S

Security Analyst III

staritas United State
Remote
Apply
AI Summary

Lead security operations, governance, and compliance programs at Staritas. Own SIEM platform, security monitoring, incident response, and SOC 2 compliance. Requires 7-10+ years of cybersecurity experience with advanced technical skills.

Key Highlights
Own and manage SIEM platform operations and security monitoring ecosystem
Lead SOC 2 compliance activities including control documentation and audit coordination
Develop and enforce security policies aligned with regulatory frameworks
Manage security awareness program using KnowBe4 and phishing simulations
Key Responsibilities
Lead security monitoring and response operations leveraging SIEM and integrated security platforms
Own SIEM platform management including onboarding new log sources, correlation rule development, and integration with endpoint, cloud, and network security tools
Develop, implement, and enforce security policies, standards, and procedures aligned with SOC 2 and industry best practices
Lead incident response activities including investigation, containment, root cause analysis, and documentation
Manage vulnerability management program including scanning, prioritization, remediation tracking, and reporting to leadership
Own and administer the security awareness program including KnowBe4 rollout, phishing simulations, reporting, and targeted training campaigns
Serve as primary owner for SOC 2 compliance activities including control documentation, evidence collection, audit coordination, and continuous control monitoring
Develop and maintain security documentation including policies, procedures, runbooks, and audit artifacts
Partner with IT Operations to implement and enforce secure configurations, access controls, and endpoint protection strategies
Lead evaluation, selection, and implementation of new security technologies including cost analysis and operational integration planning
Manage third-party security services and vendors including MDR/eSOC providers and ensure contractual and operational expectations are met
Oversee BYOD and endpoint security programs including MDM enforcement and secure access policies
Support client and regulatory security inquiries including RFP responses and due diligence requests
Stay current with evolving threat landscape, compliance requirements, and security best practices
Technical Skills Required
SIEM platforms Security policies and governance SOC 2 compliance Security awareness program management
Benefits & Perks
Competitive salary and performance bonus program
Fully remote work environment
Comprehensive benefits package including 401k match
19 days of PTO per year; 10 holidays per year

Job Description


About the Role


The Security Analyst III at Staritas is responsible for leading the organization’s security operations, governance, and compliance programs. This role serves as a key contributor to the design, implementation, and enforcement of security policies and standards, ensuring alignment with SOC 2 and other regulatory frameworks.






The Security Analyst III owns the security monitoring ecosystem, including SIEM operations, leads enterprise-wide security awareness initiatives (e.g., KnowBe4), and manages audit readiness and control effectiveness. This position partners closely with IT Operations, leadership, and the Information Security Officer to proactively reduce risk, improve security posture, and ensure compliance.




Essential Functions

  • Lead security monitoring and response operations leveraging SIEM and integrated security platforms; tune alerts, develop use cases, and drive continuous improvement in detection capabilities 

  • Own SIEM platform management, including onboarding new log sources, correlation rule development, and integration with endpoint, cloud, and network security tools 

  • Develop, implement, and enforce security policies, standards, and procedures aligned with SOC 2 and industry best practices 

  • Lead incident response activities, including investigation, containment, root cause analysis, and documentation; coordinate with internal and external stakeholders as required

  • Manage vulnerability management program, including scanning, prioritization, remediation tracking, and reporting to leadership 

  • Own and administer the security awareness program, including KnowBe4 rollout, phishing simulations, reporting, and targeted training campaigns 

  • Serve as primary owner for SOC 2 compliance activities, including control documentation, evidence collection, audit coordination, and continuous control monitoring 

  • Develop and maintain security documentation, including policies, procedures, runbooks, and audit artifacts 

  • Partner with IT Operations to implement and enforce secure configurations, access controls, and endpoint protection strategies 

  • Lead evaluation, selection, and implementation of new security technologies, including cost analysis and operational integration planning 

  • Manage third-party security services and vendors (e.g., MDR/eSOCproviders) and ensure contractual and operational expectations are met

  • Oversee BYOD and endpoint security programs, including MDM enforcement and secure access policies 

  • Support client and regulatory security inquiries, including RFP responses and due diligence requests 

  • Stay current with evolving threat landscape, compliance requirements, and security best practices


Additional Responsibilities:



  • Other duties, as assigned.






Experience:



  • 7–10+ years of experience in cybersecurity, IT security operations, or related fields 

  • Demonstrated experience with SIEM platforms (e.g., Microsoft Sentinel, SUMO, or equivalent) including design, tuning, and operational ownership 

  • Proven experience developing and enforcing security policies and governance frameworks (SOC 2 required) 

  • Experience leading or supporting SOC 2 audits, including control ownership and evidence management a plus

  • Hands-on experience with security awareness platforms such as KnowBe4, including program rollout and management 

  • Experience with incident response, vulnerability management, and endpoint security tooling 

  • Experience working with managed security providers (MDR/eSOC) 

  • Strong project management and cross-functional collaboration skills






Education:



  • Bachelor’s degree in Info Tech, Cybersecurity, Computer Science, or related field is preferred but not required 

  • Relevant experience may be considered equivalent






Technical Skills:



  • SIEM platforms (Microsoft Sentinel, SUMO) 

  • Endpoint protection and EDR tools 

  • Vulnerability management platforms 

  • Identity and access management controls 

  • Cloud and SaaS security monitoring 

  • ​Microsoft 365 security ecosystem preferred​






Certifications & Licenses (Preferred):



  • CISSP, CISM, or similar advanced security certification 

  • Microsoft Security certifications (e.g., SC-200, SC-300) 

  • ​SOC 2 / compliance-related training or certifications






What We Offer



  • Competitive salary and performance bonus program

  • Fully remote work environment

  • Comprehensive benefits package including 401k match

  • 19 days of PTO per year; 10 holidays per year

  • Opportunity to work in a mission-driven organization where your work directly shapes clarity, confidence, and better outcomes across healthcare


Travel






Up to 10% travel, based on business needs.  While our roles are 100% remote, we do get together a few times a year for up to one week.  Employees are given ample notice and attendance is expected.


​ 


Work Environment






This position operates in a professional work environment and requires the use of standard office equipment such as a computer, keyboard, mouse, webcam, and phone.






Equal Opportunity / Affirmative Action Statement






Staritas is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, or veteran status.






As a federal contractor, Staritas complies with all applicable federal, state, and local laws regarding nondiscrimination and affirmative action. We are committed to creating a workplace that is fair, inclusive, and grounded in merit-based decision-making.






Accommodation Statement






If you need reasonable accommodation to apply for this position, please contact the recruiter.



Pay Transparency Statement 






Staritas posts compensation ranges and benefits for all open roles. The compensation range for this position is $110,000-$125,000, plus a comprehensive benefits package. Compensation offered will depend on factors including experience, skills, geographic location, and internal equity. Staritas does not retaliate against employees or applicants for discussing compensation.






Benefits Statement 






Staritas offers a comprehensive and competitive benefits package designed to support the health, wellbeing, and financial security of our employees. Benefits include medical, dental, and vision coverage; retirement savings plans with company contributions; paid time off and company holidays; paid parental and family leave; and access to employee assistance and wellness resources. Additional benefits include life and disability insurance, professional development opportunities, and flexible work arrangements. 






Learn more about us by visiting www.staritas.com.


Similar Jobs

Explore other opportunities that match your interests

Senior OCI Security Engineer

Cyber Security
30m ago
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Not Applicable

Jobgether

United State

Senior Security Operations Engineer

Cyber Security
58m ago
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Not Applicable

Jobgether

United State
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Mid-Senior level

Jobgether

United State

Subscribe our newsletter

New Things Will Always Update Regularly