Navitus

Navitus - Putting People First in Pharmacy - Navitus was founded as an alternative to traditional pharmacy benefit manager (PBM) models. We are committed to removing cost from the drug supply chain to make medications more affordable for the people who need them. At Navitus, our team members work in an environment that celebrates diversity, fosters creativity and encourages growth. We welcome new ideas and share a passion for excellent service to our customers and each other.

USD $82,586.00 - USD $101,332.00 /Yr.

M-F 8am to 5pm

Due to growth, we are adding an IT Security Analyst to our IT Security, Networking & Government department.  

 

The IT Security Analyst is a specialized role that leverages the experience of a Networking Admin, a System Admin, and an Information Security Analyst to secure the organization against threats and risks.    

 

As a member of the Information Security Team, the IT Security Analyst collaborates with cross-functional IT and Business teams to monitor the organization’s security infrastructure for harmful infiltration of external and internal threats, analyzing the organization’s websites and networks for cyber threats such as unauthorized intrusions, malware, DDoS attacks, social media threats and emerging persistent threats and independently implementing mitigation actions as required to neutralize the threat. 

 

Additionally, the IT Security Analyst provides consulting services to the Information Security Team to interpret and enhance the security technologies to strengthen the information security framework and architecture, reduce known risks, and reinforcing the organization’s overall security posture. 

 

Is this you? Find out more below!  

How do I make an impact on my team?   

• Monitor, prioritize, correlate, and analyze logs and alerts from a variety of different sources, enhancing the organization’s ability to identify potential intrusion attempts through the analysis of relevant security event details, with the key goal of assessing and improving the organization’s ability to detect abnormal or malicious behavior. Working independently to identify and mitigate active threats within the environment.   
• Composing and disseminating security alert notifications to support staff about any active threats and mitigation actions being taken to resolve those threats. 
• Work with IT staff to ensure changes to Systems and the IT environment are aligned with Information Security standards, Regulatory requirements, and industry best practices.  
• Work with IT staff to ensure systems are patched, hardened, and updated to ensure systems meet or exceed Information Security standards and SLAs. 
• Provide guidance in cyber security incident response efforts, coordinating with other departments to record, report and resolve cyber security incidents.  
• Provide guidance in penetration and security assessment testing, working closely with external assessment teams and internal IT teams to remediate any identified vulnerabilities or threats. 
• Assist in the development and implementation of practical and achievable security policies, standards, and practices for the protection of organization’s sensitive data and make recommendations for preventive measures as necessary. 
• Serve as a security team advisor on corporate projects, providing technical security consultation on highly complex business projects.  
• Assist in developing corporate information security strategies, including deployment, administration, configuration and support of security related systems, policies, and procedures. 
• Develop increased breadth and depth of the organization’s monitoring resources, documenting and maintaining a framework to consistently assess the organization’s cyber security posture.  
• Other duties as assigned 

What our team expects from you?  

• Minimum of a 2 year degree in IT Security or related field or 4+ years equivalent work experience (ex. System Admin, Network Admin, Cybersecurity Analyst) required. Bachelor’s degree in the field of Computer Science with a focus on Cyber Security preferred. Relevant certification required: CompTIA Network+, Security+, or CySA+, GIAC GSec, Associate of (ISC)², or equivalent. Relevant certification preferred: (ISC)² CISSP, ISACA CISM, or equivalent 
• Experience with progressively increasing responsibilities in Information Security disciplines, such as network security, intrusion protection, cyber-threat management, vulnerability management and access control 
• Experience in conducting research on emerging security threats and investigation and documentation of security related incidents to reduce potential client impact 
• Solid understanding of networking, cyber security concepts, cyber threat intelligence, and vulnerability identification/Attack Surface Reduction is necessary 
• Working knowledge of SPLUNK (SIEM), Tenable (Vulnerability), Cisco Firepower (IPS), Software Defined Networking/Network Segmentation, MS Defender a plus 
• Working knowledge of operating systems security (Windows, Linux, Apple, and Mobile Android/iOS), Access Control Policies, Data Security concepts, and Cloud/Container/API security concepts 
• Knowledge of "best practice" security frameworks (NIST Cyber Security Framework, NIST SP 800-53, CIS CSC, and HITRUST Security Framework) are preferred 
• Experience working in a Regulated Industries preferred.  Familiarity with healthcare regulatory (HIPAA, HITECH, PCI) environments is a plus 
• Experience working with Agile Scrum & Kanban project management teams 
• Participate in, adhere to, and support compliance program objectives 
• The ability to consistently interact cooperatively and respectfully with other employees 

What can you expect from Navitus? 

• Top of the industry benefits for Health, Dental, and Vision insurance 
• 20 days paid time off 
• 4 weeks paid parental leave 
• 9 paid holidays 
• 401K company match of up to 5% - No vesting requirement 
• Adoption Assistance Program 
• Flexible Spending Account 
• Educational Assistance Plan and Professional Membership assistance 
• Referral Bonus Program – up to $750! 

We are unable to offer remote work to residents of Alaska, Hawaii, Maine, Mississippi, New Hampshire, New Mexico, North Dakota, Rhode Island, South Carolina, South Dakota, West Virginia, and Wyoming. 

#LI-Remote