About Crossover Health
Crossover Health is creating the future of health as it should be. A national, team-based medical group with a focus on wellbeing and prevention that extends beyond traditional sick care, the company delivers an entirely new model of healthcare—Primary Health—built on the foundation of trusted relationships, an interdisciplinary care team approach, and outcomes-based payment. Crossover’s Primary Health model integrates primary care, physical medicine, mental health, health coaching, care navigation and more, and delivers care in surround-sound—in-person, virtually and via asynchronous messaging. Together we are building a community of members that embraces healthcare as a proactive part of their lifestyle.
Detect and respond to security events and threats from alerting (Endpoint protection, SIEM, IDS, FIM, Phishing, etc.), escalations, and other sources
Lead complex investigations and conduct deep analysis of security incidents focused on rapid containment, remediation, and mitigation
Understand the threat landscape, emerging trends, and incorporate this into day-to-day security monitoring to drive continuous improvement
Provide high quality written and verbal reports as required
Conduct vulnerability scans and work with engineering to prioritize and remediate identified vulnerabilities within SLA windows
Proactively identify and work to address security gaps across the enterprise
Support compliance and customer audit requests such as SOC2
Provide technical guidance and security reviews to external departments on the development and implementation of new tools and processes
Performs other duties as assigned
2+ Years of experience in an Information Security role
Prior experience working as a SOC Analyst or Incident Responder
Familiarity with security monitoring tools including EDR, SIEM, IDS & FIM solutions
Knowledge of industry standard scoring models such as CVSS
Proficient in analyzing and validating scan results, knowledge of OWASP Top 10 and SANS Top 25 and how to effectively remediate vulnerabilities associated with each
Effective verbal and written communication skills to speak across multiple audiences
Working knowledge of information security testing and assessment tools
Demonstrated excellence in organizing, prioritizing, and multitasking in a high paced environment
Continuously sought and embraced opportunities to build upon your skills and knowledge
Ability to work independently, as well as in a team environment
Strong organizational and problem solving skills
Available to work after hours and weekends as needed
Experience developing or providing content for Security Awareness Training
Experience reviewing, procuring and implementing security solutions and tools
Experience conducting security audits, compliance audits, or vendor reviews
Prior experience with HIPAA regulations and clinical environments
Experience working in a “scale-up” environment
Security related certifications, such as CISSP, GCIA, GCIH, and/or other professional certification
Physical Job Requirements
May require standing, walking and sitting for extended amounts of time.
Occasionally lift and carry items weighing up to 50 lbs.
Manual and finger dexterity and hand-eye coordination
Includes full range of body motion.
Requires corrected vision, hearing and speech within normal ranges. Must be able to effectively communicate with team members.
To all recruitment agencies: We do not accept unsolicited agency resumes and are not responsible for any fees related to unsolicited resumes.#LI-Remote