Connecting millions to quality, affordable health insurance

Information Security Compliance Analyst

Security AnalystSecurity AnalystFull TimeRemoteTeam 1,001-5,000Since 1997H1B No SponsorCompany Site LinkedIn

Location

United States

Posted

35 days ago

Salary

$78K - $97.5K / year

Bachelor Degree3 yrs expExperience acceptedEnglish

Job Description

• Assisting with internal and external audit engagements (SOC2 Type II, HITRUST, PCIDSS, SOX, GuardianSphere etc.) • Gather control evidence to ensure the information provided fulfills the requirements • Organize audit evidence and manage the control and process libraries • Assist the business to assess, document and remediate risks identified during the assessment • Contributing to eHealth’s compliance maturity: • Work with the business to implement sound security controls aligned with the security policies and standards and identify control gaps • Develop metrics to report to management • Assisting with Security awareness training and phishing campaign exercises • Working with business partners to respond to carrier security questionnaires • Evaluating new vendors for security concerns • Assess the status of projects to identify and implement appropriate corrective measures to resolve security concerns as they arise • Assists in the development and ongoing refinement of enterprise AI policies, standards, and guardrails, embedding responsible and compliant AI use into core governance processes, risk assessments, and control frameworks

Job Requirements

You have a Bachelor's degree in Information Security, Information Systems or related field. We will consider candidates with equivalent work experience in lieu of a Bachelor’s degree.
You have 3+ years of experience working in an Information Security audit setting such as SOC2 and HITRUST, and knowledge of security controls including NIST, HIPAA, & Privacy
You have the ability to foster a collaborative working relationship in a fast-paced, team-oriented environment
You bring strong written and verbal communication skills with a proven ability to hold constructive discussions with the business to ensure information security risks are adequately addressed
You have attention to detail and strong research skills
You have the ability to analyze problems from different angles and foster multiple perspectives
You have experience with risk management tool administration and configuration is a plus
You have the ability to digest and translate technical language and relay to stakeholders outside of the Security field in understandable terms
You have the ability to exercise judgement within defined procedures and determine appropriate action with autonomy and support as needed.

Benefits

Generous benefits include medical, dental and vision beginning on your first day of employment
401K with matching
Tuition reimbursement
Employee stock purchase program
12 company paid holidays and flexible time off (PTO for non-exempt)

Related Categories

Security Analyst Threat Intelligence Specialist Incident Response Analyst

Related Job Pages

Remote Full-time Jobs (US)More US Remote Jobs

More Security Analyst Jobs

Cybersecurity Analyst

PurpleBox, Inc.

Secure Cloud Solutions Consulting and Managed Services PurpleBox Security Services include assessment, design, implementation and management of information security, compliance, and technical security solutions. - Compliance Assessment and Reporting - Risk Assessment - Vulnerability Assessment and Penetration Testing (VA/PT) - Security Policy and Controls - Vulnerability Scanning Services (PCI ASV, OS, Network, Database, Web Application) - SCADA and Industrial Control Systems Security - Security Configuration Baselines - Security Monitoring and Threat Intelligence Services - Application Security Testing Services - Managed Web Application Firewall PurpleBox is an Amazon Web Services (AWS) Partner and helps clients with their Cloud Transformation and Cloud Migration needs: - Cloud Trasformation Strategy - Current State Assessment - Migration Project Management - Cloud Architecture - Cloud Security Architecture - Security and Compliance in the Cloud - Cloud Cost Optimization PurpleBox Cloud Services are focused on providing its customers with the most complete and cost effective cloud solutions. From scoping and designing new environments, to decoupling and migrating complex existing platforms, our experienced team of certified professionals has a proven track record of delivery excellence.

Security Analyst35 days ago

Full TimeRemoteTeam 25

Seeking multiple Cybersecurity Analysts to engage in security testing and architecture design, providing technical support and compliance solutions.

BurpsuiteCloudDatabaseIotJavaScriptKaliLinuxMetasploitMobileNetsparkerNetwork SecurityNetworkingOs FundamentalsOwaspPythonQualysRapid7TenableWebWindows

View details: Cybersecurity Analyst

Georgia

Apply