Ssr. / Sr. Cybersecurity Analyst (Risk and Compliance)

Teladoc Health is a global, whole person care company made up of a diverse community of people dedicated to transforming the healthcare experience. As an employee, you’re empowered to show up every day as your most authentic self and be a part of something bigger – thriving both personally and professionally. Together, let’s empower people everywhere to live their healthiest lives.

Summary of Position

The Information Security Analyst III will support the Director of Governance, Risk and Compliance in implementing and improving security controls to mitigate risks and ensure compliance across Teladoc. This role requires technical security expertise to guide security solutions and will collaborate with various departments, clients, and vendors to maintain adequate security policies and controls.

Essential Duties and Responsibilities

• Manage Teladoc Health's cybersecurity program to address evolving threats, implement continuous security assessment frameworks, and develop risk metrics for stakeholders.

• Serve as information security subject matter expert for IT and business teams to identify potential threats and recommend appropriate solutions and technologies.

• Conduct ongoing assessment and remediation tracking of critical security controls for cloud-based applications.

• Support client lifecycle activities including RFI responses, contract negotiations, and client-led security assessments.

• Perform onboarding and annual risk assessments for third-party service providers and partners.

• Document and implement information security policies, standards, and procedures while maintaining version control and quality standards.

• Create and review security documentation, including System Security Plans, Risk Assessment Reports, and Certification and Accreditation packages.

• Communicate security requirements to internal and external stakeholders.

• Enhance enterprise security awareness through education programs across the organization.

Supervisory Responsibilities

No

Qualifications Expected for the Position

• 4+ years of experience in an information security role, with a strong background in cyber governance, risk, and compliance

• Experience in performing vendor risk assessments, inventory maintenance, and other data processing activities

• Experience with key cybersecurity and risk management frameworks such as NIST, ISO 27001, and HIPAA

• Experience with risk management for cloud environments

Qualifications Preferred for the position

• Bachelor's degree and/or relevant industry certifications such as CISA, CISSP, CISM

• Experience with additional compliance frameworks and assessments, including HITRUST, FedRamp, PCI, SOX, FDA, GDPR, and CCPA

• Experience with the integration of security programs after mergers and acquisitions

• Working knowledge of specialized systems such as IOT Medical Devices and FDA Premarket/Postmarket requirements and UL2900-1/2

#LI-FU1

#LI-Remote

Why Join Teladoc Health?

A New Category in Healthcare:  Teladoc Health is transforming the healthcare experience and empowering people everywhere to live healthier lives.  

Our Work Truly Matters: Recognized as the world leader in whole-person virtual care, Teladoc Health uses proprietary health signals and personalized interactions to drive better health outcomes across the full continuum of care, at every stage in a person’s health journey.  

Make an Impact: In more than 175 countries and ranked Best in KLAS for Virtual Care Platforms in 2020, Teladoc Health leverages more than a decade of expertise and data-driven insights to meet the growing virtual care needs of consumers and healthcare professionals.  

Focus on PEOPLE:  Teladoc Health has been recognized as a top employer by numerous media and professional organizations. Talented, passionate individuals make the difference, in this fast-moving, collaborative, and inspiring environment. 

Diversity and Inclusion:  At Teladoc Health we believe that personal and professional diversity is the key to innovation. We hire based solely on your strengths and qualifications, and the way in which those strengths can directly contribute to your success in your new position.  

Growth and Innovation:  We’ve already made healthcare yet remain on the threshold of very big things. Come grow with us and support our mission to make a tangible difference in the lives of our Members.  

As an Equal Opportunity Employer, we never have and never will discriminate against any job candidate or employee due to age, race, religion, color, ethnicity, national origin, gender, gender identity/expression, sexual orientation, membership in an employee organization, medical condition, family history, genetic information, veteran status, marital status, parental status or pregnancy.