Security Engineer jobs at Vyaire Medical - 161 jobs

As a Senior Security Engineer I at Aledade, you will play a central role in enhancing the security posture of our enterprise, cloud-native environments, and applications. We are seeking a dedicated professional with in-depth knowledge of security principles, standards, and best practices to help safeguard our systems and support our security compliance initiatives. In this role, you will work to design, implement, and maintain robust security solutions across diverse platforms and technologies. You will collaborate closely with various teams to ensure alignment between security solutions and organizational requirements, enabling secure operations across the enterprise. Your ability to partner cross-functionally will be key to driving impactful security outcomes and strengthening our digital landscape. Your expertise will be crucial as we continue to mature our security capabilities and maintain our commitment to protecting critical systems and data. Primary Duties Working cross-functionally to design, build, and operate solutions that improve and mature our security capabilities Leveraging data to understand trends, metrics, and opportunities to improve our security posture, researching options, and then making recommendations as options to secure those opportunities with stakeholders Leading and enhancing incident / issues response efforts, spearheading analysis, containment, and mitigation strategies in a cross-functional environment to ensure effective resolution and remediation of security incidents / issues Helping craft and refine security documentation pertinent to our Security Program, such as policies, standards, baselines, and standard operating procedures Minimum Qualifications BS / BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 6 years security domain experience without degree. 4+ years combined experience as a security engineer in an enterprise environment (preferably cloud) across multiple disciplines. 3+ years of relevant work experience in security posture management. 2+ years of experience acting as a trusted technical decision-maker in a team setting, solving for short-term and long term business value. Preferred KSA's Prior experience working in the healthcare industry with health-tech systems, like Electronic Health Records, Clinical data, etc. Experience in scripting languages such as Python and Bash is required. Experience with Cloud Native Software Development environments and practices with a focus on multi-cloud deployments in AWS, Azure and/or GCP is required. Prior experience with a focus on tooling, automation, and distributed systems development is preferred. Experience with continuous integration tools (e.g. Cloud formation, Code deploy, Jenkins, CircleCI, Codefresh, Github Actions etc.). Experience with configuration management platforms (e.g. Ansible, Chef, Salt). Hands-on experience using Terraform, Python and/or other orchestration platforms at scale. Familiarity with Agile and waterfall development methodologies. Familiarity with automated testing methodologies, and continuous integration concepts. Experience in creating, deploying, maintaining, and troubleshooting Docker images. Experience in scoping, deploying, maintaining and troubleshooting Kubernetes clusters. Experience with deploying policies with AWS Control tower, Azure Security hub, Google Resource Manager etc. Experience generating automated metrics to measure service and program effectiveness and consistency Strong communication skills, both written and verbal, with the capability to articulate complex technical issues to a diverse audience Physical Requirements Sitting for prolonged periods of time. Extensive use of computers and keyboard. Occasional walking and lifting may be required. Who We Are: Aledade, a public benefit corporation, exists to empower the most transformational part of our health care landscape - independent primary care. We were founded in 2014, and since then, we've become the largest network of independent primary care in the country - helping practices, health centers and clinics deliver better care to their patients and thrive in value-based care. Additionally, by creating value-based contracts across a wide variety of health plans, we aim to flip the script on the traditional fee-for-service model. Our work strengthens continuity of care, aligns incentives and ensures primary care physicians are paid for what they do best - keeping patients healthy. If you want to help create a health care system that is good for patients, good for practices and good for society - and if you're eager to join a collaborative, inclusive and remote-first culture - you've come to the right place. What Does This Mean for You? At Aledade, you will be part of a creative culture that is driven by a passion for tackling complex issues with respect, open-mindedness and a desire to learn. You will collaborate with team members who bring a wide range of experiences, interests, backgrounds, beliefs and achievements to their work - and who are all united by a shared passion for public health and a commitment to the Aledade mission. In addition to time off to support work-life balance and enjoyment, we offer the following comprehensive benefits package designed for the overall well-being of our team members: Flexible work schedules and the ability to work remotely are available for many roles Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners Robust time-off plan (21 days of PTO in your first year) Two paid volunteer days and 11 paid holidays 12 weeks paid parental leave for all new parents Six weeks paid sabbatical after six years of service Educational Assistant Program and Clinical Employee Reimbursement Program 401(k) with up to 4% match Stock options And much more! At Aledade, we don't just accept differences, we celebrate them! We strive to attract, develop and retain highly qualified individuals representing the diverse communities where we live and work. Aledade is committed to creating a diverse environment and is proud to be an equal opportunity employer. Employment policies and decisions at Aledade are based on merit, qualifications, performance and business needs. All qualified candidates will receive consideration for employment without regard to age, race, color, national origin, gender (including pregnancy, childbirth or medical conditions related to pregnancy or childbirth), gender identity or expression, religion, physical or mental disability, medical condition, legally protected genetic information, marital status, veteran status, or sexual orientation. Privacy Policy: By applying for this job, you agree to Aledade's Applicant Privacy Policy available at ************************************************* #J-18808-Ljbffr

A leading identity platform company in San Francisco is seeking a Corporate Security Lead to fortify defenses against evolving threats. This full-time role involves developing endpoint security solutions and collaborating with cross-functional teams. The ideal candidate has over 3 years of IT security experience, including endpoint hardening and scripting skills. Enjoy competitive benefits like unlimited PTO, mental health days, and professional development stipends in a vibrant work culture. #J-18808-Ljbffr

An innovative technology company in San Francisco seeks a Security Lead to fortify their defenses against evolving threats. In this role, you'll develop and implement security tools, collaborate across teams on best practices, and manage insider threat programs. Candidates should have 3+ years in IT security, experience with endpoint hardening, and strong coding skills in Ruby or Python. The company offers a competitive benefits package, promoting a supportive work culture. #J-18808-Ljbffr

About Crossover Health Crossover Health is creating the future of health as it should be. A national, team-based medical group with a focus on wellbeing and prevention that extends beyond traditional sick care, the company delivers an entirely new model of healthcare-Primary Health-built on the foundation of trusted relationships, an interdisciplinary care team approach, and outcomes-based payment. Crossover's Primary Health model integrates primary care, physical medicine, mental health, health coaching, care navigation and more, and delivers care in surround-sound-in-person, virtually and via asynchronous messaging. Together we are building a community of members that embraces healthcare as a proactive part of their lifestyle. Job Summary This role will be responsible for building and operating Crossover's enterprise Identity and Access Management (IAM) program. The Security Engineer (IAM) will focus on building and managing identity services that enable secure, seamless, and scalable user access across the organization. The ideal candidate will bring technical depth in identity systems such as Okta, a passion for automation, and a commitment to continuous improvement of access governance and lifecycle management. Job Responsibilities Identity Platform Administration: Serve as the primary administrator for Okta and other IAM platforms, managing user identities, access policies, and integrations with internal and third-party applications. SSO / SAML Integrations: Design, configure, and maintain SSO and SAML/OIDC integrations to enable secure and efficient authentication for both internal and external users across SaaS and custom applications. Access Automation: Develop and deploy Okta Workflows and APIs to automate identity lifecycle events, access requests, access grants, and deprovisioning processes to ensure timely and compliant access control. Access Governance: Collaborate with Security, HR, and IT to implement access review programs and ensure role-based access control (RBAC), least privilege, and segregation of duties across the environment. Policy Enforcement: Translate security policies and compliance requirements into technical IAM controls and configurations, ensuring alignment with company policies and industry best practices. Incident Support: Support incident response and audit activities by providing identity-related data, analysis, and remediation recommendations for access-related events or anomalies. Documentation and Training: Maintain detailed documentation of identity systems, integrations, and workflows, and provide training and guidance to IT and business stakeholders on access management best practices. Requirements 6+ years of experience in Information Security or IT with a focus on IAM 2+ years of hands-on experience administering Okta or equivalent enterprise IAM platforms Proven experience building and maintaining SSO/SAML/OIDC integrations Proficiency with Okta Workflows, Okta APIs, and automation using scripting (e.g., Python, PowerShell) Familiarity with modern authentication standards (SAML, OAuth2, OIDC, SCIM, MFA) Experience implementing RBAC, JIT provisioning, and lifecycle management across multiple environments Strong understanding of IAM principles, Zero Trust architecture, and security best practices Demonstrated ability to partner effectively across Security, IT, and HR functions Experience supporting audits, compliance reviews, or SOX/SOC2-related access controls Excellent communication, documentation, and problem-solving skills Ability to manage competing priorities in a dynamic, fast-paced environment Available to work after hours and weekends as needed Preferred Qualifications Security related certifications, such as CISSP and/or other professional certifications Okta Certified Professional or Okta Certified Expert certification Experience with other IAM platforms (e.g., Azure AD, Ping Identity, ForgeRock, CyberArk, Saviynt, SailPoint) Experience with identity governance and access review tools or IGA implementations Familiarity with cloud platform IAM (AWS IAM, Azure AD, GCP IAM) Experience integrating identity data from HRIS and ITSM systems (e.g., Workday, ServiceNow) Experience with identity analytics and reporting for compliance and audit support Knowledge of infrastructure-as-code and automation frameworks (e.g., Terraform, GitHub Actions) Strong understanding of data privacy regulations (HIPAA, GDPR, CCPA) and their impact on identity management The base pay range for this position is $110,817.00 to $149,603 per year. Pay range may vary depending on work location, applicable knowledge, skills, and experience. This position may be eligible for an annual bonus opportunity and comprehensive benefits package that includes Medical Insurance, Dental Insurance, Vision Insurance, Short- and Long-Term Disability, Life Insurance, Paid Time Off and 401K. Crossover Health is committed to Equal Employment Opportunity regardless of race, color, national origin, gender, sexual orientation, age, religion, veteran status, disability, history of disability or perceived disability. If you need assistance or an accommodation due to a disability, you may email us at ***************************. To all recruitment agencies: We do not accept unsolicited agency resumes and are not responsible for any fees related to unsolicited resumes. #LI-Remote

About Crossover Health Crossover Health is creating the future of health as it should be. A national, team-based medical group with a focus on wellbeing and prevention that extends beyond traditional sick care, the company delivers an entirely new model of healthcare-Primary Health-built on the foundation of trusted relationships, an interdisciplinary care team approach, and outcomes-based payment. Crossover's Primary Health model integrates primary care, physical medicine, mental health, health coaching, care navigation and more, and delivers care in surround-sound-in-person, virtually and via asynchronous messaging. Together we are building a community of members that embraces healthcare as a proactive part of their lifestyle. Job Summary This role will be responsible for building and operating Crossover's detection and response capabilities. As part of a small, high-impact team, the Security Engineer (Detection and Response) will design, implement, and automate security monitoring, detection, and response workflows that protect our people, data, and systems. The ideal candidate will be a hands-on engineer who is passionate about solving complex security challenges through automation and continuous improvement. Job Responsibilities Incident Response: Detect, analyze, and respond to security incidents, ensuring timely remediation, documentation, and lessons learned. Detection Engineering: Develop, tune, and maintain detection logic across SIEM, EDR, IDS, and related platforms to improve visibility and reduce false positives. SOAR & Automation: Build and maintain SOAR playbooks and scripts to automate alert triage, response actions, and routine operational tasks. Threat Intelligence & Analysis: Correlate threat intelligence with internal telemetry to identify emerging risks and inform new detection capabilities. Security Monitoring: Operate and enhance monitoring systems to identify potential threats across cloud, endpoint, and network environments. Security Awareness & Reporting: Support awareness and phishing programs, and deliver clear, actionable reporting and communications on security posture and incidents to leadership. Data Loss Prevention: Develop DLP rules and processes to detect and prevent data loss or misuse across cloud, endpoint, and email systems. Requirements 6+ years of experience in security operations, incident response, or threat detection, with demonstrated technical leadership. Strong hands-on expertise with SIEM, EDR, IDS/IPS, and SOAR platforms Deep understanding of security event analysis, threat intelligence, and response automation. Experience developing and maintaining incident response playbooks, runbooks, and operational processes. Solid knowledge of network, endpoint, and cloud security fundamentals. Excellent communication and collaboration skills, with the ability to lead cross-functional response efforts and convey complex security topics clearly. Strong organizational and problem solving skills Preferred Qualifications Security related certifications, such as CISSP, GCIH, GSOC and/or other professional certifications Experience implementing and/or managing Jira workflows and configurations Development experience or working knowledge of common coding languages Prior experience with HIPAA regulations and clinical environments The base pay range for this position is $110,817.00 to $149,603 per year. Pay range may vary depending on work location, applicable knowledge, skills, and experience. This position may be eligible for an annual bonus opportunity and comprehensive benefits package that includes Medical Insurance, Dental Insurance, Vision Insurance, Short- and Long-Term Disability, Life Insurance, Paid Time Off and 401K. Crossover Health is committed to Equal Employment Opportunity regardless of race, color, national origin, gender, sexual orientation, age, religion, veteran status, disability, history of disability or perceived disability. If you need assistance or an accommodation due to a disability, you may email us at ***************************. To all recruitment agencies: We do not accept unsolicited agency resumes and are not responsible for any fees related to unsolicited resumes. #LI-Remote

EnableComp provides Specialty Revenue Cycle Management solutions for healthcare organizations, leveraging over 24 years of industry-leading expertise and its unified E360 RCM ™ intelligent automation platform to improve financial sustainability for hospitals, health systems, and ambulatory surgery centers (ASCs) nationwide. Powered by proprietary algorithms, iterative intelligence from 10M+ processed claims, and expert human-in-the-loop integration, EnableComp provides solutions across the revenue lifecycle for Veterans Administration, Workers' Compensation, Motor Vehicle Accidents, and Out-of-State Medicaid claims as well as denials for all payer classes. By partnering with clients to supercharge the reimbursement process, EnableComp removes the burden of payment from patients and provider organizations while enabling accelerated cash, higher and more accurate yield, clean AR management, reduced denials, and data-rich performance management. EnableComp is a multi-year recipient the Top Workplaces award and was recognized as Black Book's #1 Specialty Revenue Cycle Management Solution provider in 2024 and is among the top one percent of companies to make the Inc. 5000 list of the fastest-growing private companies in the United States for the last eleven years. Position Summary The Security Engineer (Application & AI Security) will serve as the technical implementation bridge between our security policy team and development operations. The Security Engineer will be embedded with development teams, writing code, configuring systems, and directly implementing security controls across applications, databases, and AI systems during a major Agentic AI platform transformation.Key Responsibilities Bridge security policy and technical execution by translating organizational security requirements into practical, deployable solutions across applications, data environments, and AI systems. Design, build, and deploy security controls across web applications, data pipelines, APIs, and Agentic AI systems to ensure confidentiality, integrity, and availability. Implement secure-by-design practices throughout the software development lifecycle, including code-level remediations, configuration hardening, and secure infrastructure deployment. Develop automation scripts and infrastructure-as-code to integrate security into CI/CD pipelines, enabling continuous compliance, secrets management, vulnerability scanning, and environment hardening. Implement and operationalize AI-specific security frameworks by building guardrails for agentic models, securing data flows, and integrating AI security tooling into development workflows. Perform hands-on technical security assessments, including penetration testing, threat modeling, and code reviews, and directly remediate identified vulnerabilities. Collaborate with cloud and DevOps teams to deploy monitoring and detection controls and ensure secure configuration baselines across environments. Provide practical security guidance and training to developers and engineers during architecture reviews, sprint planning, and project delivery. Continuously evaluate and improve the organization's security posture through testing, feedback loops, and adoption of emerging best practices for AI and distributed systems. Document security architectures, configurations, and implementation patterns to support ongoing operations, compliance, and knowledge sharing. Other duties as required Requirements & Qualifications Bachelor's degree in Computer Science, Information Security, Engineering, or a related technical field required 3+ years in hands-on application security, DevSecOps, or security engineering roles. Proven experience building and configuring secure CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions, Azure DevOps). Equivalent combination of education and experience will be considered. Deep proficiency with cloud security in AWS, Azure, or GCP environments. Strong implementation experience with infrastructure as code (Terraform, CloudFormation) and container security (Docker, Kubernetes). Strong scripting and automation skills (Python, Bash, PowerShell) for security tooling. Versatility across web/API security, data pipeline security, microservices, and database security. Understanding of security frameworks (NIST, ISO 27001, SOC 2) and compliance requirements (GDPR, HIPAA, PCI-DSS). Hands-on experience deploying and configuring security scanning tools (SAST, DAST, SCA). Excellent communication skills-ability to translate security requirements into working technical implementations. Experience working embedded within cross-functional development teams. Proven track record of hands-on problem-solving in fast-paced development environments. Regular and predictable attendance. To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions Special Considerations & Prerequisites Practices and adheres to EnableComp's Core Values, Vision and Mission. Hands-on experience with AI/ML security, model security, and data governance Technical knowledge of LLM security, prompt injection prevention, and AI agent safety Security certifications (CISSP, CEH, OSCP, CSSLP, or cloud security certifications) Strong coding background in Python, Go, or similar languages. Background in software development or engineering transitioning to security. Direct experience implementing secrets management solutions (HashiCorp Vault, AWS Secrets Manager). Practical experience with zero trust architecture implementation. Familiarity with data security, ETL processes, and data warehouse security. Experience with microservices architectures and distributed systems security. EnableComp is an Equal Opportunity Employer M/F/D/V. All applicants will be considered for this position based upon experience and knowledge, without regard to race, color, religion, national origin, sexual orientation, ancestry, marital, disabled or veteran status. We are committed to creating and maintaining a workforce environment that is free from any form of discrimination or harassment. EnableComp recruits, develops and retains the industry's top talent. As the employer of choice in the complex claims industry, EnableComp takes pride in our continuous commitment to building and maintaining a culture centered around fostering the professional growth and development of our people. We believe that investing in our employees is the key to our success, and we are dedicated to providing them with the tools, resources, and support they need to thrive and grow their career here. At EnableComp, we are committed to living up to our core values each and every day, and we believe that this commitment is what sets us apart from other companies. If you are looking for a company that values its employees and is dedicated to helping them achieve their full potential, then EnableComp is the place for you. Don't just take our word for it! Hear what our people are saying: “I love my job because everyone shares the same vision and is determined and dedicated. People care about you as a person and your professional growth. There is a genuine spirit of cooperation and shared goals all revolving around helping each other.” - Revenue Specialist “I enjoy working for EnableComp because of the Core Values we believe in. EnableComp stands true to these values from empowering employees to ecstatic clients. This company is family oriented and flexible, along with understanding the balance of work, life, and fun.” - Supervisor, Operations

7+ years of experience in information security, application security, or infrastructure security. Strong knowledge of: Network security fundamentals (TCP/IP, firewalls, VPN, proxies) Web/app security (OWASP Top 10, API security, authentication/authorization) Cloud security (AWS, Azure, or GCP) CI/CD and DevSecOps practices Hands-on experience with tools such as: SAST/DAST/SCA tools (SonarQube, Checkmarx, Veracode, Burp Suite) Vulnerability scanners (Nessus, Qualys, OpenVAS) SIEM/EDR (Splunk, Sentinel, CrowdStrike) Container/Kubernetes security (Trivy, Aqua, Falco) Knowledge of secure coding practices in at least one language (Python, Java, Go, JavaScript, etc.). Strong analytical, problem-solving, and communication skills. Nice-to-Have Certifications: CEH, OSCP, CISSP, CCSP, GSEC, GCIH. Experience with automation (Python, Bash, Terraform). Experience with Zero Trust architecture and SSO solutions. Exposure to threat intelligence and red/blue team operations. Compensation, Benefits and Duration Minimum Compensation: USD 41,000 Maximum Compensation: USD 145,000 Compensation is based on actual experience and qualifications of the candidate. The above is a reasonable and a good faith estimate for the role. Medical, vision, and dental benefits, 401k retirement plan, variable pay/incentives, paid time off, and paid holidays are available for full time employees. This position is not available for independent contractors No applications will be considered if received more than 120 days after the date of this post

At Target RWE, our mission is driven by a deep commitment to people, the patients we serve, the partners we collaborate with, and the dedicated team members who power our work. As a purpose-driven organization, we leverage real-world data to advance clinical research and inform better healthcare decisions. We foster a collaborative environment where every voice is heard, every idea has an impact, and every contribution helps improve lives. If you're seeking a place where your work truly matters, join us to help advance science securely and responsibly. Overview We are seeking a Security Engineer to join our Technology team and play a critical role in securing our internal infrastructure, cloud services, deployment tooling, and development workflows. In this role, you will help design, build, and maintain a secure, scalable production platform, leveraging your experience with SaaS and platform-based systems. You will collaborate closely with engineering, infrastructure, and application teams to embed security best practices across the organization. What You'll Do Perform regular vulnerability assessments across cloud, infrastructure, and application platforms, and partner with application owners to drive remediation efforts. Design, implement, and maintain secure, modern deployment tooling and CI/CD workflows. Apply industry best practices for system hardening, secure configuration management, and access controls. Help develop, implement, and continuously improve security controls and standards across the organization. Leverage emerging cloud technologies to build secure, resilient, and scalable workflows. Support development and production security incidents, coordinating with internal teams to drive timely resolution and minimize impact to end users. Contribute to security documentation, runbooks, and knowledge sharing across the engineering organization. Perform other duties as assigned in support of the security and technology teams. What You'll Bring Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent practical experience. 3+ years of relevant experience in security engineering, DevSecOps, or infrastructure security roles. Hands-on experience securing cloud platforms (AWS preferred). Experience managing security for cloud services, CI/CD pipelines, and containerized environments (Docker). Strong background in Infrastructure as Code, with experience in at least one of the following: Terraform, CloudFormation, Chef, Puppet, Ansible, or Salt. Solid understanding of networking fundamentals, including VPCs, ACLs, subnets, DNS, and routing. Experience with Linux fundamentals and relational databases such as PostgreSQL. Proficiency with at least one scripting language and strong familiarity with Git-based workflows. Ability to work effectively and collaboratively with a geographically distributed team. Strong problem-solving skills, ownership mindset, and clear communication abilities. Nice to Have Experience working in regulated environments (e.g., healthcare, life sciences, or other compliance-driven industries). Advanced networking experience (firewalls, routing, segmentation). Familiarity with Cloud Security Posture Management (CSPM) tools such as Wiz, Rapid7, or similar platforms. Experience using Jira and Confluence for issue tracking and documentation. CISSP or similar security certification. If you're excited to help protect systems that support meaningful healthcare research, where your expertise directly contributes to trust, compliance, and patient impact, Target RWE is the place for you. We're building something important together, and we'd love for you to be a part of it. What We Offer You Hybrid + remote work environment Comprehensive health, dental, and vision coverage for you and your family 401(k) with company match Generous PTO and company holidays Paid parental leave Hybrid role: Located in Research Triangle Park, North Carolina

The IT Cloud Engineer - Security provides the vision, strategy, functionality, and technology solutions for creating and maintaining security system and solutions for both public and private cloud infrastructure-based solutions. This position collaborates with the Information Technology teams to lead the organization toward the deployment of technologies which focus on the trust, risk, and security management of the company environment. These may include PaaS, SaaS, hosted, and on-premises solutions - allowing for flexible, secure, on-demand cloud-like functionality and services while endeavoring to provide resiliency and achieve cost reduction, while maintaining a highly secure and flexible environment. Essential Accountabilities: Level I • Enforces and integrates security solutions, tools, and appropriate controls to align to security policies, standards, and procedures. • Stays current with leading security technologies, standards, and best practices as well as cyber threat landscape and evolving mitigation approaches and techniques. • Acts as a high-level escalation tier for operational support in assigned technical areas. • Conducts proof-of-concept testing in a lab environment. • Creates, updates, and maintains supporting documentation for technology standards. • Designs and deploys security solutions to support and ensure alignment with business requirements. • Works with technology vendors and technical subject matter expert (SME) to produce corporate standards with regards to assigned technology areas. • Collaborates and/or leads engineering solutions, integrating multiple systems and/or technologies. • Consistently demonstrates high standards of integrity by supporting the Lifetime Healthcare Companies' mission and values, adhering to the Corporate Code of Conduct, and leading to the Lifetime Way values and beliefs. • Maintains high regard for member privacy in accordance with the corporate privacy policies and procedures. • Regular and reliable attendance is expected and required. Performs other functions as assigned by management. Level II (In addition to Level I responsibilities): • Acts as a primary engineer for assigned technology areas maintaining highly performant and optimized infrastructure environment. • Researches technologies and perform analysis that significantly contributes to budget and expenditures for assigned technology areas. • Collaborates and participates in the development and execution enterprise strategy in the assigned technology area. • Assists in the RFI/RFP process. Level III (In addition to Level II responsibilities): • Research and recommended solution designs. Establishes business justifications for purchases made within assigned technology areas. • Significant contributor to automation workflows and focuses on automation for job-related tasks. • Performs system analysis and capacity planning of security assets. • Assists with mentoring of Level I and II Engineers. Level IV (In addition to level III responsibilities): • Acts as trusted advisor to the management team. • Emphasizes technology cost optimization when designing new solutions. • Leads business critical projects efforts for IT infrastructure. • Leads internal strategic efforts, collaborates, and mentors peers. Minimum Qualifications: NOTE: We include multiple levels of classification differentiated by demonstrated knowledge, skills, and the ability to manage increasingly independent and/or complex assignments, broader responsibility, additional decision making, and in some cases, becoming a resource to others. In addition to using this differentiated approach to place new hires, it also provides guideposts for employee development and promotional opportunities. Level I: • Four (4) years of related experience. • Associates degree in Computer Science, Information Technology, or related field In lieu of degree, three (3) years of related work experience required. Bachelor's degree preferred. • Intermediate knowledge of security, compliance, and audit policies/procedures. • Basic experience with research, design, and implementation in assigned technologies. • Basic infrastructure operations and infrastructure project delivery experience essential. • Basic scripting and automation experience. • Advanced communication skills. • Intermediate understanding of cloud computing infrastructure and concepts. • Intermediate knowledge of securing cloud and/or on-prem (i.e.: ability to secure disparate systems). • Intermediate ability to engineer and integrate new security designs with an emphasis on solutions that align with overall security strategy. • Demonstrates intermediate knowledge of a minimum of two (2) concepts and/or tools listed below: o Encryption o PKI o Network and application security, and related firewalls (Palo Alto Networks, Imperva, Azure, AWS, etc.) o Identity management (AD, Entra ID, conditional access, MFA, SSO, etc.) o Virus detection and end point security (Defender preferred) o Vulnerability scanner and pen testing tools (e.g., Rapid 7, Nessus, Nexpose, Metasploit, Appscan, Burp suite, Ida Pro etc.) o IDS/IPS and related tools. o Comprehensive Cloud security platform (Palo Alto Prisma) o Security logging and monitoring (SIEM e.g., ArcSight, Splunk, SolarWinds LEM, Azure Sentinel, AWS Guard Duty, etc.) o Common web application security vulnerabilities (e.g., OWASP) o Application security o Security architecture principals/concepts (i.e., Zero Trust) Level II (in addition to Level I qualifications): • Intermediate knowledge of security, compliance, and audit policies/procedures. • Intermediate knowledge of a minimum of three (3) concepts and/or tools listed above. • Intermediate Security operations and infrastructure project delivery experience. • Demonstrates intermediate technical documentation ability. • Intermediate experience with IT computing resource management and optimization. • Displays advanced business maturity and demonstrated confidentiality. • Intermediate knowledge of Disaster Recovery. Level III (in addition to Level II qualifications): • Advanced knowledge of a minimum of four (4) concepts and/or tools listed above. • Strategic vision in alignment with business objectives. • Intermediate scripting and automation experience preferred. Level IV (in addition to Level III qualifications): • Advanced knowledge of a minimum of five (5) concepts and/or tools listed above. • Demonstrated advanced competency in team leadership/technical leadership, facilitation, and project leadership. • Advanced understanding of Disaster Recovery procedures related to IT infrastructure. • Advanced knowledge of security, compliance, and audit policies/procedures. • Advanced scripting and automation experience. Physical Requirements: • Ability to travel across the Health Plan service region for meetings and/or trainings as needed. • Ability to work in a home office for continuous periods of time for business continuity. • Ability to provide on-call rotation support. ************ One Mission. One Vision. One I.D.E.A. One you. Together we can create a better I.D.E.A. for our communities. At the Lifetime Healthcare Companies, we're on a mission to make our communities healthier, and we can't do it without you. We know diversity helps fuel our mission and that's why we approach our work from an I.D.E.A. mindset (Inclusion, Diversity, Equity, and Access). By activating our employees' experiences, skills, and perspectives, we take action toward greater health equity. We aspire to reflect the communities we live in and serve, and strongly encourage people of color, LGBTQ+ people, people with disabilities, veterans, and other underrepresented groups to apply. OUR COMPANY CULTURE: Employees are united by our Lifetime Way Values & Behaviors that include compassion, pride, excellence, innovation and having fun! We aim to be an employer of choice by valuing workforce diversity, innovative thinking, employee development, and by offering competitive compensation and benefits. In support of the Americans with Disabilities Act, this job description lists only those responsibilities and qualifications deemed essential to the position. Equal Opportunity Employer Compensation Range(s): E9 - Minimum: 110,093 Midpoint: 154,130 Max: 198,168 The salary range indicated in this posting represents the minimum and maximum of the salary range for this position. Actual salary will vary depending on factors including, but not limited to, budget available, prior experience, knowledge, skill and education as they relate to the position's minimum qualifications, in addition to internal equity. The posted salary range reflects just one component of our total rewards package. Other components of the total rewards package may include participation in group health and/or dental insurance, retirement plan, wellness program, paid time away from work, and paid holidays. Please note: The opportunity for remote work may be possible for all jobs posted by the Univera Healthcare Talent Acquisition team. This decision is made on a case-by-case basis. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Persona is the configurable identity platform built for businesses in a digital-first world. Verifying individuals and organizations is harder - but more important - than ever, with AI enabling fraudsters to launch sophisticated accounts at scale and regulations evolving rapidly. We've built Persona to support practically every use case and industry - that's why we're able to serve a wide range of leading companies. For example, Instacart relies on Persona to verify shoppers who onboard onto their platform before delivering groceries to your doorstep. Meanwhile, OpenAI relies on Persona to keep bad actors out, protecting one of the world's most powerful AI platforms from large-scale abuse in a time when AI is reshaping the way we work and live. We're growing rapidly and looking for exceptional people to join us! About the Role Persona's Security Team is looking for someone to lead our corporate security efforts. You'll play a pivotal role in fortifying our defenses against evolving threats. Your mission is to protect fellow Personerds and the systems we use to do our work. You'll have the opportunity to employ cutting-edge technologies, innovative strategies, and your expertise to thwart potential attacks before they disrupt our operations. This is a full-time position based in our headquarters in downtown San Francisco. Our in-office days are Tuesday - Thursday, with the option to work from home on Monday and Friday. What you'll do at Persona * Develop, enhance, and implement endpoint detection and response rules and tooling for endpoint devices * Collaborate cross-functionally with our TechOps Team in implementing security best practices for SaaS and endpoint environments and support security initiatives like 2-factor authentication, automated encryption of client devices, DLP, etc. * Build tools and processes for automating security controls and monitoring at scale * Support security initiatives across the organization and harden our corporate infrastructure against attack * Recommend endpoint and SaaS mitigations and controls based on generated telemetry * Provide recommendations and support for insider threat programs * Participate in the on-call rotation for the Security Team What you'll bring to Persona * 3+ years of experience in IT security or building endpoint security solutions, including experience supporting mac OS devices * Experience with planning and executing endpoint hardening initiatives * Experience with mobile device management (MDM) and endpoint detection and response (EDR) tools and technologies * Experience with data loss prevention (DLP) and insider threat concepts and mitigations * Experience with email security concepts and protecting a workforce against phishing * Ability to explain security topics clearly to non-technical business representatives * Ability to write code in Ruby, Python, or similar scripting languages, as well as SQL queries Full-time Employee Benefits and Perks For full-time employees (excluding internship and contractor opportunities), Persona offers a wide range of benefits, including medical, dental, and vision, 3% 401(k) contribution, unlimited PTO, quarterly mental health days, family planning benefits, professional development stipend, wellness benefits, among others. While we believe competitive compensation and benefits are a critical aspect of you deciding to join us, we do hope you consider why our core values and culture are right for you. If you'd like to better understand what it's like working at Persona, feel free to check out our reviews on Glassdoor.

Persona is the configurable identity platform built for businesses in a digital-first world. Verifying individuals and organizations is harder - but more important - than ever, with AI enabling fraudsters to launch sophisticated accounts at scale and regulations evolving rapidly. We've built Persona to support practically every use case and industry - that's why we're able to serve a wide range of leading companies. For example, Instacart relies on Persona to verify shoppers who onboard onto their platform before delivering groceries to your doorstep. Meanwhile, OpenAI relies on Persona to keep bad actors out, protecting one of the world's most powerful AI platforms from large-scale abuse in a time when AI is reshaping the way we work and live. We're growing rapidly and looking for exceptional people to join us! About the Role Persona's Security Team is looking for someone to lead our corporate security efforts. You'll play a pivotal role in fortifying our defenses against evolving threats. Your mission is to protect fellow Personerds and the systems we use to do our work. You'll have the opportunity to employ cutting-edge technologies, innovative strategies, and your expertise to thwart potential attacks before they disrupt our operations. This is a full-time position based in our headquarters in downtown San Francisco. Our in-office days are Tuesday - Thursday, with the option to work from home on Monday and Friday. What you'll do at Persona * Develop, enhance, and implement endpoint detection and response rules and tooling for endpoint devices * Collaborate cross-functionally with our TechOps Team in implementing security best practices for SaaS and endpoint environments and support security initiatives like 2-factor authentication, automated encryption of client devices, DLP, etc. * Build tools and processes for automating security controls and monitoring at scale * Support security initiatives across the organization and harden our corporate infrastructure against attack * Recommend endpoint and SaaS mitigations and controls based on generated telemetry * Provide recommendations and support for insider threat programs * Participate in the on-call rotation for the Security Team What you'll bring to Persona * 3+ years of experience in IT security or building endpoint security solutions, including experience supporting mac OS devices * Experience with planning and executing endpoint hardening initiatives * Experience with mobile device management (MDM) and endpoint detection and response (EDR) tools and technologies * Experience with data loss prevention (DLP) and insider threat concepts and mitigations * Experience with email security concepts and protecting a workforce against phishing * Ability to explain security topics clearly to non-technical business representatives * Ability to write code in Ruby, Python, or similar scripting languages, as well as SQL queries Full-time Employee Benefits and Perks For full-time employees (excluding internship and contractor opportunities), Persona offers a wide range of benefits, including medical, dental, and vision, 3% 401(k) contribution, unlimited PTO, quarterly mental health days, family planning benefits, professional development stipend, wellness benefits, among others. While we believe competitive compensation and benefits are a critical aspect of you deciding to join us, we do hope you consider why our core values and culture are right for you. If you'd like to better understand what it's like working at Persona, feel free to check out our reviews on Glassdoor.

At Caris, we understand that cancer is an ugly word-a word no one wants to hear, but one that connects us all. That's why we're not just transforming cancer care-we're changing lives. We introduced precision medicine to the world and built an industry around the idea that every patient deserves answers as unique as their DNA. Backed by cutting-edge molecular science and AI, we ask ourselves every day: “What would I do if this patient were my mom?” That question drives everything we do. But our mission doesn't stop with cancer. We're pushing the frontiers of medicine and leading a revolution in healthcare-driven by innovation, compassion, and purpose. Join us in our mission to improve the human condition across multiple diseases. If you're passionate about meaningful work and want to be part of something bigger than yourself, Caris is where your impact begins. Position Summary The Information Security Engineer will be responsible for implementing, managing, and overseeing our organization's information security systems to safeguard our data, infrastructure, and assets from security threats. You will collaborate with cross-functional teams to ensure the security and integrity of our systems, networks, and applications. Job Responsibilities Work with InfoSec team on running regular scans using Rapid7 to identify vulnerabilities and assist with the implementation of recommended patches and remediations. Maintain an up-to-date understanding of emerging threats, vulnerabilities, and best practices. Participate in cybersecurity incident response activities and help manage the aftermath of security breaches or attacks. Utilize different tool for network traffic analysis to detect anomalies and potential threats. Assist in malware and virus detection, containment, eradication, and cleanup processes. Collaborate with business units to identify and prioritize critical assets and systems. Respond to social engineering attacks and contribute to the development of strategies to mitigate future risks. Assist teams with day-to-day InfoSec incoming tickets and resolving issues in a timely manner Develop and enforce security policies, standards, and procedures across the organization. Work with the Cloud (AWS/Azure) teams monitor different environments using different tools to ensure all systems operate securely and efficiently. Support the deployment and management of microservices architectures, including AWS EKS. Stay informed about the latest in generative AI technologies and their implications for cybersecurity. Required Qualifications High School Diploma. 3-4 years of experience in a cybersecurity role. Relevant certifications such as CISSP, CISM, CEH, or GIAC are highly desirable. Strong familiarity with Rapid7, Sentinal1, iBoss, QRadar, DLP, AWS Security tools, and Azure security components. Understanding of microservices architecture and container orchestration, preferably with AWS EKS. Knowledge of generative AI and its applications in enhancing cybersecurity defenses is a plus. Excellent problem-solving skills and the ability to work under pressure. Strong communication skills and the ability to work effectively in a team environment. Analytical skills to review complex reports for anomalies. Experience troubleshooting complex resource provisioning or security issues. Proficiency with general computer software. Conditions of Employment: Individuals must successfully complete pre-employment process, which includes criminal background check, drug screening, and reference verification. Preferred Qualifications Bachelor's Degree in an IT related discipline or additional equivalent experience. CISSP or equivalent certification is recommended. Strong attention to detail. Strong verbal and written communication skills. Experience with Python programming for security automation and scripting tasks. Communication - Proficient verbal and written communication skills. Willingness to share and receive information and ideas from all levels of the organization in order to achieve the desired results. Teamwork - Commitment to the successful achievement of team and organizational goals through a desire to participate with and help other members of the team. Customer Service Focus - Demonstrate a focus on listening to and understanding client/customer needs, and then exceeding service and quality expectations for a positive client/customer experience. Physical Demands Will work at a computer most of the time as well as need to keep inventory and ordering records requiring the use of copiers, fax machines, and scanners. Training All job specific, safety, and compliance training are assigned based on the job functions associated with this employee. Other Job may require after-hours response to emergency issues. Periodically scheduled on-call may require after-hours response for technical emergencies not explicitly related to assigned job responsibilities. Conditions of Employment: Individual must successfully complete pre-employment process, which includes criminal background check, drug screening, credit check ( applicable for certain positions) and reference verification. This reflects management's assignment of essential functions. Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Caris Life Sciences is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, gender identity, sexual orientation, age, status as a protected veteran, among other things, or status as a qualified individual with disability.

The most basic of needs is food. Feeding the line is at the core of what we do-putting food into the hands and onto the tables of hungry families. We are committed to creating food access points on all levels. We do this as we continue our work in ending the line-co-creating with the community, innovative ways to serve the whole person, understanding that hunger does not exist in isolation. We also work to mobilize the public to support what we do through donations, advocacy and volunteerism. Where you come in is our way of being, or how we organize ourselves to do this work. Job Description SUMMARY: Design, installand manage security mechanisms that protect the computer network andinformation systems for Mid-Ohio Foodbank (MOF) against threats including butnot limited to hackers, breaches, viruses and spyware. Responds to incidents, investigates potentialincidents and recommends enhancements to close potential security gaps and servesas a backup to other members of the Technology department. PRIMARY DUTIES: Implement, update, and maintain security measures on computer network systems and infrastructure for Mid-Ohio Foodbank (MOF) including but not limited to virus protection software, system updates and patches Conduct penetration testing on system operations and websites to identify vulnerabilities and exploits and ensure proper functionality Research, develop and recommend information security policies, procedures and bestpractices Plan and implement appropriate measures to safeguard data from accidental or unauthorized modification, destruction or disclosure Review systems for and identify violations or attempted violations of security procedures, processes and access Provide updates and reporting related to cyber-attacks to VP of IT Responsible for post breach/data loss activities including but not limited preservation of evidence, review of data to determine scope and support of legal and otherprocesses Monitor, test and maintain network disaster recovery plan Assist MOF in maintaining compliance with laws, rules or contractual requirements as it relates to data transmission and collection Educate and provide awareness to users regarding security policies and procedures as well as threats Assists in technology budget recommendations Represents IT department on focus groups and committees May provide help desk and technical support to MOF staff and guests Participates in special technology projects as assigned Performs other duties as assigned Qualifications Education and Certifications: Bachelor Degree in Computer Information Systems orrelated field. Certified Information Systems Security Professional designationpreferred. Experience: At least 3years of technology, network, and system administration experience with focuson network and system security Strong knowledge of computer networkingincluding advanced firewall rules, data encryption, security software andinternal security testing required. Basic knowledge of Microsoft Windows andserver products required. Skills/Competencies: Ability to review, maintain and update securityfeatures on PC's, servers and other networked and non-networked devices,websites, apps, etc. Must have strong problem-solving skills. Must have analytical and organizationalskills. Mustbe able to represent Mid-Ohio Foodbank with professionalism when interactingwith staff, third party vendors and MOF guests. TO APPLY: Please submit applications via ********************************************************* Additional Information TO APPLY: Please submit applications via *********************************************************

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client.* Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

Join a team dedicated to making a real difference in the lives of our community. Our Mission at Friendship Village of Dublin is “To care for, engage, and inspire our community to reimagine and maximize quality of life at every age” . At Friendship Village our Values Drive us to RISE to any Occasion Values: Respect Integrity and Innovation Stewardship Excellence We are seeking a Information Security & Systems Analyst to contribute to our mission by: The Entry to Mid-Level System Analyst performs security, compliance and administration of systems and is responsible for the design, installation and management, configuration and reliable operation of security/compliance mechanisms, systems and policies that protect the computer network and information systems against cyber events. Participate in research and development to continuously improve and keep up with the IT business needs of the organization. Actively resolve problems and issues with computer and server systems to limit work disruptions within the company. Essential Duties: Design, install and manage security mechanisms that protect the computer network and information systems against threats including but not limited to hackers, breaches, viruses and spyware. Educate and provide awareness to users regarding security policies and procedures as well as threats. Develop and maintain security policies and guidelines around information classification, system integrity, incident response and user access. Monitor, audit and review systems for and identify violations or attempted violations of security procedures, processes and access. Plan and implement appropriate measures to safeguard data from accidental or unauthorized modification, destruction or disclosure. Respond to incidents, investigate potential incidents and recommend enhancements to close potential security gaps and serve as a backup to other members of the Technology department. Responsible for post breach/data loss activities including but not limited preservation of evidence, review of data to determine scope and support of legal and other processes. Participate in supporting efforts, making sure all networks, systems, applications, servers, technology tools and related equipment problems are resolved in a timely manner with limited disruptions. Monitor performance and maintain systems according to requirements. Ensure security through access controls, backups and firewalls. Recommend when to upgrade systems with new releases and models. Timely completion of IT Projects. All other duties as assigned. Information Security & Systems Analyst Responsibilities: Safeguard and help prevent cyber-attacks: Implement industry best practices for cyber security. Be up to date about the latest security trends and newest security technology. Assist other technical support staff in identifying and implementing appropriate security safeguards, including patch applications and anti-malware strategies. Operate, administer and monitor network and host-based intrusion detection/prevention systems. Ensure ongoing compliance with industry standards for information security: Participating in risk assessments to identify potential security threats Conducting employee training on security policies and responsibilities Auditing IT systems to ensure compliance with regulations. Reporting security breaches to management for prompt resolution. Collaborating with vendors to ensure proper data handling security measures. Monitoring compliance with state and federal data privacy and security regulations. Developing policies and procedures for maintaining data security. Monitor and report on devices and networks including: Maintain, configure, secure and provide reliable operation of computers systems, network servers, and virtualization. Network switch and firewall health Internet traffic and usage metrics Design and install network devices and systems (including maintaining current software versions on all network equipment) Demonstrates ability to independently troubleshoot and diagnose network, telephone, Internet, Wi-Fi, network. Assists with work order requests: Helps the IT Team meet service levels of quality and responsiveness: Satisfaction goal of 90% 2-business-day response time (resolution time dependent on issue SLA) Creates, updates and closes tickets in incident management system. Qualifications: • Bachelor's degree in computer science, programming, or a related field or equivalent industry experience. • 2-4 Years of Security or Systems Analyst experience REQUIRED NON TECHNICAL QUALIFICATIONS • Must have the ability to work under pressure, without constant direction and to react in a positive and spontaneous manner to the needs of residents, staff, visitors, and vendors. • Must be able to independently handle multiple simultaneous tasks, following specific instructions carefully and general instructions completely. • Excellent communication skills • Resourcefulness and problem-solving aptitude • Self-starter mentality willing to make constant improvements in the technical support process. • Takes pride and ownership of the support role. • Excellent customer service and communication skills • Ability to assess resident and staff complaints and resolve disputes in a friendly professional manner. REQUIRED TECHNICAL QULAIFICATION • Strong understanding of cybersecurity tools, concepts and best practices. • Knowledge of information security frameworks (e.g.,HIPAA, NIST) and relevant regulations. • Knowledge of Windows Operating Systems - Desktop (10 and 11) and Server (2016+) • Windows desktop device configuration, management, and operation. • IOS Device configuration, management, and operation. • Networking Concepts and basic troubleshooting (DNS, DHCP, IP Addressing). • Switching and Routing Concepts (basic troubleshooting and configuration). • Meraki Network and Camera Equipment • VOIP/PBX • Demonstrated working in a helpdesk ticketing environment.

The Chief of Information Security and Security Officer (CISO) is responsible for providing leadership and operational excellence for developing and supporting security initiatives and policies along with developing strategies to protect sensitive data, managing security risks, investigating and remediating security incidents and promoting security awareness and compliance across the organization. The CISO acts as the primary contact for security-related matters and serves as the organization's HIPAA Security Officer. Job Responsibilities: Leadership & Strategy: Develop and manage a comprehensive information security and risk management program aligned with business objectives and regulatory requirements. Serve as the organization's HIPAA Security Officer and lead all activities related to ensuring the security of protected health information (PHI). Collaborate with executive leadership, legal, compliance, and IT teams to integrate security into all aspects of operations and technology. Serves in a leadership capacity in the execution of the organizations Cyber Incident Response plan, coordinating action, communication, and mitigation efforts in conjunction with Executive Leadership. Keep current with emerging security trends, conduct research and make recommendations for improvements to current processes. Advise, counsel and educate executive and management teams on technology's relative importance and financial impact. Governance, Risk & Compliance: Establish, implement, maintain, and audit information security policies, procedures, and controls in accordance with PathGroup's Compliance Program, federal laws, and industry-standard best practices. Conduct regular risk assessments and security audits to identify vulnerabilities and recommend mitigations. Oversee security incident response planning and investigation of security breaches, including documentation and reporting. Work closely with the Chief Information Officer and Privacy Officer to develop and administer security awareness training for all employees and contractors. Security Operations: Lead strategic security and incident response planning to achieve business goals by prioritizing defense initiatives through the deployment, monitoring, maintenance, development, and upgrading of current and future security tools, technologies, and systems. Ensure regular risk assessments, penetration testing, and remediation efforts are conducted on a regular and timely basis. Monitor and analyze network and system activity for anomalies and trends to prevent and remediate security incidents in a timely manner. Work with IT to implement secure system configurations and DevSecOps practices. Third-Party, Vendor and Client Management: Evaluate third-party vendors and partners for security and compliance posture. Complete all required security assessments from existing or prospective clients. Participate in contract negotiations to ensure appropriate security requirements and data protection terms are in place. Management: Manage the employee hiring process including developing and updating s, developing performance expectations, identifying essential functions and knowledge, skills and abilities required for applicable positions, and selecting and assigning staff. Supervise and manage employee and team performance by coaching, counseling, motivating, and evaluating employees on a continual basis. Implement disciplinary action as needed and in consultation with Human Resources. Coordinate team projects, schedule work assignments, set priorities, and direct the work of subordinate employees. Ensure effective employee relations by sustaining an ethical, non-discriminatory and safe work environment and establishing effective communication lines and methods. Identify and solve employee problems, manage conflict, and respond to grievances as needed. Perform all job responsibilities in alignment with the industry's best security practices and regulatory guidelines to protect confidentiality, integrity, and availability of protected health information and other sensitive company data. Must be familiar with and abide by the Corporate Compliance Program and all Corporate policies, including the Privacy and Security policies. NON-ESSENTIAL FUNCTIONS: Nothing in the job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Other duties as assigned

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client.* Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

Versiti is a fusion of donors, scientific curiosity, and precision medicine that recognize the gifts of blood and life are precious. We are home to the world-renowned Blood Research Institute, we enable life saving gifts from our donors, and provide the science behind the medicine through our diagnostic laboratories. Versiti brings together outstanding minds with unparalleled experience in transfusion medicine, transplantation, stem cells and cellular therapies, oncology and genomics, diagnostic lab services, and medical and scientific expertise. This combination of skill and knowledge results in improved patient outcomes, higher quality services and reduced cost of care for hospitals, blood centers, hospital systems, research and educational institutions, and other health care providers. At Versiti, we are passionate about improving the lives of patients and helping our healthcare partners thrive. Position Summary The Infrastructure Security Analyst will play a critical role in ensuring the security and integrity of our IT systems and networks. This position involves a balanced focus on IT Systems and Network Support and Cybersecurity with a concentration on Vulnerability Management. The ideal candidate will possess both technical expertise and strong analytical skills to identify, mitigate, and manage vulnerabilities while supporting the overall IT infrastructure. The candidate will thrive in a dynamic, team-oriented environment, where knowledge sharing, and continuous learning are encouraged. As an integral part of our collaborative team, the Infrastructure Security Analyst will work closely with various IT departments, including network operations, system administration, and application development. This role includes direct collaboration with the Senior Cybersecurity Engineer to ensure thorough analysis, identification, and mitigation of infrastructure vulnerabilities. Together, the team will address evolving cyber threats, communicate complex security concepts to stakeholders across all levels, and promote an organization-wide security culture while supporting Versiti's business and operational goals. This position values teamwork, encouraging information sharing and joint problem-solving to fortify the organization's defenses. This role is essential in building a resilient IT infrastructure that can adapt to evolving threats while supporting the organization's business objectives. Total Rewards Package Benefits Versiti provides a comprehensive benefits package based on your job classification. Full-time regular employees are eligible for Medical, Dental, and Vision Plans, Paid Time Off (PTO) and Holidays, Short- and Long-term disability, life insurance, 7% match dollar for dollar 401(k), voluntary programs, discount programs, others. Responsibilities Provide technical support for IT infrastructure, including servers, networks, and cloud services. Monitor system performance, troubleshoot issues, and perform regular maintenance on IT systems and document system configurations, changes, and procedures for future reference and compliance audits. Collaborate with IT teams to implement and maintain secure network configurations and ensure compliance with organizational policies while assisting in the deployment and configuration of hardware and software as needed. Respond to and resolve service requests and incidents in a timely manner. Conduct regular vulnerability assessments and penetration testing to identify security weaknesses within IT systems and networks and collaborate with IT teams to develop and implement mitigation strategies for identified vulnerabilities. Analyze vulnerability scan reports and prioritize remediation efforts based on risk assessment and monitor security alerts and incidents, responding to security breaches or threats as necessary. Maintain up-to-date knowledge of the latest cybersecurity threats, vulnerabilities, and trends. Utilize threat intelligence feeds and monitoring tools to proactively identify and mitigate potential security threats. Provide recommendations for security improvements and help implement new security controls. Performs other duties as required or assigned which are reasonably within the scope of the duties in this job classification Understands and performs in accordance with all applicable regulatory and compliance requirements Complies with all standard operating policies and procedures Qualifications Education Bachelor's Degree Computer Science, Information Technology, Cybersecurity, or a related field preferred Experience 4-6 years Demonstrated experience installing, managing and troubleshooting Linux and/or Microsoft Server environments. required 4-6 years Experience with Enterprise Data Center Server and Network environments. required 4-6 years Experience in conducting vulnerability assessments and penetration testing. required Demonstrated experience with VMware Server and storage management. preferred Knowledge, Skills and Abilities Understanding of patch management processes and tools required Knowledge of common security frameworks (e.g., NIST, ISO 27001, CIS Controls) required Strong analytical and problem-solving skills. required Excellent communication skills, both verbal and written, with the ability to explain technical concepts to non-technical stakeholders. required Strong attention to detail and ability to work independently as well as part of a team. required Experience with ticketing systems and IT service management processes. required Familiarity with scripting languages (e.g., PowerShell, Python). preferred Licenses and Certifications Certified Ethical Hacker (CEH) desired CISSP Certified Information Systems Security Professional desired Microsoft Certified Systems Engineer (MCSE) preferred Microsoft Certified Systems Administrator (MCSA) preferred CompTIA Network+ Certification preferred CompTIA Security+ Certification preferred Tools and Technology Proficiency in network protocols, firewalls, VPNs, and security appliances. required Knowledge of operating systems (Windows, Linux) and cloud environments (AWS, Azure). required Experience with vulnerability assessment tools (e.g., Nessus, Qualys, Rapid7). preferred Experience with container technologies (e.g., Docker, Kubernetes) preferred Familiarity with threat intelligence and incident response processes. preferred #LI-EH1 #LI-Hybrid

Versiti is a fusion of donors, scientific curiosity, and precision medicine that recognize the gifts of blood and life are precious. We are home to the world-renowned Blood Research Institute, we enable life saving gifts from our donors, and provide the science behind the medicine through our diagnostic laboratories. Versiti brings together outstanding minds with unparalleled experience in transfusion medicine, transplantation, stem cells and cellular therapies, oncology and genomics, diagnostic lab services, and medical and scientific expertise. This combination of skill and knowledge results in improved patient outcomes, higher quality services and reduced cost of care for hospitals, blood centers, hospital systems, research and educational institutions, and other health care providers. At Versiti, we are passionate about improving the lives of patients and helping our healthcare partners thrive. Position Summary The Infrastructure Security Analyst will play a critical role in ensuring the security and integrity of our IT systems and networks. This position involves a balanced focus on IT Systems and Network Support and Cybersecurity with a concentration on Vulnerability Management. The ideal candidate will possess both technical expertise and strong analytical skills to identify, mitigate, and manage vulnerabilities while supporting the overall IT infrastructure. The candidate will thrive in a dynamic, team-oriented environment, where knowledge sharing, and continuous learning are encouraged. As an integral part of our collaborative team, the Infrastructure Security Analyst will work closely with various IT departments, including network operations, system administration, and application development. This role includes direct collaboration with the Senior Cybersecurity Engineer to ensure thorough analysis, identification, and mitigation of infrastructure vulnerabilities. Together, the team will address evolving cyber threats, communicate complex security concepts to stakeholders across all levels, and promote an organization-wide security culture while supporting Versiti's business and operational goals. This position values teamwork, encouraging information sharing and joint problem-solving to fortify the organization's defenses. This role is essential in building a resilient IT infrastructure that can adapt to evolving threats while supporting the organization's business objectives. Total Rewards Package Benefits Versiti provides a comprehensive benefits package based on your job classification. Full-time regular employees are eligible for Medical, Dental, and Vision Plans, Paid Time Off (PTO) and Holidays, Short- and Long-term disability, life insurance, 7% match dollar for dollar 401(k), voluntary programs, discount programs, others. Responsibilities Provide technical support for IT infrastructure, including servers, networks, and cloud services. Monitor system performance, troubleshoot issues, and perform regular maintenance on IT systems and document system configurations, changes, and procedures for future reference and compliance audits. Collaborate with IT teams to implement and maintain secure network configurations and ensure compliance with organizational policies while assisting in the deployment and configuration of hardware and software as needed. Respond to and resolve service requests and incidents in a timely manner. Conduct regular vulnerability assessments and penetration testing to identify security weaknesses within IT systems and networks and collaborate with IT teams to develop and implement mitigation strategies for identified vulnerabilities. Analyze vulnerability scan reports and prioritize remediation efforts based on risk assessment and monitor security alerts and incidents, responding to security breaches or threats as necessary. Maintain up-to-date knowledge of the latest cybersecurity threats, vulnerabilities, and trends. Utilize threat intelligence feeds and monitoring tools to proactively identify and mitigate potential security threats. Provide recommendations for security improvements and help implement new security controls. Performs other duties as required or assigned which are reasonably within the scope of the duties in this job classification Understands and performs in accordance with all applicable regulatory and compliance requirements Complies with all standard operating policies and procedures Qualifications Education Bachelor's Degree Computer Science, Information Technology, Cybersecurity, or a related field preferred Experience 4-6 years Demonstrated experience installing, managing and troubleshooting Linux and/or Microsoft Server environments. required 4-6 years Experience with Enterprise Data Center Server and Network environments. required 4-6 years Experience in conducting vulnerability assessments and penetration testing. required Demonstrated experience with VMware Server and storage management. preferred Knowledge, Skills and Abilities Understanding of patch management processes and tools required Knowledge of common security frameworks (e.g., NIST, ISO 27001, CIS Controls) required Strong analytical and problem-solving skills. required Excellent communication skills, both verbal and written, with the ability to explain technical concepts to non-technical stakeholders. required Strong attention to detail and ability to work independently as well as part of a team. required Experience with ticketing systems and IT service management processes. required Familiarity with scripting languages (e.g., PowerShell, Python). preferred Licenses and Certifications Certified Ethical Hacker (CEH) desired CISSP Certified Information Systems Security Professional desired Microsoft Certified Systems Engineer (MCSE) preferred Microsoft Certified Systems Administrator (MCSA) preferred CompTIA Network+ Certification preferred CompTIA Security+ Certification preferred Tools and Technology Proficiency in network protocols, firewalls, VPNs, and security appliances. required Knowledge of operating systems (Windows, Linux) and cloud environments (AWS, Azure). required Experience with vulnerability assessment tools (e.g., Nessus, Qualys, Rapid7). preferred Experience with container technologies (e.g., Docker, Kubernetes) preferred Familiarity with threat intelligence and incident response processes. preferred #LI-EH1 #LI-Hybrid Not ready to apply? Connect with us for general consideration.