Job Description:
What started as the “Expedia” of health insurance, has grown to a market leading company that is transforming government IT infrastructures with our proven SaaS and AI technology. Our innovative approach to health insurance shopping and enrollment has expanded beyond exchanges, and we’re now reinventing the way states administer safety net programs such as Medicaid, SNAP (food stamps), child care, and unemployment insurance. With our cutting-edge technology, we’re helping agencies help more people, faster, and transforming health care service delivery as we know it.
As a Security Analyst, you will be a crucial member of our Security Operations Center (SOC), responsible for monitoring, analyzing, and responding to security events across our network. You’ll work closely with other team members to identify and mitigate threats, ensuring the ongoing protection of our systems and data.
Key Responsibilities:
· Setting up Monitoring tools etc as needed.
· Monitor security alerts and events using SIEM tools (SPLUNK, Wazuh) and other security monitoring systems.
· Conduct initial triage and investigation of potential security incidents.
· Analyze logs from various sources (e.g., firewalls, IDS/IPS, endpoint protection systems).
· Escalate incidents as needed, working with senior analysts and other teams to coordinate response efforts.
· Assist in the development and implementation of security policies, standards, and procedures.
· Perform vulnerability assessments and collaborate on remediation efforts.
· Contribute to the continuous improvement of SOC processes and tools.
Required Qualifications:
· Strong understanding of fundamental security concepts, including threat vectors, attack methods, and mitigation strategies.
· Familiarity with the MITRE ATT&CK framework for understanding and responding to adversary tactics and techniques.
· Experience with security monitoring tools (e.g., SIEM, IDS/IPS).
· Expertise in AWS Security –working with IaaC, IAM, Security Groups, Guard Duty,
· Familiarity with incident response procedures and best practices.
· Knowledge of network protocols and infrastructure.
· Basic experience with log analysis and correlating security events.
· Strong analytical and problem-solving skills.
· Excellent communication skills, both written and verbal.
· Ability to work in a fast-paced environment and manage multiple priorities.
Desired Qualifications:
· Knowledge of cloud security principles and best practices (e.g., AWS, Azure, GCP).
· Experience with cloud security tools and technologies.
· Experience in vulnerability management, including performing vulnerability assessments and coordinating remediation efforts.
· Certifications such as CompTIA Security+, AWS Certified Security – Specialty, or similar are a plus.
· Familiarity with regulatory requirements and compliance frameworks (e.g., GDPR, HIPAA, PCI-DSS).
