Surgical Information Systems, LLC

Security Analyst

Healthcare
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 3-5 years in security operations, network or cloud administration, preferably in healthcare IT or SaaS.
  • Hands-on expertise in incident triage, vulnerability management, and security monitoring.
  • Solid understanding of HIPAA security and privacy requirements.
  • Ability to escalate risks and blockers to management effectively.
  • Strong communication and documentation skills to convey technical details to various stakeholders.
  • Preferred security or cloud certifications (like Security+, CySA+, AZ-500) or commitment to obtain within a year.

Responsibilities

  • Monitor and analyze security alerts and anomalies across various environments.
  • Conduct incident triage, collect evidence, and coordinate response actions.
  • Manage vulnerability remediation and track exceptions with relevant teams.
  • Support identity governance tasks like user and access reviews.
  • Validate security controls and identify gaps for remediation.
  • Assist in audit readiness through documentation and evidence collection.
  • Prepare operational reports detailing security events and remediation efforts.

Benefits

  • Comprehensive medical, vision, dental, and life insurance coverage.
  • Generous vacation and sick leave policy.
  • 401(k) plan with employer matching contributions.
  • Paid holidays throughout the year.
  • Special SIS Cares Day for community involvement.
  • Flexible hybrid or remote work environment based on role needs.
Full Job Description
The Security Analyst owns the day-to-day analytical and coordination workload across security operations, vulnerability management, identity governance, incident response support, audit readiness, and security control monitoring. The role acts as an execution partner to the Security Manager, providing operational depth, disciplined follow-through, and clear escalation. Management retains accountability for security strategy, architecture decisions, material risk acceptance, and executive governance. This role supports the confidentiality, integrity, and availability of systems that process sensitive healthcare information for more than 2,900 ambulatory surgery centers nationwide.

  • Complete work in a thorough and timely manner in accordance with applicable standards, defined plans, budgets, schedules, and risk priorities.
  • Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time.


ESSENTIAL DUTIES/ RESPONSIBILITIES:

  • Monitor, analyze, and triage security alerts, anomalous activity, vulnerabilities, suspicious access, and potential data exposure events across cloud, SaaS, endpoint, network, and identity environments.
  • Conduct initial incident triage and investigation. Collect and preserve relevant evidence, document findings, and coordinate escalation, containment, and remediation activities under established incident response procedures.
  • Coordinate vulnerability prioritization, remediation tracking, exception documentation, and closure validation with IT, DevOps, development, and applicable system owners.
  • Support identity governance activities, including user access reviews, privileged access reviews, MFA and conditional access validation, service account reviews, and termination and offboarding checks.
  • Validate security control coverage and configuration effectiveness, identify gaps, and coordinate with control owners to support timely risk reduction and remediation.
  • Support SOC 2, HITRUST, HIPAA, client security request, and audit readiness activities through evidence collection, control testing support, documentation, and issue follow-up.
  • Prepare clear operational reporting on security events, vulnerabilities, cloud and SaaS risk indicators, incident trends, remediation status, and control coverage.
  • Participate in security reviews of product changes, cloud deployments, vendor integrations, and technical designs by identifying gaps, documenting findings, and escalating material risk to the Security Manager.
  • Prepare concise findings, risk summaries, and remediation recommendations for review by the Security Manager and CISO.
  • Maintain accurate documentation of procedures, investigations, and recurring security operations tasks


SPECIFIC KNOWLEDGE & SKILLS REQUIRED:

  • Three to five years of experience in security operations, systems administration, network administration, cloud administration, or similar technology environments; healthcare IT or SaaS experience preferred.
  • Hands-on experience with security monitoring, incident triage, vulnerability management, log analysis, identity security concepts, cloud security concepts, data protection, and audit support.
  • Working knowledge of HIPAA-related security and privacy expectations, SaaS or healthcare technology environments, third-party risk, and secure handling of sensitive data.
  • Ability to work independently on assigned operational priorities while escalating material risks, blockers, and decisions requiring management direction.
  • Strong written and oral communication and documentation skills, with the ability to translate technical findings into concise risk and remediation summaries for technical and non-technical stakeholders.
  • Perform other duties as assigned.


CERTIFICATIONS:

  • Security, cloud, or incident response certification preferred (such as Security+, CySA+, AZ-500, or GCIH), or ability to achieve a relevant certification within the first year.


BENEFITS:

  • Benefit package including Medical, Vision, Dental, Short Term Disability, Long Term Disability, and Life Insurance
  • Vacation/Sick time
  • 401(k) retirement plan with company match
  • Paid Holidays
  • SIS Cares Day
  • Hybrid or Remote environment depending on the role

About Surgical Information Systems, LLC

Surgical Information Systems, LLC provides perioperative information management systems for hospitals and ambulatory surgery centers. The company offers software solutions for anesthesia documentation, patient tracking, scheduling, and materials management. It also provides consulting, implementation, and training services. Surgical Information Systems, LLC was founded in 1996 and is headquartered in Duluth, Georgia.
Learn more about Surgical Information Systems, LLC
Size
500 employees
Industry
Founded
1996

Similar Jobs

More Jobs at Surgical Information Systems, LLC

  • Surgical Information Systems, LLC
    Security Analyst
    $70K — $95K *
    Charleston, SC 29412 (Charleston County)
    Healthcare
    In-Person
  • Surgical Information Systems, LLC
    Security Analyst
    $70K — $95K *
    Alpharetta, GA 30022 (Fulton County)
    Healthcare
    In-Person
  • Surgical Information Systems, LLC
    Security Analyst
    $70K — $95K *
    Kansas City, MO 64118 (Clay County)
    Healthcare
    In-Person
  • Surgical Information Systems, LLC
    Security Analyst
    $70K — $95K *
    Birmingham, AL 35242 (Shelby County)
    Healthcare
    In-Person
  • Surgical Information Systems, LLC
    Security Analyst
    $70K — $95K *
    Fort Myers, FL 33908 (Lee County)
    Healthcare
    In-Person

More Healthcare Jobs

Find similar Security Analyst jobs: