Manage vendor security intakes and assessments, evaluating new vendors against our security requirements and maintaining the vendor inventory.
Administer IAM (identity and access management) across company systems, including user provisioning, access reviews, and role management.
Complete client security questionnaire responses, maintaining security documentation, policies, and procedures while supporting preparation and remediation tracking.
Qualified Health is redefining what’s possible with Generative AI in healthcare. They provide the infrastructure for safe AI governance, healthcare-specific agent creation, and real-time algorithm monitoring, working alongside leading health systems to drive real change. This is a fast-growing company.
Processes user access requests, including provisioning, deprovisioning, and modifications, based on control policies and employee status.
Identifies and resolves access issues, ensuring alignment with security policies and regulatory standards.
Conducts regular access reviews to validate appropriate user access and remove outdated access.
US Anesthesia Partners is the highest-quality single-specialty anesthesia practice in the United States. They have over 6,000 employees distributed across 10 states and their clinical and non-clinical staff support each other as they work toward a common vision: Empowering people to advance exceptional care.
Support CapIntel’s Governance, Risk, and Compliance program
Manage third-party risk and customer security reviews
Support operational security, privacy, and security awareness initiatives
CapIntel is a software platform built for wealth management enterprises to help financial advisors explain complex investment strategies to their clients. Since launching in 2019, CapIntel has seen rapid adoption and industry recognition, earning top placements in Deloitte’s Technology Fast 50 Canada and Fast 500 North America in 2025, ranking us among the fastest -growing technology companies.
Collaborate with the engineering departments to implement security controls from approved security frameworks and drive best IT practices.
Interface with internal partner teams to help drive best practices and compliance.
Evaluate and perform Risk Assessments of new software solutions with internal partners.
Judi Health is an enterprise health technology company providing a comprehensive suite of solutions for employers and health plans. They consolidate all claim administration-related workflows in one scalable, secure platform and are working with clients, rebuilding trust in healthcare in the U.S.
Enhances the strategic pillars of a security compliance program and facilitate day-to-day compliance operations.
Involved in multiple areas of the business where compliance and security impact operations.
Works on assignments that are complex and require professional skepticism, judgment, initiative, and knowledge of SaaS Company positions.
Optro is the leading audit, risk, ESG, and InfoSec platform on the market, surpassing $300M ARR and continuing to grow. More than 50% of the Fortune 500 leverage their award-winning technology. They inspire each other to innovate and are proud of what they are producing.
Independently manages day-to-day security operations, including threat monitoring and incident triage.
Conducts systematic reviews of system logs and security alerts to uncover root causes.
Owns the execution of recurring compliance tasks and audits, ensuring workflows meet data protection and regulatory requirements.
Garner Health aims to transform the healthcare economy by delivering high-quality and affordable care. They partner with employers to redesign healthcare benefits using incentives and data-driven insights, guiding employees to better care at lower costs. They are one of the fastest-growing healthcare technology companies.
Maintain documentation for ISO/IEC 27001 & ISO/IEC 42001; improve activities.
Extract security requirements from client MSAs; identify gaps and risks.
Coordinate internal and client audit requests; collect evidence.
Avalere Health's mission is to ensure every patient is identified, treated, supported, and cared for. They bring Advisory, Medical, and Marketing teams together to forge unconventional connections, building a future where healthcare is not a barrier and no patient is left behind.
Oversee third-party and internal risk assessments to support enterprise information security and governance, risk, and compliance (GRC) initiatives.
Manage vendor due diligence, maintains an accurate risk register, partners with internal stakeholders on mitigation strategies.
Drive continuous improvement of the risk and compliance framework.
Concorde Career Colleges is committed to a policy of Equal Employment Opportunity and will not discriminate against an applicant or employee based on race, color, religion, religious creed, national origin, ancestry, sex, age, veteran or military status, or any other legally protected characteristic. Concorde Career Colleges offer short career-focused programs preparing students for the healthcare industry.
Plays a key role in safeguarding the company’s cloud-based healthcare SaaS platforms, infrastructure, and customer data.
Responsible for designing, implementing, and managing enterprise-grade security solutions that align with regulatory frameworks such as HIPAA, HITRUST, SOC 2, and NIST 800-53.
Hands-on technologist with deep knowledge of cloud security (AWS/Azure), DevSecOps practices, endpoint protection, identity management, and security automation.
Reveleer provides cloud-based healthcare SaaS platforms. Reveleer is an equal opportunity employer and E-Verifies all new hires.
Conduct structured interviews with partner organizations, operational teams, and technical stakeholders.
Documents end‑to‑end operational workflows and surface implicit, non‑documented practices.
Identify workflow fragility zones, handoff risks, and transition‑period vulnerabilities.
Element serves as a partner at the intersection of innovation and our clients' needs, efficiently crafting meaningful user experiences for government and commercial customers. Our talented professionals bring unparalleled energy engagement, setting a higher standard for impactful work.
Monitor and validate Kubernetes and data lake deployments for compliance.
Maintain continuous monitoring dashboards and conduct vulnerability scans.
Prepare and update system security documentation.
Founded in 1989, SOSi is among the largest private, founder-owned technology and services integrators in the defense and government services industry. They deliver tailored solutions, tested leadership, and trusted results to enable national security missions worldwide.
Act as a gatekeeper for sensitive access and firewall rule approvals, ensuring compliance with security policies and business needs.
Conduct regular reviews of access permissions, firewall configurations, and IT infrastructure settings to ensure adherence to security best practices and expectations.
Oversee the vulnerability management process for our entire infrastructure, ensuring timely identification, prioritization, and mitigation of vulnerabilities.
Eurofins Scientific is an international life sciences company, providing a unique range of analytical testing services to clients across multiple industries, to make life and our environment safer, healthier and more sustainable. With over 63,000 staff across a decentralized and entrepreneurial network of more than 950 laboratories in over 1,000 companies across 60 countries, Eurofins is dedicated to delivering testing services.
Own and evolve the GRC program in partnership with Legal and our CCO.
Develop, maintain, and enforce clear, practical security policies across all departments.
Develop and execute a comprehensive information security roadmap aligned with business objectives.
Allocate is a fintech company handling sensitive investor data and financial transactions. They are a rapidly growing organization that values client service, relentless problem-solving, and continuous improvement.
Perform GRC functions and maintain the Cyber Security Risk register.
Execute third party risk processes for cyber and perform/execute on awareness programs and phishing processes.
Liaise with the vendor management (VM) team to conduct security assessments of existing and prospective vendors.
Warner Music Group is a global collective of music makers and music lovers, tech innovators and inspired entrepreneurs, game-changing creatives and passionate team members. They turn dreams into stardom and audiences into fans. WMG is committed to creating a work environment that actively values, appreciates, and respects everyone and encourages applications from people with a wide variety of backgrounds and experiences.
Partner with engineering to drive technical implementation of controls throughout the product and infrastructure
Design, implement, and continuously improve security controls across AWS infrastructure and application architecture
Enhance and tune monitoring and detection capabilities in support of customer security and incident response capabilities
AlertMedia helps organizations protect their people and businesses through all phases of an emergency. Their award-winning threat intelligence, emergency communication, and travel risk management solutions help companies of all sizes identify, respond to, and recover from critical events faster and more confidently. They support essential communication for thousands of leading businesses in more than 150 countries.
Manage and influence both physical and cyber security risk.
Support the development and execution of the information security strategy.
Oversee day-to-day security operations including monitoring and incident response.
Jobgether uses an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Their system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company.
Own and evolve MHN’s enterprise security strategy aligned with business goals and healthcare regulatory requirements.
Lead security architecture and controls within Microsoft Azure, including identity and access management, network security, encryption, logging, and monitoring.
Develop and oversee security risk assessments, threat modeling, and vulnerability management programs.
Medical Home Network (MHN) partners with Federally Qualified Health Centers (FQHCs) nationwide to transform care in the safety net, reduce health disparities, and build healthier communities. It is a mission-driven public benefit corporation that helps FQHCs succeed in value-based care through technology, care model innovation, and strong partnerships.
Own and continuously improve Docker's Identity and Access Management infrastructure.
Discover, map inventory and conduct security reviews on third-party integrations.
Secure and harden core collaboration as well as documentation platforms.
Docker makes app development easier so developers can focus on what matters. They are a remote-first team spanning the globe, united by a passion for innovation and great developer experiences, with over 20 million monthly users and 20 billion image pulls.