Security Analyst

Summary

Join Clover's engineering team as a Security Analyst and play a crucial role in securing our systems and data. You will collaborate with internal and external teams to develop and implement security policies, procedures, and operationalize security applications. This position requires strong operational, risk, and compliance experience, along with a deep understanding of cybersecurity frameworks and standards. You will be responsible for incident response, risk assessments, audits, and serving as a security point-of-contact for various certification programs. If you are passionate about healthcare technology and possess a proactive, problem-solving approach, this is the ideal opportunity for you. Clover offers a comprehensive benefits package including competitive salary, equity, performance-based bonuses, comprehensive health coverage, mental well-being initiatives, remote work flexibility, paid parental leave, and professional development opportunities.

Requirements

• 1+ years of experience in a security role with priority operations, risk and/or compliance
• Good knowledge of cybersecurity frameworks and standards (e.g., NIST, ISO, CIS)
• Familiarity with security tools such as EDR, DLP, Vulnerability Management, and CSPM systems
• Familiarity with log analysis, SIEM systems and network traffic monitoring
• Good understanding of IAM/PAM concepts and tools
• Ability to write, review, and update security policies, and procedure documentation
• Excellent written and verbal communication skills and are able to craft clear and comprehensive reports and research to present to engineering and other stakeholders
• Stay up-to-date with the latest research on threats, attack vectors, and security trends and are keen to apply them to our environment

Responsibilities

• Operationalize, configure, and monitor security applications such as EDR, DLP, Vulnerability Management, and CSPM systems
• Assist with incident response activities, including tabletop exercises
• Support the implementation and maintenance of GRC frameworks
• Assist in internal risk assessments and audits to ensure adherence with security policies
• Serve as security point-of-contact for audit/certification programs such as HITRUST, SOC 2, and HIPAA
• Assess and improve systems for compliance with security requirements, policies, guidelines and standards
• Interface with external customers on CA security reviews and assessments
• Participate in security awareness and training programs to promote security-first mindset across the organization

Preferred Qualifications

• Passionate about transforming healthcare delivery through new technologies and want to make an impact
• Bias toward action and seek to intervene before issues arise
• Comfortable navigating ambiguity and working in an evolving environment
• Problem solver and a team player. Love working within teams and helping them work more efficiently
• Strong communicator and able to influence behaviors to help drive desired outcomes
• Empathetic and seek to build enduring relationships with our customers and users
• Analytical and use data to drive actions and evaluate outcomes

Benefits

• Competitive base salary and equity opportunities
• Performance-based bonus program and regular compensation reviews
• Comprehensive group medical coverage that include coverage for hospitalization, outpatient care, optical services, and dental benefits
• Initiatives such as No-Meeting Fridays, company holidays, access to mental health resources, and a generous annual leave policy
• Remote-first culture that supports collaboration and flexibility
• Learning programs, mentorship, professional development funding, and regular performance feedback and reviews
• Reimbursement for office setup expenses
• Monthly cell phone & internet stipend
• Flexibility to work from home, enabling collaboration with global teams
• Paid parental leave for all new parents