Senior Security Analyst

Job Summary

We're opening eyes, hearts and minds to the impact that a pharmacy team can have in changing lives.

Join our group of talented, committed team members-pharmacists, pharmacy care coordinators, technologists, product strategists and more-to create and expand the delivery of personalized health support that people didn't even know could be possible.

The Senior Security Analyst for Stellus Rx will be a key member of our Technology Team, working closely with Stellus Rx leaders and across the organization to unlock the health of millions of Americans. We are a culture that is unabashedly driven by purpose — making a difference to patients and team members while growing at an accelerated rate.

This role is for a security professional who uses AI as a force multiplier — automating threat analysis, accelerating investigations, and generating sharper insights across monitoring, compliance, and risk management activities rather than relying on manual, reactive processes.

Role Accountabilities and Responsibilities:

AI-Powered Threat Monitoring & Analysis

• Use AI-enhanced SIEM, XDR, and threat intelligence platforms to continuously monitor security events across cloud and on-premises environments — replacing manual alert triage with intelligent, prioritized detection.
• Analyze security alerts, logs, and threat data using AI-assisted tools to rapidly distinguish true positives from noise, reducing investigation time and analyst fatigue.
• Proactively hunt for threats and anomalies using AI-informed behavioral analytics and pattern recognition across network, endpoint, and application data.
• Stay current on the evolving threat landscape, incorporating AI-generated threat intelligence feeds and reports into daily analysis workflows.

AI-Assisted Incident Response & Investigation

• Lead and support security incident response activities; use AI tools to accelerate root cause analysis, evidence correlation, and timeline reconstruction.
• Document incident findings, postmortem reports, and lessons learned using AI-assisted drafting — improving quality and consistency while reducing manual documentation burden.
• Identify causes, recommend solutions, and develop AI-informed preventative measures to reduce recurrence of security incidents.
• Escalate incidents appropriately and communicate findings clearly to technical teams and leadership.

Vulnerability Management & Risk Analysis

• Conduct and support vulnerability assessments across cloud, application, and infrastructure environments; use AI tools to prioritize remediation efforts based on exploitability, exposure, and business impact — rather than relying on manual scoring alone.
• Track remediation efforts, report on risk posture trends, and provide data-driven recommendations to improve the organization's security baseline.
• Assist in the development and maintenance of security risk registers, using AI-assisted analysis to surface and rank emerging risks.

Compliance & Policy Adherence

• Support compliance activities across relevant frameworks (e.g., HIPAA, SOC 2, NIST); use AI tools to monitor for policy drift, generate compliance evidence, and streamline audit preparation.
• Maintain and update security documentation, policies, and procedures — leveraging AI-assisted drafting to ensure accuracy and reduce manual effort.
• Collaborate with the Security Engineering team to validate that security controls are operating effectively and meeting audit requirements.

Collaboration & Security Awareness

• Work closely with Security Engineers, IT, and development teams to communicate security findings and influence security-conscious behaviors across the organization.
• Contribute to security awareness programs and training efforts, using AI tools to personalize and scale content delivery.
• Provide clear, concise reporting to leadership on security posture, incident trends, and risk metrics.

Qualifications and Requirements:

• 4+ years of experience in an information security analyst role or equivalent.
• Hands-on experience with SIEM platforms, threat intelligence tools, and security monitoring in cloud environments (AWS preferred).
• Required: Demonstrated, hands-on experience using AI tools to automate or significantly accelerate security analysis, threat detection, or incident investigation — with specific examples you can speak to.
• Strong understanding of network-based, system-level, and application-layer attacks and mitigation techniques.
• Experience with vulnerability management programs and risk-based prioritization.
• Familiarity with compliance frameworks relevant to healthcare (HIPAA, SOC 2, NIST CSF).
• Knowledge of identity and access management concepts, including authentication and authorization standards (SAML, OIDC, OAuth).
• Strong analytical and problem-solving skills with the ability to convey complex security findings to both technical and non-technical audiences.
• Bilingual — Spanish and English.
• Bachelor's degree in Computer Science, Information Security, or equivalent working experience.

Preferred Experience:

• Experience with AI-powered security platforms (e.g., AI-driven SIEM, XDR, EDR, or threat intelligence tools).
• Participation in red team/blue team or purple team exercises.
• Exposure to cybersecurity tools such as Web Application Firewalls, Email Protection, and Endpoint Detection & Response (EDR).
• Relevant certifications: CompTIA Security+ (SY0-601), CEH (EC-Council), CISSP (ISC²), CISM or CISA (ISACA), or GIAC equivalents.
• Healthcare industry experience; familiarity with FHIR/HL7 data standards a plus.