Altera, a member of the N. Harris Computer Corporation family, delivers health IT solutions that support caregivers around the world. These include the Sunrise™, Paragon®, Altera TouchWorks®, Altera Opal, STAR™, HealthQuest™ and dbMotion™ solutions. At the intersection of technology and the human experience, Altera Digital Health is driving a new era of healthcare, in which innovation and expertise can elevate care delivery and inspire healthier communities across the globe. A new age in healthcare technology has just begun. Job Title: Security Analyst Location: Remote U.S.-based Role ABOUT THE ROLE We are looking for a Security Analyst to join our Corporate IT Security Team. This is a unique opportunity to make a significant impact on our growing risk program. You will help strengthen our security, maintain our ISO certification, and position Altera for future growth. In this role, you'll use your expertise in risk management, security frameworks, and compliance to support all Altera group of companies. You will communicate with diverse stakeholders, from technical teams to executive leaders. Responsibilities Risk Assessment & Analysis - Conduct risk and security assessments of applications, databases, servers, and network hardware to identify, evaluate, and prioritize risks. - Assess potential risks and vulnerabilities to establish security baselines and assist with deviation responses. - Perform risk assessments against compliance standards (HIPAA, PCI) and security frameworks (NIST, CIS, ISO 27001). - Evaluate emerging technologies to determine how they fit within our security architecture. - Review security controls before hardware or software is moved to production. - Work with business units to review vendor security and ensure compliance with all regulations and requirements. Remediation & Incident Response - Provide actionable recommendations to mitigate vulnerabilities and strengthen our security posture. - Develop and execute remediation plans for identified issues, risks, or vulnerabilities. - Analyze, assess, and track security incidents. - Develop and maintain standard procedures for responding to identified threats. - Monitor system activities and events to detect, classify, and respond quickly to threats. - Work with the information security team to support incident escalation and remediation. Governance & Strategy - Advise on security architecture for new and existing systems, ensuring alignment with best practices and company policies. - Oversee access control risk management, including auditing controls and recommending improvements. - Develop and maintain risk registers and other risk management documentation. - Monitor and report on the effectiveness of risk mitigation strategies. - Support the development and testing of disaster recovery and business continuity plans. - Develop and support the achievement of strategic security objectives. Collaboration & Awareness - Collaborate with IT teams to solve information security issues in a timely manner. - Participate in annual security audits, incident response exercises, and compliance reporting. - Oversee the security awareness program, including phishing campaigns, training, and compliance tracking. Qualifications - A Bachelor's degree in a related field or equivalent professional experience. - 5+ years of experience in IT security risk management, a security operations center (SOC), or system administration. - 3+ years of experience assessing security controls, processes, and vulnerabilities, regulatory and legal changes, and security standards that may impact the security of systems or data. - Hands-on experience with Governance, Risk, and Compliance (GRC) tools. - Experience with identity and access management for both on-premise and cloud (Azure, AWS) environments. - Excellent communication skills, with the ability to explain technical concepts to different audiences. - Ability to adapt and thrive in a dynamic work environment. - Certifications like CISSP, CRISC, or CISA are a plus. Working Arrangements - This is a fully remote position. Our company complies with all local/state regulations in regard to displaying salary ranges. If required, the salary range(s) are displayed below and are specifically for those potential hires who will perform work in or reside in the location(s) listed, if selected for the role. Any offered salary is determined based on internal equity, internal salary ranges, market data, ranges, applicant's skills and prior relevant experience, certain degrees and certifications (e.g. JD, technology), for example. Salary Range $ 94000 - $ 100000 Altera is an Equal Opportunity/Affirmative Action Employer. We consider applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state or local law. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at: HR.Recruiting@AlteraHealth.com

At Ensono, our Purpose is to be a relentless ally, disrupting the status quo and unleashing our clients to Do Great Things! We enable our clients to achieve key business outcomes that reshape how our world runs. As an expert technology adviser and managed service provider with cross-platform certifications, Ensono empowers our clients to keep up with continuous change and embrace innovation. We can Do Great Things because we have great Associates. The Ensono Core Values unify our diverse talents and are woven into how we do business. These five traits are the key to achieving our purpose: Honesty, Reliability, Curiosity, Collaboration, and Passion. About the role and what you'll be doing: As a Security Compliance Analyst Intern, you will support Ensono’s internal audit and security control framework initiatives. Your work will help us enhance our audit processes, integrate AI solutions, and maintain a strong security compliance posture. Key responsibilities include: Document the Audit Process for All Ensono Audits · Learn and document Ensono’s current audit processes, including specific test procedures and process enhancements. Identify AI Opportunities for Internal Audit · Analyze audit test procedures and collaborate with Ensono’s AI team to identify automation opportunities using AI tools and technologies. · Develop and implement AI-driven solutions to improve audit efficiency and accuracy. ESCF Review and Update with Test Procedures · Review Ensono Security Control Framework (ESCF) to ensure controls reflect the latest AI-enabled test procedures. · Update documentation to incorporate newly developed testing methods and expected outcomes. We want all new Associates to succeed in their roles at Ensono. That's why we've outlined the job requirements below. To be considered for this role, it's important that you meet all Required Qualifications. If you do not meet all of the Preferred Qualifications, we still encourage you to apply. What You Will Need: - Overall understanding of the information security domain, especially in the infrastructure managed services industry. - Familiarity with artificial intelligence principles, tools, and technologies. - Skills in prompt engineering, workflow automation using AI, and Agentic AI concepts. Bonus Qualifications - Knowledge of information security auditing processes. - Understanding of mainframe technologies. Why Ensono? Ensono is a place to make better happen – for our clients and for your career. You can do great things through innovation or collaboration, by learning or volunteering, or to promote diversity and inclusion. You can do great things for your own health or for a healthier planet. Whatever it means to you to do great things we want Ensono to be the place you can do it. Ensono is an Equal Opportunity/Affirmative Action employer. We are committed to providing equal employment to our Associates and building a diverse and inclusive workforce. All qualified applicants will be considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or other legally protected basis, in accordance with applicable law. As of the date of this posting, a good faith estimate of the current pay scale for this role is $20.00/hr based on a full-time schedule. Please note that placement in the range may vary based on numerous factors including but not limited to skills, experience, internal equity, and business needs. Pay transparency nondiscrimination statement/posting OFCCP’s pay transparency policy can be found on OFCCP’s website. If you need accommodation at any point during the application or interview process, please let your recruiter know or email USTalentAcquisition@ensono.com.

• Acts as a competent contributor for the implementation, management, monitoring, and upgrading of security measures and risk processes for the protection of the organization's data, systems, and networks. • Is an operational resource for routine, well-documented, projects and partners with others to assist with completion. • Provides troubleshooting for routine security, operational, risk, and process problems. • Stay up to date on emerging security and technology trends; assist with the evaluation and communication of their feasibility for UKHS to Cybersecurity leadership. • Develop rough drafts of technical documentation, graphs, and flowcharts to effectively communicate technical information with guidance from Senior or Principal level engineers. • Identify internal challenges or issues; recommend process, product or service improvements to address. • Participate actively in the change management process, providing technical representation for the Cybersecurity organization with guidance and support from Senior and Principal level Engineers. • Daily administrative tasks, reporting, and communication with the relevant peers in the organization.

The Information Security Analyst serves as the operational backbone of the security function, responsible for continuous monitoring, rapid incident response, and ongoing maintenance of security tools across on‑premises and cloud environments. This role ensures the confidentiality, integrity, and availability of organizational systems through proactive threat detection, vulnerability management, and security automation. Essential Tasks - Monitor security tools including SIEM, endpoint detection platforms, cloud security services, and log management systems for alerts, anomalies, and suspicious activity across all environments - Review and assess security notifications in real time to identify potential threats - Perform initial triage and assessment of security incidents following established incident response procedures - Escalate incidents appropriately and coordinate technical response with cloud, infrastructure, and development teams - Collect and preserve forensic evidence as part of investigations - Document incident details, actions taken, root cause analysis, and lessons learned - Support ongoing improvements to security tooling and operational processes to reduce Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR) - Assist in automation of repetitive security tasks using PowerShell or Python - Conduct routine vulnerability scanning across infrastructure and applications - Validate findings and communicate results to engineering and development teams for remediation - Track and report remediation progress Collaboration & On Call Support - Coordinate cross-team communication during active security events - Participate in incident response and threat monitoring support, including after-hours - Communicate clearly and professionally with both technical and non-technical stakeholders Preferred Skills & Experience - Bachelor’s degree in technology related field or equivalent relevant work experience - Minimum 3+ years of experience in systems administration, infrastructure engineering, or development role with strong exposure to system administration and/or network infrastructure - Strong understanding of operating system platforms (especially Windows) and core network infrastructure concepts - Working knowledge of security tools and cloud-native security best practices - Proficiency in PowerShell or Python for security automation, scripting, and process improvement - Security related certifications such as Security+, PenTest+, CySA+ or equivalent certifications are preferred - Excellent verbal, written, and interpersonal communication skills The pay range for this position is $76,000-88,000/year; however, base pay offered may vary depending on job-related knowledge, geographic location, skills, and experience. This position is eligible for commission in addition to a full range of benefits. This information is provided per the relevant state and local pay transparency laws for the location in which this position will be performed.