Evolent
At Evolent Health, we are dedicated to transforming the healthcare experience for individuals with complex health needs. Our goal is to build a cohesive healthcare system that ensures everyone receives the care and compassion they deserve. We value work/life balance, offer flexibility in the workplace, and support our employees in achieving their best work. Join our mission-driven team and become part of a culture focused on diversity and inclusion.
Your Role:
We are looking for an experienced Senior Security Analyst to join our Information Security team. In this role, you will be instrumental in enhancing our security and vulnerability management program, helping protect Evolent's systems and assets.
Key Responsibilities:
Manage and enhance our security, threat, and vulnerability management program in alignment with established policies.
Work with stakeholders to identify process gaps and suggest improvements.
Expand scanning capabilities for thorough risk assessments.
Enhance the security of Docker images, web applications, and other digital assets through collaboration with relevant teams.
Conduct thorough health checks on security management tools and ensure accurate asset information.
Develop and maintain metrics and key performance indicators (KPIs) for security management.
Participate in stakeholder meetings to resolve open issues and mitigate vulnerabilities.
Review vulnerabilities using threat intelligence and prioritize accordingly for remediation.
Promote collaboration with platform owners and application teams to increase awareness of risks and vulnerabilities.
Collaborate with IT infrastructure teams on tactical and strategic planning.
Communicate effectively with stakeholders about potential loss events.
Create insightful reports and dashboards utilizing security tools like SIEM.
Contribute to the development of Standard Operating Procedures and Working Instructions for security and vulnerability management.
What You Bring:
Bachelor's degree in Computer Security, Computer Science, or a related field.
Over 2 years of experience in security and/or vulnerability management.
Familiarity with patch management protocols.
Proficient in configuring and troubleshooting both Microsoft Windows and Linux environments.
Experience with OS patch management for Windows and Linux in virtualized setups.
Solid understanding of security and vulnerability management principles gleaned from education and experience.
Comprehension of security ratings, criticality, and impact.
A proactive approach to staying informed about emerging threats and vulnerabilities.
Familiarity with tools such as Tenable or Qualys is advantageous.
Strong analytical, problem-solving, and communication skills.
Ability to effectively manage stakeholder relationships.
Preferred certifications: CISSP, CISM, CEH.
Please note that, in accordance with HIPAA security standards, identity verification may be required during the application process, which is for compliance and security purposes. Reasonable accommodations are available upon request.
Technical Requirements:
All employees must have a high-speed internet connection of at least 10 Mbps and, specifically for call center employees, the ability to connect directly to their home internet router. These requirements may change with any future office re-openings.
Evolent Health is an equal opportunity employer, considering all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, or disability. If you require reasonable accommodations to access this information, please reach out for assistance.
The expected salary range for this role is $88,300 - $128,100, with potential bonuses based on performance. Evolent offers a comprehensive benefits package, including health insurance, to eligible employees.