Cybersecurity Analyst - Remote

Overview

Responsible for day-to-day support and optimization of software applications, including builds, upgrades, and system enhancements. Analyzes business / clinical needs, evaluates software releases and/or new products, and provides recommendations to optimize processes and decrease expenses. Possesses in-depth business / clinical and application knowledge and experience. Performs and documents workflow assessments to determine functional requirements for optimal utilization of applications. Develops system test plans and performs testing of software upgrades and patches.

Maintains a record of test progress and test results. Responsible for problem, incident, and change management and service requests. Provides daily on-call support to the customer base for application-related issues. Works within a cross-functional team and with end-users to achieve application integration to meet business / clinical needs. Responsible for the communication of software issues, requirements, upgrades, and enhancements. Oversees smaller-sized projects or components of projects.

Coordinates implementation or project planning around software application releases. Possesses a key certification(s) or other credential(s) which is determined central to the systems or applications supported.

An Experienced Professional applies practical knowledge of job areas typically obtained through advanced education and work experience.

• Design, develop, and maintain a customized SOAR solution that automates incident detection, analysis, triage, containment, and reporting.
• Collaborate with stakeholders to identify repetitive security tasks suitable for SOAR automation, improving efficiency and consistency in security operations.
• Integrate SOAR workflows with existing EDR, SIEM, and other critical platforms to enhance visibility and rapid response capabilities.
• Continuously tune SOAR playbooks to adapt to emerging threats, regulatory changes, or improvements in threat intelligence.
• Monitor all platforms for security incidents, leveraging SOAR for rapid, orchestrated response.
• Lead and support incident response efforts—from identification and analysis to containment, eradication, and recovery—with a focus on safeguarding PHI and ensuring minimal impact to patient care.
• Analyze logs, forensic data, and network traffic across a complex healthcare IT environment.
• Develop and tune SIEM correlation rules, alerts, and integrated SOAR workflows to detect and respond to threats.
• Serve as part of a 24/7 on-call rotation, responding rapidly to incidents and escalations as they arise, including after-hours and weekends.
• Ensure incident handling and SOAR-driven automation align with HIPAA and all relevant regulations; participate in incident debriefs and continuous improvement initiatives.
• Collaborate with clinical, IT, compliance, and third-party vendors to assess risk and remediate vulnerabilities across critical systems and devices.
• Document incident response and SOAR automation actions in detail, maintaining records for legal, compliance, and audit purposes.
• Participate in healthcare-specific threat hunting, vulnerability assessments, and security exercises to strengthen organizational resilience.
• Maintain current knowledge of emerging cyber threats, SOAR technologies, vulnerabilities, and regulatory changes that could impact healthcare operations.

• Bachelor’s degree in Cybersecurity, Computer Science, IT, or a related field; or equivalent experience.
• 3+ years of experience in a SOC, incident response, health IT cybersecurity, or SOAR engineering role.
• Excellent proficiency in Python
• Proven experience with SOAR implementation, EDR tools, and SIEM solutions, with preference for healthcare environments.
• Familiarity with HIPAA and healthcare risk management practices.
• Strong communication, teamwork, and documentation skills; able to communicate effectively with technical and clinical stakeholders.
• Availability to participate in a 24/7 on-call rotation and respond to security incidents outside of standard business hours.
• Relevant certifications (CISSP, CEH) are preferred.

• 3 years of relevant experience with a degree (Required)
• or
• 5+ years of relevant experience without a degree (Required)
• Experience in lieu of a Bachelor’s Degree

• Relevant certifications (CISSP, CEH) are preferred.

• 3 to 5+ years of relevant experience

We provide market-competitive compensation packages, inclusive of base pay, incentives, and benefits. The base pay rate for Full Time employment is: $80,204.80 - $. Additional compensation may be available for this role such as shift differentials, standby/on-call, overtime, premiums, extra shift incentives, or bonus opportunities.