Note: The job is a remote job and is open to candidates in USA. Sentara Health is hiring for a Cybersecurity Analyst to join their team. This fully remote position focuses on incident response and protecting sensitive patient data by detecting and responding to cybersecurity threats, while ensuring compliance with healthcare regulations.
Responsibilities
- Monitor all platforms for security incidents
- Lead and support incident response efforts—from identification and analysis to containment, eradication, and recovery—with a focus on safeguarding Protected Health Information (PHI) and ensuring minimal impact to patient care
- Analyze logs, forensic data, and network traffic across a complex healthcare IT environment
- Help to develop and tune SIEM correlation rules and alerting to detect threats
- Serve as part of a 24/7 on-call rotation, responding rapidly to incidents and escalations as they arise, including after-hours and weekends
- Ensure incident handling aligns with HIPAA and other relevant regulations; participate in incident debriefs and continuous improvement initiatives
- Collaborate with clinical, IT, compliance, and third-party vendors to assess risk and remediate vulnerabilities across critical systems and devices
- Document incident response actions in detail, maintaining records for legal, compliance, and audit purposes
- Participate in healthcare-specific threat hunting, vulnerability assessments, and security exercises to strengthen organizational resilience
- Maintain current knowledge of emerging cyber threats, vulnerabilities, and regulatory changes that could impact healthcare operations
Skills
- Bachelor's degree in Cybersecurity, Computer Science, IT, or a related field; or equivalent experience
- 3+ years of experience in a SOC, incident response, or health IT cybersecurity role
- Proven experience with EDR tools and SIEM solutions, with preference for healthcare environments
- Familiarity with HIPAA and healthcare risk management practices
- Strong communication, teamwork, and documentation skills; able to communicate effectively with technical and clinical stakeholders
- Availability to participate in a 24/7 on-call rotation and respond to security incidents outside of standard business hours
- 3 years of relevant experience with a degree (Required) or 5+ years of relevant experience without a degree (Required)
- Experience in lieu of Bachelor's Degree
- 3 to 5+ years of relevant experience
- Relevant certifications (CISSP, CEH) are preferred
Benefits
- Medical, Dental, Vision plans
- Adoption, Fertility and Surrogacy Reimbursement up to $10,000
- Paid Time Off and Sick Leave
- Paid Parental & Family Caregiver Leave
- Emergency Backup Care
- Long-Term, Short-Term Disability, and Critical Illness plans
- Life Insurance
- 401k/403B with Employer Match
- Tuition Assistance – $5,250/year and discounted educational opportunities through Guild Education
- Student Debt Pay Down – $10,000
- Reimbursement for certifications and free access to complete CEUs and professional development
- Pet Insurance
- Legal Resources Plan
- Colleagues have the opportunity to earn an annual discretionary bonus if established system and employee eligibility criteria is met.
Company Overview