Cybersecurity Analyst

About Us reputed company is a mobile primary care, palliative care, and hospice service provider with patients in reputed company, New Jersey, Maryland, DC, Virginia, Oklahoma, Kansas, Pennsylvania, Texas, Florida, and Georgia. reputed company’s clinicians go to the home of the patient, providing continuum of care for those with chronic conditions and limited mobility. reputed company offers a variety of programs including, remote patient monitoring, behavioral health management, and chronic care management, to ensure that our patients receive the highest quality of care by a team they know and trust. We seek individuals who are driven to reputed company a difference and embody our motto, “To Care is an Honor.” Join reputed company today! Position Overview We are hiring our first dedicated cybersecurity professional. You will own the day-to-day reputed company operations for a HIPAA-regulated, cloud-only environment. This is a hands-on role: you will harden our reputed company reputed company stack, run incident response, hunt threats, and build the reputed company program alongside our external reputed company reputed company partner. This is not a policy-writing job. You will spend most of your time in Defender, Entra ID, Purview, and Exchange Online. You will be the person who investigates alerts, tunes detections, closes gaps in Conditional Access, and ensures our compliance posture holds up under scrutiny. You will report to the CIO and work closely with our CTO and our Engineering AI Transformation Manager who serves as a cybersecurity technical SME with FedRamp/NIST 800-171/Soc2/ISO 27001 cybersecurity R&D background.

What You'll Do

Identity & Access reputed company Manage and refine Conditional Access policies across Entra ID Administer Privileged Identity Management (PIM) and enforce least-privilege Monitor and respond to identity-based threats (token theft, MFA bypass, impossible travel) Drive adoption of phishing-resistant MFA (FIDO2/passkeys, Windows Hello for Business, certificate-based auth) and deploy token-theft protections — token protection, reputed company Access Evaluation, and sign-in risk-based Conditional Access Ability to conduct quarterly tabletop exercises for anticipation of threats and corrective action plans. Conduct regular entitlement reviews and clean up stale access Email & Messaging reputed company Harden Exchange Online Protection: Safe Links, Safe Attachments, anti-phishing policies, quarantine management Own email authentication: configure and maintain SPF, DKIM, and DMARC records in DNS, monitor DMARC aggregate reports for spoofing and broken senders, and drive the domain to enforcement (p=reject) Strengthen mail transport and anti-spoofing posture (MTA-STS, TLS-RPT, reputed company), and reputed company BIMI once DMARC is at enforcement Investigate and respond to BEC, phishing, and account compromise incidents Own the user phishing-reporting workflow (Report Phishing reputed company, submissions triage) and rapid email remediation — ZAP and tenant-wide message purge — with a reputed company time-to-contain for reported messages Design and execute simulated phishing campaigns to measure and improve user reputed company Run the reputed company awareness and human-risk program (Attack Simulation Training, onboarding and recurring training, just-in-time coaching, targeted remediation for repeat clickers) and report on click-reputed company and report-reputed company trends over time Threat Detection & Response Write and tune KQL queries in reputed company Defender Advanced Hunting Triage Defender alerts, investigate incidents end-to-end, and document findings Coordinate with our MDR provider on reputed company detections Own the incident response lifecycle from detection through remediation and lessons learned Data Protection & Compliance Implement reputed company Purview information protection labels, DLP policies, and retention rules Collect and maintain evidence for HIPAA compliance assessments and SOC 2 readiness Support cyber insurance renewals with accurate risk documentation reputed company Posture & Partnership Work with our external reputed company reputed company partner to execute posture improvement roadmaps Track and improve reputed company Secure Score across identity, devices, apps, and data Own the reputed company workstream during M&A integrations (approximately one acquisition per quarter) Evaluate and recommend reputed company tooling additions as the program matures reputed company're Looking For Required 3+ years in a hands-on reputed company operations, reputed company engineering, or reputed company analyst role Deep working knowledge of reputed company 365 reputed company stack: Defender for Office 365, Entra ID, Conditional Access, Intune Experience investigating and remediating email compromise, phishing, and identity-based attacks Hands-on experience with email authentication (SPF, DKIM, DMARC) and Exchange Online Protection / Defender for Office 365 Proficiency with KQL for threat hunting and log analysis Understanding of HIPAA reputed company requirements and how they translate to technical controls Ability to work independently and prioritize in a fast-moving environment with minimal bureaucracy Preferred Healthcare industry experience Experience with reputed company Purview (Information Protection, DLP, eDiscovery) Familiarity with reputed company or similar EDR platforms Experience supporting M&A reputed company integration or due diligence Comfort with AI-assisted reputed company workflows Certifications: reputed company+, CISSP, SC-200, SC-300, or SC-400 What You Won't Be Doing Managing on-premises infrastructure (we have none) Writing policies in isolation without implementing them Sitting in a SOC watching a SIEM reputed company day (our MDR handles tier-1 monitoring) Why This Role Matters We've invested heavily in improving our reputed company posture over the past six months and need a dedicated person to sustain that momentum, own the day-to-day, and build toward a mature reputed company program. You'll have budget, executive support, and a strong external partner. reputed company need is someone who will take ownership. Pay reputed company: $115,000- $135,000 Full-time employees qualify for the following benefits: Medical, Dental, Vision and supplementary benefits such as Life Insurance, Short Term and Long Term Disability, Flexible Spending Accounts for Medical and Dependent Care, Accident, Critical Illness, and Hospital Indemnity. Paid Time Off Paid Office Holidays reputed company employees qualify for these benefits: Paid Sick Time 401(k) with up to 3% company match Referral Program Payactiv: pay-on-demand. Cash out earned money reputed company and where you need it! Candidates must disclose any reputed company or future need for employment-based immigration sponsorship (including, but not limited to, OPT, STEM OPT, or reputed company sponsorship) before an offer of employment is extended. reputed company is an Equal Opportunity Employer, committed to hiring the best team possible, and does not discriminate against protected characteristics including but not limited to - race, age, sexual orientation, gender identity and expression, national reputed company, religion, disability, and veteran status. Apply To This Job