Centauri Health Solutions

Compensation

Full Description

Centauri Health Solutions provides technology and technology-enabled services to payors and providers across all healthcare programs, including Medicare, Medicaid, Commercial and Exchange. In partnership with our clients, we improve the lives and health outcomes of the members and patients we touch through compassionate outreach, sophisticated analytics, clinical data exchange capabilities, and data-driven solutions. Our solutions directly address complex problems such as uncompensated care within health systems; appropriate, risk-adjusted revenue for specialized sub-populations; and improve access to and quality of care measurement. Headquartered in Scottsdale, Ariz., Centauri Health Solutions employs 1700 dedicated associates across the country. Centauri has made the prestigious Inc. 5000 list since 2019, as well as the 2020 Deloitte Technology Fast 500™ list of the fastest-growing companies in the U.S. For more information, visit www.centaurihs.com. Role Overview: The IT Security & Compliance Specialist assists Information Technology Security and Compliance in providing internal control testing, auditing, monitoring, risk management, and mitigation. This role will work to identify risk and ensure compliance with industry standards, relevant laws and regulations, and industry best practices. The position also assists in maintaining and developing appropriate policies, procedures, and documentation to maintain compliance with client and regulatory requirements. Reviews and evaluates compliance issues and concerns within the organization. Monitors for IT Security threats and provides preventative support and remediation to developing threats. Determines and implements improvements in current risk management controls, system changes or upgrades. Role Responsibilities: Intelligence & Reporting • Manage and maintain SIEM, SOAR, and Endpoint protection platforms. • Conduct intelligence gathering, analysis, and reporting to identify risks and trends. • Develop and deliver actionable intelligence reports for leadership, covering security events, compliance concerns, performance trends, usage patterns, and vulnerabilities, with recommendations and potential engineering solutions for remediation and improvement. Compliance Audits: • Perform internal audits to ensure policies and procedures are being followed appropriately • Produce evidence to satisfy client and regulatory compliance audits • Work with Information Technology Security and Compliance to ensure compliance and successful completion of audits such as SOC2 and HITRUST Information Technology Security: • Develop and maintains relationships with vendors and cybersecurity organizations to remain apprised of new and developing cybersecurity threats • Maintain and operate Centauri’s endpoint security platforms • Coordinate with Infrastructure Technology to provide awareness of vulnerabilities and cybersecurity threats; and assists with remediation and implementation of system updates or architecture changes as needed. Business Support: • Recommend and manage improvements to policies, procedures, operational efficiency, and controls. • Provide technical support across network operations, IT infrastructure services, and end-user environments as needed. • Monitor and manage end-user and client service delivery for all IT functions within the Centauri Network. • Deliver cross-platform support for Microsoft, macOS, and Linux environments. • Support and assist with virtualization and containerization solutions management. • Participate in the compliance review, design, and ongoing maintenance of monitoring and alerting solutions for network, IT infrastructure, and service desk operations. • Assist with evidence gathering, remediation activities, and technical responses during industry compliance and client audits. • Other duties as assigned Role Requirements: • BS, Computer Science, Information Systems Management, equivalent experience. • Industry certifications like CISA, CISSP, Security+ are preferred. • 3–5 years of professional experience in Security Compliance, IT Audit, IT Operations, or IT Risk Management. • 1–2 years of experience participating in HIPAA, HITRUST, SOC 2, or related audits and certifications. • 1–2 years of experience designing, implementing, and administering complex enterprise infrastructures. • 1–2 years of experience managing enterprise SIEM logging, SOAR automation, and cloud, network, and endpoint security protection. • Knowledge of security frameworks (NIST, HITRUST, HITECH). • Knowledge of compliance audit process (SOC, HITRUST, HIPAA). • Strong expertise with endpoint protection (e.g., CrowdStrike) and SIEM/SOAR (e.q., Sumo Logic). • Knowledge of cloud-based infrastructure security. • Proficiency in administering and supporting Microsoft Windows, Linux, and endpoint security management. We believe strongly in providing employees a rewarding work environment in which to grow, excel and achieve personal as well as professional goals. We offer our employees competitive compensation and a comprehensive benefits package that includes generous paid time off, a matching 401(k) program, tuition reimbursement, annual salary reviews, a comprehensive health plan, the opportunity to participate in volunteer activities on company time, and development opportunities. This position is bonus eligible in accordance with the terms of the Company’s plan. Centauri currently maintains a policy that requires several in-person and hybrid office workers to be fully vaccinated. New employees in the mentioned categories may require proof of vaccination by their start date. The Company is an equal opportunity employer and will provide reasonable accommodation to those unable to be vaccinated where it is not an undue hardship to the company to do so as provided under federal, state, and local law. Factors which may affect starting pay within this range may include geography/market, skills, education, experience and other qualifications of the successful candidate. This position is bonus eligible in accordance with the terms of the Company’s plan.