Security Analyst

Job Category: Technology and IT
Job Type: Remote
Job Location: United States
Salary: $100K/yr - $120K/yr
Company Name: SimplePractice

The Role

We’re seeking a detail-oriented and proactive Security Analyst to join our growing security team. This role is key to protecting our AWS-hosted healthcare SaaS platform, ensuring the confidentiality, integrity, and availability of sensitive health data. The ideal candidate will bring expertise in defensive security operations, compliance, and risk management to help us deliver secure, reliable healthcare solutions.

Responsibilities

Blue Team Operations & Incident Response

  • Monitor and respond to security alerts, perform root cause analyses, and implement corrective actions
  • Refine incident response playbooks and plans with the security team
  • Use SIEM tools to detect, investigate, and analyze threats
  • Conduct vulnerability assessments and oversee remediation efforts
  • Proactively hunt for potential threats to mitigate risks

Governance, Risk, and Compliance (GRC)

  • Develop and maintain security policies, standards, and procedures aligned with HIPAA, HITRUST, and PCI
  • Conduct risk assessments and ensure controls are effective
  • Support internal stakeholders with compliance requirements and audits
  • Prepare and manage audit documentation, including evidence collection and control mapping

Third-Party Risk Management

  • Assess and monitor vendors for compliance with security standards
  • Collaborate with procurement and legal on vendor contracts
  • Maintain an up-to-date vendor risk inventory and use ratings services for continuous evaluation

Security Awareness & Training

  • Develop and deliver security awareness programs
  • Foster a culture of security awareness across the organization

Monitoring & Reporting

  • Produce reports on incidents, metrics, and compliance for leadership
  • Stay current on emerging threats and recommend proactive measures

Desired Skills & Experience

  • Bachelor’s degree in Information Security, Computer Science, or related field
  • 3+ years in security analysis, GRC, or similar role in cloud environments
  • Proficiency with SIEM tools and security investigations
  • Knowledge of HIPAA, HITRUST, PCI compliance frameworks
  • Experience with risk assessment tools and methodologies
  • Familiarity with AWS security best practices and Infrastructure as Code (IaC)
  • Strong analytical, problem-solving, and communication skills
  • Ability to work collaboratively in fast-paced, agile teams

Bonus Points

  • Certifications such as CISA, CISM, CRISC highly desirable

Compensation & Benefits

Base Salary: $100,000 – $120,000 annually (plus potential bonus/commission)
Benefits include:

  • Medical, dental, vision, life & disability insurance
  • 401(k) with company match
  • Flexible Time Off (FTO), wellbeing days, paid holidays, summer Fridays
  • Mental health resources
  • Paid parental leave & backup care
  • Tuition reimbursement
  • Employee Resource Groups (ERGs)

Privacy Notice

By submitting your application, you agree to the SimplePractice California Job Applicant Privacy Notice. For details, contact us at privacy@simplepractice.com.

APPLY

Apply for this position

Allowed Type(s): .pdf, .doc, .docx