Security/Compliance and Pen Testing Officer

Please login or register as jobseeker to apply for this job.

TYPE OF WORK

Full Time

WAGE / SALARY

5-7/hr

HOURS PER WEEK

40

DATE UPDATED

Mar 20, 2026

JOB OVERVIEW

About the Role
We are seeking a dedicated Security and Compliance Expert specializing in phishing detection, prevention, and threat monitoring. You will be on the front lines protecting our organization from email-based attacks, social engineering threats, and emerging security risks through proactive monitoring and rapid response.

Key Responsibilities

Phishing Detection & Response
• Monitor, investigate, and respond to phishing attacks and suspicious email campaigns targeting the organization
• Analyze reported phishing emails to identify malicious indicators, domains, URLs, and attachments
• Coordinate takedown efforts for phishing sites impersonating the organization
• Conduct forensic analysis of phishing i ---------- to determine scope and impact
• Maintain and update email security rules, filters, and blocklists

Threat Monitoring & Analysis
• Monitor security tools and dashboards (SIEM, EDR, email security gateways) for suspicious activity
• Analyze security alerts and events to identify potential threats and anomalies
• Track emerging phishing techniques, threat actor tactics, and industry-specific campaigns
• Conduct threat hunting activities to proactively identify security risks
• Correlate data from multiple sources to identify patterns and trends
• Manage firewall patching and configuration

I ---------- Response & Remediation
• Triage and prioritize security i ---------- based on severity and business impact
• Lead response efforts for phishing and social engineering i ----------
• Coordinate with IT teams to contain threats and remediate compromised accounts
• Document i ---------- thoroughly and conduct post-i ---------- reviews
• Develop and maintain i ---------- response playbooks and procedures

Security Awareness & Training
• Design and deliver phishing awareness training programs for employees
• Conduct simulated phishing campaigns to assess organizational vulnerability
• Create educational materials about phishing tactics and best practices
• Provide guidance to end users on identifying and reporting suspicious communications
• Track and report on security awareness metrics and training effectiveness
• HIPAA and PCI regulations

Tools & Technology Management
• Configure and maintain email security solutions (anti-phishing, anti-spam, sandboxing)
• Manage security monitoring platforms and optimize detection rules
• Evaluate and implement new security technologies for phishing prevention
• Maintain threat intelligence feeds and integrate with security tools
• Automate repetitive tasks through scripting and orchestration
• Managing our multiple self hosted email servers
• Managing VPN connections

Reporting & Communication
• Generate regular reports on phishing trends, i ---------- , and metrics
• Brief leadership on significant threats and security posture
• Collaborate with SOC tea ---------- mbers and other security functions
• Communicate findings to technical and non-technical stakeholders
• Maintain documentation of processes, tools, and threat intelligence

Required Qualifications
• Strong networking background with deep understanding of network protocols, architecture, and security
• Has years of experience in cybersecurity with focus on email security, phishing, or threat monitoring
• Experience analyzing phishing emails, malicious URLs, and suspicious attachments
• Proficiency with SIEM platforms and security monitoring tools
• Knowledge of threat intelligence frameworks (MITRE ATT&CK, Cyber Kill Chain)
• Experience with security i ---------- response and investigation
• Understanding of malware analysis techniques and sandbox environments
• Familiarity with scripting languages (Python, PowerShell, or similar) for automation
• Strong analytical skills and attention to detail
• Excellent communication skills for technical and non-technical audiences

What We Offer:
• Remote work with flexible scheduling
• Continuous professional development - 10% of your time (4 hours/week) is dedicated to ongoing training in technical skills, communication, and interpersonal development
• Superstar team culture - we train like champions and celebrate both personal and professional victories
• Growth opportunity in a company that values technical excellence
• Meaningful work supporting healthcare technology infrastructure
• Supportive environment with humor, collaboration, and genuine investment in your success

To Apply:
Send your resume with a brief note explaining:
1. Your experience in detecting and responding to phishing or email-based security i ----------
2. A challenging security threat or phishing campaign you encountered and how you handled it.
3. How you approach investigating and mitigating threats involving unfamiliar attack methods or tools

Apply here: ----------

VIEW OTHER JOB POSTS FROM:
SHARE THIS POST
facebook linkedin