How you will help

As a part of our SecOps team, you will be at the front line of our security monitoring, risk assessment, escalation, and remediation processes. You will deep dive on security alerts, help tune monitoring and alerting systems, and investigate and analyze risks to our people, processes, systems, and data.

What you will do

• Manage and triage NIST 800-53, FedRAMP and related security issues and non-compliance events

• Manage compliance monitoring including inventory, vulnerability management, POA&M and continuous monitoring and reporting and other recurring compliance activities

• Lead and support security policy and procedure maintenance and documentation improvements

• Manage security information gathering (SIG) requests by ensuring accurate and timely vendor and data partner responses

• Lead and support annual third-party assessment organization and other 3rd-party risk assessment activities

• Assist with coordination required security training activities

• Lead and support contingency planning and incident response testing and training.

About You

• Security is a priority in everything you do

• Hold basic familiarity with HIPAA, NIST 800-53 and security compliance frameworks

• Keep up to date on data science tools and distributed computing methodologies

• Familiar with scalable and/or cluster compute architectures

• Know the relevance of monitoring and measuring systems to identify challenges and risks

• Comfortable with Shell scripting, Python, Ruby, or similar languages.

Desired Skills and Experience

• 2-5 years information security and/or system administration experience under Linux-focused on patching, configuration management, and vulnerability remediation

• ISC2, SANS or similar security certifications

• Working knowledge of Nmap, Nessus, OpenVPN, tcpdump, OpenSSL and other security related tools

• Comfortable with scripting in Python and Bash

• Understanding of data network configuration and infrastructure concepts, including TCP/IP, DNS, routers, internet/intranet/extranet, firewalls, web servers and security hierarchy including the application of encryption key infrastructures and authentication processes.

About HealthVerity

Pharmaceutical manufacturers, payers and government organizations have partnered with HealthVerity to solve some of their most complicated use cases through transformative technologies and real-world data infrastructure. The HealthVerity IPGE platform, based on the foundational elements of Identity, Privacy, Governance and Exchange, enables the discovery of RWD across the broadest healthcare data ecosystem, the building of more complete and accurate patient journeys and the ability to power best-in-class analytics and applications with flexibility and ease. Together with our partners, HealthVerity has built the modern way to data for the health insights economy. To learn more about the HealthVerity IPGE platform, visit www.healthverity.com.

Our company challenges

• Empowering clients with highly rewarding data discovery and licensing tools

• Ingesting and managing billions of healthcare records from a wide variety of partners

• Standardizing on common data models across data types

• Orchestrating an industry-leading HIPAA privacy layer

• Innovating our proprietary de-identification and data science algorithms

• Building a culture that supports rapid iteration and new possibilities

We have big plans

The infrastructure and culture we are building will provide an environment that cultivates innovation. We want to move fast knowing we can fix anything we break along the way. If a new need arises, we want to turn around a solution quickly. We want to solve our challenges in ways that create even more possibilities. We’ve created a platform that will scale to support an ever-growing array of data providers and innovative products and services. You must be able to think big while still delivering on near-term requirements.

We pride ourselves on ensuring that each team member at HealthVerity feels connected, validated and heard. From Philadelphia to Manhattan Beach, our success is driven by recognizing that a team is made up of individuals. We offer a robust set of benefits and perks to everyone. View details on our careers page.

HealthVerity is an equal opportunity employer devoted to inclusion in the workplace. We believe incorporating different ideas, perspectives and backgrounds make us stronger and encourages an environment where ageism, racism, sexism, ableism, homophobia, transphobia or any other form of discrimination are not tolerated. At HealthVerity, we’re working towards an innovative and connected future for healthcare data and believe the future is better together. We can only do that if everyone has a seat at the table. Read our Equity Inclusion and Diversity Statement.

If you require a reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to [email protected]

HealthVerity offers in-office and remote options, so you can work from anywhere within the US! #LI-Remote