​This is a full-time, Exempt role at Meduit, a healthcare partner services firm. The position is highly focused on a hybrid of SOC operations and Data Governance, specifically tasking the analyst with the implementation and management of Microsoft Purview alongside traditional endpoint and vulnerability management tools.

• ​Location: Remote (United States).
• ​Salary Range: $80,000 to $95,000 USD (Budgeted range).
• ​Experience Required: 2 to 4+ years in cybersecurity or SOC operations.
• ​Networking Experience: At least 1 year of hands-on experience applying networking fundamentals (TCP/IP, DNS, Firewalls) to security investigations.
• ​Anticipated Start Date: 1/1/2026.
• ​Internet Requirement: Minimum 30MB download and 10MB upload speed.

​Key Responsibilities: Data Protection and Alert Response

​This role balances proactive data compliance with reactive incident response within a healthcare context.

• ​Microsoft Purview Ownership: Implement and manage Microsoft Purview for data protection, classification, and compliance.
• ​Incident Triage: Investigate security alerts originating from CrowdStrike Falcon, Azure Defender, and Rapid7 InsightIDR.
• ​Vulnerability Management: Review and prioritize system weaknesses using Rapid7 InsightVM.
• ​Identity & Access: Monitor Azure/Entra ID for identity security, including MFA and Conditional Access policies.
• ​Collaboration: Document all investigation and remediation steps while working with IT teams to resolve security gaps.

​Required Technical Qualifications

​The ideal candidate must hold specific Microsoft security certifications and demonstrate proficiency in a modern cloud-native security stack.

• ​Platform Expertise:
  • ​Azure AD / Entra ID and Microsoft Defender for Cloud.
  • ​CrowdStrike Falcon (Endpoint Protection).
  • ​Rapid7 InsightVM / IDR (Vulnerability & SIEM).
  • ​Microsoft Purview (Information Protection).
• ​Mandatory Certifications:
  • ​SC-900 (Microsoft Security, Compliance, and Identity Fundamentals).
  • ​SC-400 (Microsoft Information Protection Administrator).
• ​Core Fundamentals: Strong application of networking (TCP/IP, DNS, firewalls, VPNs) in threat analysis and incident investigation.

​Preferred Qualifications

• ​Advanced Certifications: SC-200, SC-300, or AZ-500 (Azure Security Engineer Associate).
• ​Generalist Certifications: CompTIA Security+ or CySA+.
• ​Education: Bachelor’s degree in Cybersecurity, IT, or a related field.