IT Information Security Analyst

NaphCare is seeking an experienced and highly motivated Information Security Analyst to join our growing Information Security team at our Corporate Office in Birmingham, AL . This role is responsible for leading security monitoring, incident detection, investigation, and response efforts across the organizations technology environment.

The Information Security Analyst will serve as an aspiring functional security practitioner in security operations, threat detection and response, collaborate and support senior analysts, and play a key role in strengthening our overall security posture. This position supports our mission of delivering quality healthcare services by protecting sensitive systems and data in a highly regulated healthcare environment.

• Perform triage, investigation, and response to security incidents across endpoints, servers, networks, and cloud environments
• Monitor and analyze security alerts from SIEM, EDR, IDS/IPS, email security, and other detection platforms
• Conduct threat hunting activities to identify emerging risks and indicators of compromise
• Perform root cause analysis and develop remediation recommendations
• Create and maintain incident response playbooks and standard operating procedures
• Collaborate with IT, infrastructure, compliance, and other business unit teams during security investigations
• Support vulnerability management efforts, including risk prioritization and remediation validation
• Assist with regulatory and audit requirements (HIPAA, NIST 800-53, SOC 2, etc.)
• Provide support to security projects of the department and other IT initiatives.
• Contribute to continuous improvement of detection rules, automation, and security tooling
• Participate in on-call rotation and escalation support as needed

• Bachelors degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience)
• 2+ years of experience in cybersecurity operations or SOC environments
• Strong experience with SIEM platforms, EDR solutions, and log analysis
• Hands-on experience investigating phishing, ransomware, insider threats, and network-based attacks
• Knowledge of incident response frameworks (NIST CSIRTs, MITRE ATT&CK,etc)
• Experience working in regulated environments, preferably healthcare
• Strong analytical, documentation, and communication skills

Preferred Qualifications

• Professional certifications or pursuit of such as CISSP, CISM, GCIA, GCIH, or similar (less experienced certs are considered)
• Experience with cloud security monitoring (Azure, AWS, or hybrid environments)
• Scripting experience (PowerShell, Python, or similar)
• Familiarity with CrowdStrike, Palo Alto Firewalls, Cloudflare, M365 Security Suite, Datadog, etc.

Why Join NaphCare?

NaphCare is one of the largest providers of healthcare services to correctional facilities throughout the US and we are growing. If you have never considered a career in correctional healthcare, now may be the time. In addition to competitive salaries and generous employee benefits, we strongly support career advancement within the company.

NaphCare Benefits for Full-Time Employees Include:

• Health, dental & vision insurance that starts day one!
• Prescriptions free of charge through our health plan, beginning day one!
• Lowest Cost Benefits!
• Employee Assistance Program (EAP) services
• 401K and Roth with company contribution that starts day one!
• Tuition Assistance
• Referral bonuses
• Term life insurance at no cost to the employee
• Generous paid time off & paid holidays
• Free continuing education and CMEs

Equal Opportunity Employer: disability/veteran

Follow Us: Instagram | Facebook | LinkedIn | Advancing Correctional Healthcare | NaphCare