Sr. Information Security Analyst

Position Summary:

As a member of CAQH's Information Security Incident Response team, the Sr. Information Security Analyst– Incident Response will coordinate the response activities for cyber security incidents across the corporate environment. The successful candidate will focus on reviewing, triaging, analyzing, remediating, and reporting on cyber security incidents. The individual will manage validated cyber security incidents, in accordance with the Information Security Incident Response Plan. The successful candidate will perform functions such as log analysis, conduct in-depth technical analysis of network traffic and endpoint systems, enrich data using multiple sources, and be responsible for rapid handling and mitigation of cyber security incidents.

This is a full-time, exempt, remote position and reports to the Director, Identity Access and Management.

Base Salary Range: $125,000 - $140,000 annually.

Specific Responsibilities:

• Knowledge of current cyber threats, adversary tactics, techniques, and procedures (TTPs), such as the MITRE ATT&CK framework, mitigation techniques, and evolving security technologies.
• Experience performing malware analysis.
• Experience conducting investigations in Cloud environments (Azure).
• Experience performing Threat Hunting to uncover malicious activity that evades existing security controls.
• Experience leveraging PowerShell, Python or BASH scripting for automation, alert enrichment or investigations.
• Exposure to other major areas of Information Security, such as Vulnerability Management and Remediation, Application Security, Identity and Access Management, GRC, Penetration Testing/Red Teaming.
• Experience with various databases and query languages.
• Experience leveraging information security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, and network access control as it relates to responding to cyber incidents.
• Broad knowledge of information systems including Windows security, network security, systems development, communication networks, security software/hardware and operating systems.
• Experience working in a team environment, with experience teaching and learning from other team members.
• Experience communicating effectively with both technical and non-technical individuals.
• Conducts investigations and responds to internal and external Information security threats.
• Provides off-hour support as needed for security monitoring and response activities.

Supervisory Responsibilities:

• None.

Experience:

• 2 years of incident analysis, security architecture, malware research, SOC, or any other similar incident response experience.
• 3+ Years of overall IT Experience with a major emphasis on Information Security.

Education:

• Bachelor’s degree preferred.
• Security certifications – CISSP, CEH, GCIH, SSCP certifications preferred.

WHO WE ARE

Named one Modern Healthcare’s “Best Places to Work,” CAQH has helped nearly 1,000 health plans, 2+ million providers, government entities and vendors connect, exchange information and operate more efficiently. CAQH technology-enabled solutions and its Committee on Operating Rules for Information Exchange (CORE) bring the healthcare industry together to make sharing business information more automated, predictable, and consistent. CAQH Insights researches opportunities to reduce the burden of manual processes in healthcare administration.  

WHAT YOU GET

CAQH recognizes that its most important asset is its growing team of smart, creative, collaborative, forward-thinking and passionate professionals – and that a comprehensive employee benefits package is an important factor for them in choosing where to work. CAQH offers competitive compensation along with an extensive benefits package for all full-time employees, including medical, dental and vision coverage, tuition assistance and a 401k. We offer full-time remote work to all staff from any location and maintain a physical office in downtown Washington, DC.

At CAQH, we are proud of our active commitment to Diversity, Equity, and Inclusion (DEI). Our DEI committee works diligently to foster an inclusive workplace where all individuals are valued, respected, and empowered. We embrace diverse perspectives and are dedicated to providing equal opportunities for everyone to thrive. Join us in our mission to transform healthcare through innovative technology solutions while making a positive impact on the lives of diverse communities.

CAQH is an equal opportunity employer. It is our policy to recruit, hire, train, and promote individuals, as well as administer any and all personnel actions, without regard to race, color, religion, sex, national origin or ancestry, age, marital status, disability, protected veteran status, personal appearance, sexual orientation, gender identity or expression, familial status, family responsibilities, matriculation, political affiliation, genetic information, source of income, place of residence, or any other characteristic protected by law. CAQH will not tolerate any unlawful discrimination and any such conduct is strictly prohibited.

Applicants have rights under the Family Medical Leave Act (FMLA), Equal Employment Opportunity (EEO), and the Employee Polygraph Protection Act (EPPA). If you are interested in applying for employment with CAQH and need an accommodation to apply for a posted position, contact CAQH Human Resources at 202-517-0436.

#LI-Remote