What are the responsibilities and job description for the Red Team Analyst position at eClinicalWorks?
Description
We are eClinicalWorks. We are a privately held leader in healthcare IT, providing comprehensive, cloud-based EHR/PRM solutions to medical professionals worldwide to improve workflows and reduce the risk of physician burnout.
We care. We are committed to positive change. And that’s where you come in. Do you value creativity and innovation? Great, so do we. At eClinicalWorks, we share a passion for improving healthcare through dedication, education, and teamwork. Everyone has that one thing they’re really good at. We value your talent and want you to join our fast-paced, fun, and culturally diverse environment. Ready to make a difference? Apply today.
Responsibilities:
Review and evaluate results of third-party penetration test report(s)
Review and provide a periodic assessment based on current threat trends of organizational cyber risks
Provide recommendations to improve cyber risk reporting and aggregation across operating units.
Take responsibilities in cyber security initiatives, policy, risk assessments and mitigation controls.
Work with third party security service providers to address strategic cyber security initiatives
Network, and endpoint remediation assistance.
Recommendations and guidance for enforcing security controls to harden systems.
Regular status reporting and project management-related activities.
Required Skills:
4 years of experience with:
- Red Team. (Or, 2 years of experience on a Red Team plus Offensive Security Pen Testing experience.)
- Offensive pen testing experience.
- Performing application security assessments based on OWASP top 10.
- Windows and Linux operating systems.
- Software exploitation such as web, client-server, mobile and wireless on other modern operating systems.
- Interpreting log output from networking devices, operating systems and infrastructure services.
- Common reconnaissance, exploitation, and post exploitation frameworks and Cybersecurity Monitoring, Cybersecurity Threat Intelligence and Threat Hunting.
- Python
OSCP certification nice to have.
eClinicalWorks is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills, and experiences that bring us together and help create a healthy world
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)