Analyst, Information Security

We are seeking an Information Security Analyst to join our Security Engineering team! We seek highly collaborative candidates passionate about keeping Phreesia safe and secure. The Security Engineering Team consists of five different teams, and Information Security Analysts will be assigned to one of the teams.  They are Security Architecture, Security Infrastructure, Identity and Access Management, Security Operations, and Vulnerability Management. We subscribe to newer principles of application design and by extension newer principles of securing the environment. We pride ourselves on data-informed decision making and delivering pragmatic solutions to help the business reduce risk.

The continuous delivery model, infrastructure as code, and slowly approaching serverless world energizes us to build things from inception with deep-rooted security principles and design. We are preparing for this and working diligently internally to help our engineering colleagues plan, prepare, execute, and embrace the “new world.” The Phreesia offering spans a very wide array of technologies including (to name a few -- Classic web applications, Android and hardware builds, Credit Card Security and HSMs, classic Data Centers and the Cloud). Phreesia operates in an interesting compliance space that includes both healthcare and card compliance that will help to make this role a constantly creative one.

You will:

• Work with the employees and management in your respective department to assist with projects and day to day tasks.  Some examples include:

• Security Architecture
  • Conduct software, vendor, or solution reviews and document risks according to Security Engineering processes and industry best practices. Peer review risk analyses for accuracy and completeness.
  • Support the security consultation and review process by following defined playbooks.
  • Assess how systems and code function, interoperate, and perform. Synthesize information to produce expert written or verbal briefs proactively.

• Security Infrastructure
  • Validate post-implementation of changes, such as patching and client software updates.
  • Assist in administration and operation of Phreesia’s security controls, such as Automox, Crowdstrike, Tenable, Wiz, etc.
  • Create and update scripts used by Security Infrastructure to automate manual tasks such as software installation, updates, and policy changes.
  • Assist in integrating security tooling to the CI/CD pipelines such as Gitlab and BitBucket.

• Identity and Access Management
  • Facilitate the access approval, assignment, and review process using tools such as SailPoint, Active Directory, and Azure Active Directory
  • Work with other senior engineers and architects in building guardrails for the cloud platform (AWS, Azure, GCP).
  • Monitor, escalate and maintain IAM work queues to ensure incident and access request fulfillment.
  • Development and maintenance of Role-Based Access Controls (RBAC)
     
• Security Operations
  • Monitor and respond to output from security infrastructure, such as Crowdstrike, ProofPoint, Wiz, and SumoLogic.
  • Follow prescribed playbooks, processes, and procedures to complete requests within service expectations. Escalate decisions for ambiguous or undocumented processes.
  • Triage Level 1 alerts for common security events, such as reviewing email headers, conducting log review, responding to OpsGenie pages, coordinating remediation tickets with internal Phreesia teams, etc.
     
• Vulnerability Management
  • Support the vulnerability management program in Phreesia through configuring Tenable scans, triaging scan results for false positives, and prioritizing vulnerabilities for remediation according to Phreesia vulnerability management standards.
  • Coordinate the creation, tracking, and escalation of remediation tickets using Jira, Confluence, Wiz, and Tenable.
  • Work with other internal Phreesia teams to remediate vulnerabilities according to internal vulnerability management standards.
  • Validate vulnerability scan results through manual testing to include, but not limited to, Nessus, Kali, Burp suite, Postman, Wireshark, or similar.
  • Support risk and vulnerability assessments of computing environment, network, applications, and infrastructure for Phreesia.

You have:

• 3+ years of experience in software development, information security, technical support, cloud security, or information technology. With at least 2+ years of experience in security.
• Interest in information security, a desire to contribute and learn more.
• Ability to follow detailed instructions.
• Background in the application security basics: HSTS, CSPs, and a working knowledge of the OWASP Top Ten exploitation paths and control mitigations to protect against them.
• A general understanding of old and new development patterns: Release cycles, CI/CD, Code check-in and review. Experience in patching windows and Linux servers through tools such as Automox.
• Experience in performing vendor risk assessments.
• Experience in Triaging and prioritizing detected incidents and coordinating the incident response.
• Strong communication and interpersonal skills. Excellent documentation and design skills.
• Healthy collaboration and working relationship management skills to build an effective multi-functional team environment.
• Ability to prioritize various tasks and projects while thriving in a hands-on, collaborative environment.
• Knowledge of how traffic flows across the network and good knowledge of common security threats and vulnerabilities.
• Knowledge of Windows and Linux patching processes and vulnerability disclosure processes.
• Knowledge on network and application security tooling and manual testing. Knowledge on penetration testing techniques, procedures, and processes preferred.

Shift time: 12:30PM - 9:30PM IST(the shift time may vary depending on the team)

Weekly Rejuvenation breaks - Saturday & Sunday