SOC/SIRT Engineer

Datavant is a data platform company and the world’s leader in health data exchange. Our vision is that every healthcare decision is powered by the right data, at the right time, in the right format.

Our platform is powered by the largest, most diverse health data network in the U.S., enabling data to be secure, accessible and usable to inform better health decisions. Datavant is trusted by the world’s leading life sciences companies, government agencies, and those who deliver and pay for care. 

By joining Datavant today, you’re stepping onto a high-performing, values-driven team. Together, we’re rising to the challenge of tackling some of healthcare’s most complex problems with technology-forward solutions. Datavanters bring a diversity of professional, educational and life experiences to realize our bold vision for healthcare.

Datavant is a data logistics company for healthcare whose products and solutions enable organizations to move and connect data securely. We are a data logistics company for healthcare whose products and solutions enable organizations to move and connect data securely. Datavant has a network of networks consisting of thousands of organizations, more than 70,000 hospitals and clinics, 70% of the 100 largest health systems, and an ecosystem of 500+ real-world data partners.

By joining Datavant today, you’re stepping onto a highly collaborative, remote-friendly team that is passionate about creating transformative change in healthcare. We invest in our people and believe in hiring for high-potential and humble individuals who can rapidly grow their responsibilities as the company scales. Datavant is a distributed, remote-first team, and we empower Datavanters to shape their working environment in a way that suits their needs.

Become a vital defender of our digital landscape as a SOC/SIRT engineer. You’ll monitor and analyze security alerts, swiftly respond to incidents, and collaborate with top IT and security teams to fortify our defenses. If you’re passionate about cybersecurity and ready to make a significant impact, join us and elevate your career. 

You will:

• Lead and manage complex incident response engagements, ensuring effective coordination and communication across technical teams and stakeholders.
• Design, mature, and implement advanced playbooks for triage, investigation, and response to cyber threats, with a focus on continuous improvement and automation.
• Spearhead initiatives to enhance our incident response processes, leveraging the latest methodologies and technologies to increase efficiency and effectiveness.
• Communicate complex security incidents and recommendations to customers and stakeholders, translating technical details into actionable intelligence.
• Lead, mentor, and develop junior analysts, fostering a culture of continuous learning and professional growth within the team.
• Organize and direct SOC training programs, emphasizing advanced skills and readiness for incident response challenges.

What you will bring to the table: 

• 5+ years of experience in Security Operations, with significant experience in incident response.
• Advanced knowledge and hands-on experience in incident response and cybersecurity operations.
• Exceptional critical thinking, analytical skills, and attention to detail.
• Excellent written and oral communication skills, with the ability to convey complex information clearly and persuasively.
• Strong interpersonal and teamwork skills, with a demonstrated ability to collaborate effectively across diverse teams.
• Strong understanding of Windows event logs and other investigation relevant artifacts
• Expertise in log management, SIEM, endpoint protection, and advanced security tools and technologies.
• Availability for on-call duties, including nights, weekends, and holidays, to respond to high-priority incidents.
• Experience working in a healthcare cybersecurity role/ company.  

Bonus points if:

• GIAC Certified
• Experience performing Digital Forensics a plus
• Experience in a senior managed services or incident response role.
• Familiarity with advanced tools and technologies, such as Splunk, Crowdstrike, Microsoft Azure, AWS, Google Workspace, etc.

We are committed to building a diverse team of Datavanters who are all responsible for stewarding a high-performance culture in which all Datavanters belong and thrive. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.

Our compensation philosophy is to be externally competitive, internally fair, and not win or lose on compensation. Salary ranges for this position are developed with the support of benchmarks and industry best practices. 

We’re building a high-growth, high-autonomy culture. We rely less on job titles and more on cultivating an environment where anyone can contribute, the best ideas win, and personal growth is driven by expanding impact. The range posted is for a given job title, which can include multiple levels. Individual rates for the same job title may differ based on their level, responsibilities, skills, and experience for a specific job. The estimated salary range for this role is $120,000 - $180,000.

At the end of this application, you will find a set of voluntary demographic questions. If you choose to respond, your responses will be anonymous and used to help us identify areas of improvement in our recruitment process. (We can only see aggregate responses, not individual responses. In fact, we aren’t even able to see if you’ve responded or not.) Responding is your choice and it will not be used in any way in our hiring process.

This job is not eligible for employment sponsorship.

To ensure the safety of patients and staff, many of our clients require post-offer health screenings and proof and/or completion of various vaccinations such as the flu shot, Tdap, COVID-19, etc. Any requests to be exempted from these requirements will be reviewed by Datavant Human Resources and determined on a case-by-case basis. Depending on the state in which you will be working, exemptions may be available on the basis of disability, medical contraindications to the vaccine or any of its components, pregnancy or pregnancy-related medical conditions, and/or religion.

This job is not eligible for employment sponsorship.

Datavant is committed to a work environment free from job discrimination. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status. To learn more about our commitment, please review our EEO Commitment Statement here. Know Your Rights, explore the resources available through the EEOC for more information regarding your legal rights and protections. In addition, Datavant does not and will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay. Learn more here.

At the end of this application, you will find a set of voluntary demographic questions. If you choose to respond, your answers will be anonymous and will help us identify areas for improvement in our recruitment process. (We can only see aggregate responses, not individual ones. In fact, we aren’t even able to see whether you’ve responded.) Responding is entirely optional and will not affect your application or hiring process in any way.

Datavant is committed to working with and providing reasonable accommodations to individuals with physical and mental disabilities. If you need an accommodation while seeking employment, please contact us at peopleteam@datavant.com. We will review your request for reasonable accommodation on a case-by-case basis.

For more information about how we collect and use your data, please review our Privacy Policy.