, FHIR APIs) • Cerner, AllScripts, and other major EHR platforms • Claims data (CMS, commercial payers) • Clinical registries and specialty systems • FHIR R4 and legacy HL7 formats
Responsibilities
• Manage vendor security intakes and assessments — evaluating new vendors against our security requirements and maintaining the vendor inventory • Administer IAM (identity and access management) across company systems — user provisioning, access reviews, role management • Manage device enrollment, MDM policies, and endpoint compliance • Coordinate with our outsourced IT support vendor for employee onboarding/offboarding and support escalations • Support ongoing HITRUST compliance maintenance and evidence collection • Complete client security questionnaire responses — lifting this from the integration team • Maintain security documentation, policies, and procedures • Support security scan report preparation and remediation tracking
Benefits
• This is an opportunity to join a fast-growing company and a world-class team, that is poised to change the healthcare industry. We are a passionate, mission-driven team that is building a category-defining product. We are backed by premier investors and are looking for founding team members who are excited to do the best work of their careers. • Our employees are integral to achieving our goals so we are proud to offer competitive salaries with equity packages, robust medical/dental/vision insurance, flexible working hours, hybrid work options and an inclusive environment that fosters creativity and innovation. • Our Commitment to Diversity
No credit card. Takes 10 seconds.