Colorado Access
The vision of Colorado Access is to have healthy communities transformed by the care that people want at a cost we can all afford. Our mission is to partner with communities and empower people through access to quality, affordable care.
Why should you consider a career with Colorado Access?
We are a Colorado-based company, working to improve the health of our state. We care for individuals, families, and children who receive health care under Child Health Plan Plus (CHP+) and Health First Colorado (Colorado's Medicaid Program). Our focus is driving improvements in quality, member experience, outcomes, and cost. We are a mission-driven organization whose foundation is built by our vision, supported by our values and pillared by diversity, equity and inclusion.
Find work/life balance: We offer PTO, floating holidays, nine company paid holidays, a hybrid work environment, an Employee Assistance Program and a 401K. Be a part of something bigger and make an impact: We serve the underserved and most vulnerable populations in our community through access to quality and affordable health care. No matter what you do for Colorado Access, you are impacting our community and making a difference. Sharpen your skills, learn, and grow: We support your continued development through tuition reimbursement, leadership training, promotion opportunities, performance evaluations, employee recognition, and a language pay stipend.
What you will do:
We are looking for a CYBER SECURITY ANALYST who can help shape our vision and support our mission. Here is what the position will look like. Identifies malware and intrusion issues and conducts initial research based upon analytical and operational experiences, education, and technical background of events and forensic evidence. Examines alerts from various security monitoring tools, performs triage and determines scope of threats; escalates as necessary. Maintains familiarization with a large variety of network exploitation, computer forensic and intrusion concepts, technologies, practices, and procedures used within the Cyber and hacker-trade industry. Actively discovers, analyzes, diagnoses and reports on malware events, files, and network intrusion and vulnerability issues. Resolves help desk tickets related to whitelisting and user internet access by researching the domains being requested for security and liaising with end users for additional details. Provides Tier 2 support as needed. Becomes proficient with 3rd party threat intelligence tools as required. Keeps up to date with information security news, techniques, trends and best practices. Works with cross functional teams to deploy security tools and controls across the organization. Conducts regular audits and compliance assessments to ensure adherence to NIST and HIPAA standards, identifying gaps and implementing corrective actions to maintain regulatory alignment and strengthen organizational security posture Maintains and regularly updates the organization's security policies, procedures, and documentation to reflect evolving threats, regulatory requirements, and best practices. Ensures all materials are accessible, current, and aligned with industry standards such as NIST and HIPAA, supporting audit readiness and continuous improvement of the security program. Supports the development and delivery of security awareness training programs and phishing simulation exercises to educate employees on cybersecurity best practices, threat recognition, and safe online behavior. Collaborates with internal teams to analyze simulation results and improve organizational resilience against social engineering attacks. What you will bring:
Education: Bachelor's degree in an Information Technology or equivalent combination of experience and/or education may substitute with a preference for four years progressive relevant work experience.
Experience: Minimum of two years' experience in a cyber security position working with traditional security tools found in an enterprise network environment preferred. Healthcare experience preferred with experience or knowledge of HIPAA.
Knowledge, Skills, and Abilities: Demonstrates support for the company's mission, vision and values with strong written and verbal communication skills to effectively communicate complex ideas to various audiences. Solid knowledge and expertise in anti-virus software, intrusion detection, firewalls and content filtering. Experience in using Tenable Security Center and Tenable.io preferred. Knowledge of risk assessment tools, technologies and methods. Understanding of PCI-DSS 2.0, FISMA/CMS/NIST 800-53a, EHNAC, SOX and HIPAA. Strong research, planning and development skills to develop and implement security policies, standards and procedures. Strong system administration knowledge to support multiple platforms and applications. Expertise with mobile code, malicious code, and anti-virus software. Endpoint security solutions, including file integrity monitoring and data loss prevention. Experience working with cloud deployments in Azure or related cloud security. Familiar with SIEM, DLP and IDS/IPS products. May be required to manage multiple priorities and projects with tight deadlines.
Licenses/Certifications: A valid driver's license and proof of current auto insurance will be required for any position requiring driving.
Together we will be: an innovative and collaborative team who supports each other, the employees and vision of the company to reach our goals individually, together and as an organization.
Pay, Perks and Benefits at Colorado Access:
The compensation for this position is
$78,200.00 - $93,700.00 a
nnually.
Colorado Access has provided a compensation range that represents its good faith estimate of what Colorado Access may pay for the position at the time of posting. Colorado Access may ultimately pay more or less than the posted compensation range. The salary offered to the selected candidate will be determined based on factors such as the qualifications of the selected candidate, departmental budget availability, internal salary equity considerations, and available market information, but not based on a candidate's sex or any other protected status.
In addition to being part of a mission driven organization serving our community, as an eligible Colorado Access employee, you'll receive a generous benefits package, that includes:
Medical, dental, vision insurance that starts the first day of the month following start date. Supplemental insurance such as critical illness and accidental injury. Health care and dependent care flexible spending account options. Employer-paid basic life insurance and AD&D (employee, spouse and dependent). Short-term and long-term disability coverage. Voluntary life insurance (employee, spouse, dependent). Paid time off Retirement plan Tuition reimbursement (based on eligibility). Annual bonus program (based on eligibility, requirements and performance).
Where you will work:
This position will be a hybrid model work environment, a blend of 'In-Office' and 'Remote.'
We are not able to support out of state employees at this time as we continue to serve our members and community in the metro Denver area and across the beautiful state of Colorado.
Colorado Access is committed to providing equal opportunities to all people regardless of race, color, national origin, age, sex, genetic information, religion, pregnancy, disability, sexual orientation, veteran status or any other status protected by applicable law. We strive to maintain a work environment that is free from unlawful harassment and discrimination.
Why should you consider a career with Colorado Access?
We are a Colorado-based company, working to improve the health of our state. We care for individuals, families, and children who receive health care under Child Health Plan Plus (CHP+) and Health First Colorado (Colorado's Medicaid Program). Our focus is driving improvements in quality, member experience, outcomes, and cost. We are a mission-driven organization whose foundation is built by our vision, supported by our values and pillared by diversity, equity and inclusion.
Find work/life balance: We offer PTO, floating holidays, nine company paid holidays, a hybrid work environment, an Employee Assistance Program and a 401K. Be a part of something bigger and make an impact: We serve the underserved and most vulnerable populations in our community through access to quality and affordable health care. No matter what you do for Colorado Access, you are impacting our community and making a difference. Sharpen your skills, learn, and grow: We support your continued development through tuition reimbursement, leadership training, promotion opportunities, performance evaluations, employee recognition, and a language pay stipend.
What you will do:
We are looking for a CYBER SECURITY ANALYST who can help shape our vision and support our mission. Here is what the position will look like. Identifies malware and intrusion issues and conducts initial research based upon analytical and operational experiences, education, and technical background of events and forensic evidence. Examines alerts from various security monitoring tools, performs triage and determines scope of threats; escalates as necessary. Maintains familiarization with a large variety of network exploitation, computer forensic and intrusion concepts, technologies, practices, and procedures used within the Cyber and hacker-trade industry. Actively discovers, analyzes, diagnoses and reports on malware events, files, and network intrusion and vulnerability issues. Resolves help desk tickets related to whitelisting and user internet access by researching the domains being requested for security and liaising with end users for additional details. Provides Tier 2 support as needed. Becomes proficient with 3rd party threat intelligence tools as required. Keeps up to date with information security news, techniques, trends and best practices. Works with cross functional teams to deploy security tools and controls across the organization. Conducts regular audits and compliance assessments to ensure adherence to NIST and HIPAA standards, identifying gaps and implementing corrective actions to maintain regulatory alignment and strengthen organizational security posture Maintains and regularly updates the organization's security policies, procedures, and documentation to reflect evolving threats, regulatory requirements, and best practices. Ensures all materials are accessible, current, and aligned with industry standards such as NIST and HIPAA, supporting audit readiness and continuous improvement of the security program. Supports the development and delivery of security awareness training programs and phishing simulation exercises to educate employees on cybersecurity best practices, threat recognition, and safe online behavior. Collaborates with internal teams to analyze simulation results and improve organizational resilience against social engineering attacks. What you will bring:
Education: Bachelor's degree in an Information Technology or equivalent combination of experience and/or education may substitute with a preference for four years progressive relevant work experience.
Experience: Minimum of two years' experience in a cyber security position working with traditional security tools found in an enterprise network environment preferred. Healthcare experience preferred with experience or knowledge of HIPAA.
Knowledge, Skills, and Abilities: Demonstrates support for the company's mission, vision and values with strong written and verbal communication skills to effectively communicate complex ideas to various audiences. Solid knowledge and expertise in anti-virus software, intrusion detection, firewalls and content filtering. Experience in using Tenable Security Center and Tenable.io preferred. Knowledge of risk assessment tools, technologies and methods. Understanding of PCI-DSS 2.0, FISMA/CMS/NIST 800-53a, EHNAC, SOX and HIPAA. Strong research, planning and development skills to develop and implement security policies, standards and procedures. Strong system administration knowledge to support multiple platforms and applications. Expertise with mobile code, malicious code, and anti-virus software. Endpoint security solutions, including file integrity monitoring and data loss prevention. Experience working with cloud deployments in Azure or related cloud security. Familiar with SIEM, DLP and IDS/IPS products. May be required to manage multiple priorities and projects with tight deadlines.
Licenses/Certifications: A valid driver's license and proof of current auto insurance will be required for any position requiring driving.
Together we will be: an innovative and collaborative team who supports each other, the employees and vision of the company to reach our goals individually, together and as an organization.
Pay, Perks and Benefits at Colorado Access:
The compensation for this position is
$78,200.00 - $93,700.00 a
nnually.
Colorado Access has provided a compensation range that represents its good faith estimate of what Colorado Access may pay for the position at the time of posting. Colorado Access may ultimately pay more or less than the posted compensation range. The salary offered to the selected candidate will be determined based on factors such as the qualifications of the selected candidate, departmental budget availability, internal salary equity considerations, and available market information, but not based on a candidate's sex or any other protected status.
In addition to being part of a mission driven organization serving our community, as an eligible Colorado Access employee, you'll receive a generous benefits package, that includes:
Medical, dental, vision insurance that starts the first day of the month following start date. Supplemental insurance such as critical illness and accidental injury. Health care and dependent care flexible spending account options. Employer-paid basic life insurance and AD&D (employee, spouse and dependent). Short-term and long-term disability coverage. Voluntary life insurance (employee, spouse, dependent). Paid time off Retirement plan Tuition reimbursement (based on eligibility). Annual bonus program (based on eligibility, requirements and performance).
Where you will work:
This position will be a hybrid model work environment, a blend of 'In-Office' and 'Remote.'
We are not able to support out of state employees at this time as we continue to serve our members and community in the metro Denver area and across the beautiful state of Colorado.
Colorado Access is committed to providing equal opportunities to all people regardless of race, color, national origin, age, sex, genetic information, religion, pregnancy, disability, sexual orientation, veteran status or any other status protected by applicable law. We strive to maintain a work environment that is free from unlawful harassment and discrimination.