Security Audit Analyst

Matrix Medical Network

5d•$135,000•Remote

About The Position

The Security Audit Analyst supports Matrix Medical Network’s IT Security and Risk program by performing audits, enforcing policy compliance, and conducting vulnerability assessments. This role plays a key part in entitlement reviews and helps identify opportunities to automate user provisioning, deprovisioning, and access review processes. The analyst will collaborate closely with peers across Information Security, IT Infrastructure, and Business Operations to promote and uphold Matrix’s information security policies, ensuring the effectiveness of security controls. The ideal candidate demonstrates a strong understanding of IT systems, cybersecurity principles, and healthcare compliance, with a keen eye for process improvement and risk mitigation.

Requirements

Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field.
2–4 years of experience in information security or IT infrastructure within a HIPAA-regulated organization.
2–4 years of experience in a cloud environment (preferably Azure) with a strong understanding of related compliance requirements.
Working knowledge of HIPAA Security and Privacy Rules and industry security frameworks (e.g., HITRUST, NIST).
Proficiency in Microsoft Excel for reporting and analysis.
Strong written and verbal communication skills with the ability to convey technical concepts in business-friendly terms.
Proven ability to work independently in a remote environment and collaborate effectively with cross-functional teams.
Strong analytical, organizational, and prioritization skills.
Ability to maintain confidentiality and adhere to data privacy requirements.

Nice To Haves

2+ years of experience in information security auditing preferred.
Industry certifications such as CISSP, Security+, or ISACA credentials preferred.
Familiarity with vulnerability scanning tools and Active Directory preferred.
Experience working in highly regulated environments (healthcare or financial services) is a plus.

Responsibilities

Respond to internal and external inquiries regarding Matrix’s security program, including Client Security Questionnaires, HITRUST CSF Audits, and other regulatory requests.
Conduct and document entitlement reviews, inactivity audits, and other recurring validation activities.
Administer and maintain Identity and Access Management (IAM) tools.
Maintain and enhance audit and control processes to ensure compliance and operational efficiency.
Verify the integrity and effectiveness of Security Operations procedures and IT security controls.
Identify deviations from policies and procedures; communicate critical security control gaps to management.
Analyze vulnerability scan reports and validate the severity of identified issues.
Support continuous improvement of Security Operations processes through innovation, collaboration, and automation.
Perform additional duties as assigned.