Security Operations Analyst

Job Description:

As an Information Security Analyst within Phreesia’s Security Operations team, you will join a dynamic learning-focused organization that values professional growth and innovations. In this role you will play a crucial role in protecting our organizations digital assets while developing your expertise through hands-on experience, mentorship opportunities, and continuous learning initiatives. You’ll work alongside seasoned security professionals who are committed to knowledge sharing and collaborative problem-solving. 

In this position, you will lead incident response efforts, conduct thorough forensic investigations, and develop automated security solutions to streamline operations. You will be responsible for engineering and implementing detection mechanisms to identify potential threats, while leveraging threat intelligence to stay ahead of emerging security risks. Our team promotes internal mobility and skill development, offering opportunities to work with cutting-edge security tools and technologies while contributing the evolution of our security program. We encourage creative thinking, provide training resources and support industry certifications to help advance your career in information security. 

Shift time: 11:00AM - 8:00PM (the shift time may vary depending on the team) 

Weekly Rejuvenation breaks - Saturday & Sunday 

Job Responsibilities:

Automation & Orchestration

• Design automated security response workflows and playbooks
• Build integration between security tools to streamline operations
• Maintain and optimize security automation infrastructure
• Create scripts to atomate routine security tasks

Detection Engineering

• Develop and optimize security detection rules across multiple platforms
• Engineer automated detection systems for emerging threats
• Tune security tools to reduce false positives while maintain effectiveness
• Implement detection strategies based on MITRE ATT&CK framework

Forensic Investigations

• Conduct comprehensive digital forensics investigations of security incidents
• Collect and preserve digital evidence following forensic best practices
• Analyze malware and suspicious files to determine threat impact
• Prepare detailed forensic reports for stakeholders 

Incident Response  

• Lead incident response activities during security and suspicious events
• Coordinate cross-functional response team during security incidents
• Document and analyze incident patterns to prevent future occurrences
• Execute post-incident reviews and implement lessons learned

Threat Intelligence

• Monitor and analyze emerging cyber threats and attack patterns
• Synthesize intelligence from multiple sources to identity potential risks
• Distribute actionable threat intelligence

Education: Bachelor’s Degree – technology focus preferred 

Certifications: Amazon, CompTIA, & Microsoft Certifications are a bonus 

Experience, Knowledge & Skills:

• 3+ years of experience in software development, information security, technical support, cloud security, or information technology. With at least 2+ years of experience in security. 
• Strong communication and interpersonal skills. Excellent documentation and design skills. 
• Healthy collaboration and working relationship management skills to build an effective multi-functional team environment. 
• Ability to prioritize various tasks and projects while thriving in a hands-on, collaborative environment.  

Technology :

• Strong understanding of operating systems, networks, and security technologies. 
• Familiarity with Cloud Applications (o365, Salesforce, etc.) and Cloud Infrastructure. 
• Familiarity with security tools and techniques, such as Endpoint Detection & Response (EDR), Threat Intelligence, and SIEM tools. 
• Experience in triaging and prioritizing detected incidents and coordinating the incident response for containment, eradication and recovery. 
• Ability to develop and implement strategies to prevent future incidents. 
• Experience with scripting and automation/orchestration is a plus. 

Other:

• Interest in information security, a desire to contribute and learn more. 
• Ability to follow detailed instructions. 

Disclaimer:  The job responsibilities and duties described above are not a comprehensive list.  Additional tasks may be assigned to the employee from time to time, and Phreesia reserves the right to change the scope of the job as necessitated by business demands. 

Who We Are:

At Phreesia, we’re looking for smart and passionate people to help drive our mission of making care easier every day. We’re committed to helping healthcare organizations succeed in an ever-evolving landscape by transforming the way healthcare is delivered. Our SaaS platform digitizes appointment check-in and offers tools to engage patients, improve efficiency, optimize staffing, and enhance clinical care.

Phreesia cares about our employees by providing a diverse and dynamic work environment. We’re a seven-time winner of Modern Healthcare Magazine’s Best Places to Work in Healthcare award and we’ve been recognized on the Bloomberg Gender Equality Index for the past three years. We are dedicated to continuously improving our employee experience by launching new programs and initiatives. If you thrive in a culture of recognition, value inclusivity, professional development, and growth opportunities, Phreesia could be a great fit!