Security Analyst

Security Analyst

Truveta is the world’s first health provider led data platform with a vision of Saving Lives with Data. Our mission is to enable researchers to find cures faster, empower every clinician to be an expert, and help families make the most informed decisions about their care. Achieving Truveta’ s ambitious vision requires an incredible team of talented and inspired people with a special combination of health, software and big data experience who share our company values.

This position is based out of our headquarters in the Greater Seattle area.  #LI-onsite

Who We Need 

Truveta is rapidly building a talented and diverse team to tackle complex health and technical challenges. Beyond core capabilities, we are seeking problem solvers, passionate and collaborative teammates, and those willing to roll up their sleeves while making a difference. If you are interested in the opportunity to pursue purposeful work, join a mission-driven team, and build a rewarding career while having fun, Truveta may be the perfect fit for you.

This Opportunity 

Success in the healthcare industry is predicated on a foundation of trust. We demonstrate our trustworthiness as stewards of health data through three foundational pillars: security, privacy, and compliance.

The successful candidate will design, implement and support solutions that support the company’s Digital Workplace strategy. They will work on leading edge technologies that help modernize endpoint management by leveraging the cloud to quickly deliver end-user improvements.

Responsibilities

• Identity and Access Management (IAM)
  • Assist with the provisioning, de-provisioning, and modification of user accounts, service principals, and related access rights across various systems and applications.
  • Process access requests through the organization's ticketing system and validate access requirements to ensure the correct levels of access are granted based on business needs and security policies.
  • Communicate effectively with end-users and internal teams to troubleshoot and resolve access-related issues, ensuring minimal disruption to workflows.
  • Perform routine checks and updates on user accounts and service principals access permissions to ensure accuracy and compliance with company policies.
  • Monitor IAM systems for potential issues, unauthorized access attempts, and anomalies.
  • Assist in enforcing IAM policies and procedures to maintain compliance with security standards and regulatory requirements.
  • Escalate complex access issues, policy violations, and security concerns to senior analysts or relevant teams for further investigation and resolution.
  • Maintain accurate records and documentation related to user access and identity management processes.
  • Participate in routine audits and security reviews as required.
    
    
• Incident Response
  • Continuously monitor security alerts and logs within the environment using Microsoft Azure Sentinel and other relevant tools.
  • Perform initial triage of security alerts to assess their severity and potential impact, identifying false positives, benign activities, and legitimate incidents.
  • Execute basic incident handling procedures, leveraging Azure's security tools and features.
  • Document incidents accurately and comprehensively for the analysis and reporting.
  • Support 24/7 on-call rotations as needed to respond to urgent issues, incidents, or critical escalations.
  • Escalate complex or high-priority incidents to senior analysts and specialized teams, ensuring that response times and quality meet organizational standards.
  • Participate in regular security awareness and incident response training sessions to stay informed of evolving security threats, tools, and best practices.
  • Collaborate effectively with team members and other departments to support a cohesive security posture.

Key Qualifications: 

• The knowledge, skills and abilities typically acquired through the completion of a Cyber Security bachelor's degree program or equivalent degree in a field of study related to Computer Science, Information Security and Information Systems.
• 1-2 years of experience in a IAM and/or SOC environment with a focus on Azure or related cloud cybersecurity areas.
• Familiarity with Azure cloud, services, architectures, and security features are strongly preferred.
• Familiarity with Azure Entra ID (Azure Active Directory), RBAC and IAM tools are strongly preferred.
• Familiarity with Azure Sentinel, Azure Security Center, and other Azure-native security tools are strongly preferred.
• Basic knowledge of SIEM and SOAR usage for Incident handling and familiarity with on-call.
• Good written, verbal communication and customer facing skills.
• This position requires onsite work at Truveta office in Bellevue, WA.
• Relevant certifications such as Microsoft Certified: Identity and Access Administrator Associate, Azure Security Engineer Associate, CySA+, Sec+, CISSP, GCIH, GIAC GCIH, GCIA or CEH are strongly preferred.

Why Truveta?

Be a part of building something special. Now is the perfect time to join Truveta. We have strong, established leadership with decades of success. We are well-funded. We are building a culture that prioritizes people and their passions across personal, professional, and everything in between. Join us as we build an amazing company together.

We Offer:

• Interesting and meaningful work for every career stage
• Great benefits package
• Comprehensive benefits with strong medical, dental and vision insurance plans
• 401K plan
• Professional development & training opportunities for continuous learning
• Work/life autonomy via flexible work hours and flexible paid time off
• Generous parental leave
• Regular team activities (virtual and in-person as soon as we are able)
• The base pay for this position is $75,000 to $90,000. The pay range reflects the minimum and maximum target. Pay is based on several factors including location and may vary depending on job-related knowledge, skills, and experience. Certain roles are eligible for additional compensation such as incentive pay and stock options.

If you are based in California, we encourage you to read this important information for California residents linked here.

Truveta is committed to creating a diverse, inclusive, and empowering workplace. We believe that having employees, interns, and contractors with diverse backgrounds enables Truveta to better meet our mission and serve patients and health communities around the world. We recognize that opportunities in technology historically excluded and continue to disproportionately exclude Black and Indigenous people, people of color, people from working class backgrounds, people with disabilities, and LGBTQIA+ people. We strongly encourage individuals with these identities to apply even if you don’t meet all of the requirements.