Cybersecurity Analyst - Remote

City/State

Work Shift

Overview:

This position is fully remote!

Responsible for day-to-day support and optimization of software applications, including builds, upgrades, and system enhancements. Analyzes business / clinical needs, evaluate software releases and/or new products, and gives recommendations to optimize processes and decrease expenses. Possesses in-depth business / clinical and application knowledge and experience. Performs and documents workflow assessments to determine functional requirements for optimal utilization of applications. Develops system test plans and performs testing of software upgrades and patches. Maintains a record of test progress and test results. Responsible for problem, incident, and change management and service requests. Provides daily on-call support to the customer base for application-related issues. Works within a cross-functional team and with end-users to achieve application integration to meet business / clinical needs. Responsible for the communication of software issues, requirements, upgrades, and enhancements. Oversees smaller-sized projects or components of projects. Coordinates implementation or project planning around software application releases. Possesses a key certification(s) or other credential(s) which is determined central to the systems or applications supported.
An Experienced Professional applies practical knowledge of job areas typically obtained through advanced education and work experience.

Responsibilities typically include:

• Works independently with general supervision.

• Problems faced are difficult but typically not complex.

• May influence others within the job area through explanation of facts, policies, and practices.
 

Position Summary:
Our Cybersecurity Analyst role specializes in incident response, Endpoint Detection & Response (EDR), and Security Information and Event Management (SIEM). In this critical role, you will help protect sensitive patient and organizational data by proactively detecting, analyzing, and responding to cybersecurity threats, while ensuring compliance with HIPAA and other healthcare regulations. This position requires participation in a 24/7 on-call rotation to respond promptly to security incidents.

Key Responsibilities:

• Monitor all platforms for security incidents
• Lead and support incident response efforts—from identification and analysis to containment, eradication, and recovery—with a focus on safeguarding Protected Health Information (PHI) and ensuring minimal impact to patient care.
• Analyze logs, forensic data, and network traffic across a complex healthcare IT environment
• Help to develop and tune SIEM correlation rules and alerting to detect threats.
• Serve as part of a 24/7 on-call rotation, responding rapidly to incidents and escalations as they arise, including after-hours and weekends.
• Ensure incident handling aligns with HIPAA and other relevant regulations; participate in incident debriefs and continuous improvement initiatives.
• Collaborate with clinical, IT, compliance, and third-party vendors to assess risk and remediate vulnerabilities across critical systems and devices.
• Document incident response actions in detail, maintaining records for legal, compliance, and audit purposes.
• Participate in healthcare-specific threat hunting, vulnerability assessments, and security exercises to strengthen organizational resilience.
• Maintain current knowledge of emerging cyber threats, vulnerabilities, and regulatory changes that could impact healthcare operations.

Required Skills and Qualifications:

• Bachelor’s degree in Cybersecurity, Computer Science, IT, or a related field; or equivalent experience.
• 3+ years of experience in a SOC, incident response, or health IT cybersecurity role.
• Proven experience with EDR tools and SIEM solutions, with preference for healthcare environments.
• Familiarity with HIPAA and healthcare risk management practices.
• Strong communication, teamwork, and documentation skills; able to communicate effectively with technical and clinical stakeholders.
• Availability to participate in a 24/7 on-call rotation and respond to security incidents outside of standard business hours.

• 3 years of relevant experience with a degree  (Required)

or

• 5+ years of relevant experience without a degree (Required)
• Experience in lieu of Bachelor’s Degree

• Relevant certifications (CISSP, CEH) are preferred.

• 3 to 5+ years of relevant experience

Talroo-IT, #LI-DS1, #Indeed, #Dice, #Monster

Keywords: Incident response (SOC), end point detection (EDR), cybersecurity analyst, SIEM, CISSP, CEH

Sentara Health is an equal opportunity employer and prides itself on the diversity and inclusiveness of its close to an almost 30,000-member workforce. Diversity, inclusion, and belonging is a guiding principle of the organization to ensure its workforce reflects the communities it serves.

In support of our mission “to improve health every day,” this is a tobacco-free environment.

For positions that are available as remote work, Sentara Health employs associates in the following states:

Alabama, Delaware, Florida, Georgia, Idaho, Indiana, Kansas, Louisiana, Maine, Maryland, Minnesota, Nebraska, Nevada, New Hampshire, North Carolina, North Dakota, Ohio, Oklahoma, Pennsylvania, South Carolina, South Dakota, Tennessee, Texas, Utah, Virginia, Washington, West Virginia, Wisconsin, and Wyoming.