ABOUT THIS POSITION

The Security Analyst/Vulnerability Manager contributes to our Security team by participating in the vulnerability scanning/patch testing processes and incident response activities. Specifically, this position will be responsible for managing the Qualys engine and other vulnerability management tools, ensuring systems are being scanned, producing a quality output including dashboards, working with patching/remediation teams to identify false positives and correct patching/mitigation activities.

What is the purpose of this position?

The Security Analyst/Vulnerability Manger contributes to our Security team by participating in the vulnerability scanning/patch testing processes and incident response activities. Specifically, this position will be responsible for managing the Qualys engine and other vulnerability management tools, ensuring systems are being scanned, producing a quality output including dashboards, working with patching/remediation teams to identify false positives and correct patching/mitigation activities.

WHAT YOU'LL DO

• Conducting regular vulnerability review and scans to identify potential security weaknesses within Waystar’s digital infrastructure.
• Analyzing and interpreting vulnerability scan results to determine the risk and impact on the organization.
• Assist in any investigative activities related to findings from scan activity
• Providing detailed reports and metrics on vulnerability management activities to leadership and impacted teams.
• Collaborating with development and IT teams to validate and remediate identified vulnerabilities.
• Keeping up-to-date with the latest vulnerability disclosures, security threats, and trends.
• Assisting in the creation and maintenance of security documentation, including policies, procedures, and guidelines.

WHAT YOU'LL NEED

Do you fit our team?

• Experience with vulnerability assessment tools (Qualys) and security information and event management (SIEM) tools.
• Has a basic knowledge of information systems and their administration (Windows, Linux, VMWare)
• Knowledge of cloud security best practices and healthcare data privacy regulations (HIPAA, etc.) or related industries.
• Experience assessing security for cloud platforms (SaaS, PaaS, IaaS).
• Experience in network / OS / database system security administration.
• Strong analytical skills with the ability to assess and prioritize vulnerabilities
• Possesses strong communications skills, both written and oral
• Be willing to collaborate with other teams in a positive manner
• Bachelor’s degree in related field or equivalent work experience

Preferred Skills:

• At least one year of related IT or Security work experience is preferred
• A basic knowledge of Security tools, such as vulnerability scanners, application scanners, SIEM, FIM, IDS/IPS, & AV, etc. is preferred
• Experience in system patching and/or vulnerability management is preferred
• Experience working in an environment with audit and regulatory compliance requirements is preferred                                                                            
• Experience working as part of an Incident Response team is preferred
• Cyber certifications such as CISSP, CISM and GIAC

WAYSTAR PERKS

• Competitive total rewards (base salary + bonus, if applicable)
• Customizable benefits package (3 medical plans with Health Saving Account company match)
• Generous paid time off starting at 3 weeks + 13 paid holidays including 2 personal floating holidays
• Paid parental leave (including maternity + paternity leave)
• Education assistance opportunities and free LinkedIn Learning access
• Free mental health and family planning programs, including adoption assistance and fertility support
• 401(K) program with company match
• Pet insurance
• Employee resource groups

Waystar is proud to be an equal opportunity workplace. We celebrate, value, and support diversity and inclusion. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, marital status, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

This applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.