Location: Work from home (Pennsylvania) Shift: Days (United States of America) Scheduled Weekly Hours: 0 Worker Type: Intern (Fixed Term) Exemption Status: No Job Summary: Participate in experiential learning that integrates knowledge and theory learned in the classroom with practical application and skills development in a clinical or professional setting. Job Duties: - Assist with supporting the assigned area, gaining practical application experience, and expanding their knowledge and skills base. - Interns will have the opportunity to observe the workplace and gain industry knowledge, while also performing job-specific tasks to assist with operations. Work is typically performed in an office or remote environment. Accountable for satisfying all job specific obligations and complying with all organization policies and procedures. The specific statements in this profile are not intended to be all-inclusive. They represent typical elements considered necessary to successfully perform the job. Position Details: Education: High School Diploma or Equivalent (GED)- (Required) Experience: -Relevant experience* (Preferred) Certification(s) and License(s): Skills: Communication, Computer Literacy, Critical Thinking, IT Project Planning And Organization OUR PURPOSE & VALUES: Everything we do is about caring for our patients, our members, our students, our Geisinger family and our communities. - KINDNESS: We strive to treat everyone as we would hope to be treated ourselves. - EXCELLENCE: We treasure colleagues who humbly strive for excellence. - LEARNING: We share our knowledge with the best and brightest to better prepare the caregivers for tomorrow. - INNOVATION: We constantly seek new and better ways to care for our patients, our members, our community, and the nation. - SAFETY: We provide a safe environment for our patients and members and the Geisinger family. We offer healthcare benefits for full time and part time positions from day one, including vision, dental and domestic partners. Perhaps just as important, we encourage an atmosphere of collaboration, cooperation and collegiality. We know that a diverse workforce with unique experiences and backgrounds makes our team stronger. Our patients, members and community come from a wide variety of backgrounds, and it takes a diverse workforce to make better health easier for all. We are proud to be an affirmative action, equal opportunity employer and all qualified applicants will receive consideration for employment regardless to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or status as a protected veteran.

• Design, implement, and support IAM and IGA solutions using Microsoft Entra ID. • Develop and maintain PowerShell automation for lifecycle and access governance. • Collaborate with business and application teams on access models and controls. • Contribute to MFA, Entra ID integrations, and PAM initiatives. • Continuously improve IAM processes and operational maturity. • Provide guidance to junior engineers. • Work on and prioritize multiple, concurrent projects while meeting deadlines in a fast-paced environment.

Role Description Lead security compliance and ATO activities for a major government healthcare organization's ServiceNow implementation. Ensure the solution meets FedRAMP High requirements and federal security standards. - Lead Authority to Operate (ATO) package development and submission - Coordinate FedRAMP compliance activities with ServiceNow as the CSP - Implement and document customer responsibility matrix controls - Conduct security assessments and vulnerability remediation - Ensure compliance with federal security policies and NIST 800-53 controls - Monitor and respond to security events and incidents - Develop and maintain security documentation including SSP, POA&M, and contingency plans - Coordinate with government ISSO and Security Operations Center Qualifications - 7+ years of information security experience, with 3+ years in federal environments - FedRAMP and federal ATO experience required - Experience with cloud security (AWS, Azure) and SaaS security models - Knowledge of NIST 800-53, FISMA, and federal security requirements Requirements - Bachelor’s degree in computer science or related field - CISSP, CISM, CISA or equivalent certification required Company Description Excentium is a Service-Disabled Veteran-Owned Small Business (SDVOSB) providing cybersecurity and IT services to federal agencies. We hold FedRAMP 3PAO accreditation, CMMC Level 2 certification, and maintain facility clearances supporting our mission-critical work across government. We take pride in building a workforce with strong Veterans focus.

Role Description We are seeking a visionary yet pragmatic Chief Information Security Officer (CISO) to build and own Nsight Health’s security and compliance function from the ground up. As we scale our AI-powered healthcare platform, we require a leader who views security not as a blocker, but as a competitive differentiator and a prerequisite for enterprise growth. Reporting directly to the COO, you will inherit an existing compliance team and a mandate to elevate our security posture. This is a "builder-operator" role: you will establish frameworks (CIS, SOC 2), mature existing HIPAA processes, and serve as a credible, forward-leaning partner to our AI-focused product and engineering teams. AI Fluency Requirement — Non-Negotiable Nsight Health is an AI-first organization. Every member of our leadership and operations team is expected to actively use AI tools in their day-to-day work — not as a novelty, but as a core productivity multiplier. This role requires genuine curiosity about AI, comfort experimenting with tools like Claude, ChatGPT, and workflow automation platforms, and the judgment to know when AI helps and when it doesn't. If AI makes you uncomfortable, this is not the right role. Key Responsibilities - Security Program Ownership: Build and continuously improve Nsight’s security policies and standards; establish a risk-based framework grounded in CIS Controls and maintain our security architecture across cloud and SaaS platforms. - Regulatory & Compliance Leadership: Own the end-to-end HIPAA/HITECH program; lead SOC 2 Type II certification efforts, embedding controls into daily workflows so compliance is continuous rather than an annual event. - AI Security & Innovation: Actively assess the security implications of our AI-forward stack (LLMs, agentic workflows, and automation); develop guardrails that balance rapid innovation with responsible risk management. - Vendor & Incident Management: Design and lead a robust vendor risk management program and own the enterprise incident response plan, including tabletop exercises and real-time incident management. - Team Leadership: Directly lead and mature the existing compliance function; partner with the VP of IT on internal systems security and foster a security-first culture that enhances, rather than hinders, productivity. The Impact You’ll Make - Strategic Trust: You will turn security into a sales accelerator by providing clear, jargon-free assurance to our enterprise customers and partners. - Scalable Governance: You’ll transition the company from "startup speed" to "enterprise-ready" by automating evidence collection and risk assessments. - AI Resilience: You will ensure our AI-first mission is built on a rock-solid foundation, identifying emerging AI-specific attack vectors before they impact the business. Qualifications - 8+ years of information security experience, with at least 3 years in a leadership role owning a security or compliance program. - Deep HIPAA/HITECH Expertise: Practical knowledge of operationalizing compliance in a SaaS healthcare environment. - SOC 2 Mastery: Hands-on experience achieving or maintaining SOC 2 Type II certification. - AI Fluency: Genuine enthusiasm for and professional experience using AI tools (ChatGPT, Claude, etc.) as a core productivity multiplier and a deep understanding of their security implications. - Incident Leadership: Demonstrated experience managing real-world security incidents and data breaches. Preferred - Certifications: CISSP, CISM, HCISPP, or equivalent. - Industry Background: Experience in healthcare SaaS, digital health, or value-based care technology. - Builder Mindset: Prior experience building a security function from scratch at a growth-stage or PE-backed company. - Technical Breadth: Familiarity with cloud security (AWS/GCP/Azure) and AI governance frameworks. Compensation & Benefits - Competitive base pay: $180,000 – $220,000 annually. - Additional Compensation: Bonus Eligible: Annual performance-based bonus (Company + Individual). - Benefits Include: - Unlimited PTO - Medical, Dental, Vision, and supplemental insurance options - 401(k) Plan with 3.5% Company Match - Company-provided equipment Join Our Mission-Driven Team At Nsight Health, you’ll be part of a fast-growing organization that sits at the intersection of healthcare, technology, and compassion. We’re looking for a CISO who cares deeply about protecting patient data while enabling the future of connected care. Our team culture is collaborative, agile, and purpose-driven. Every role—from clinical operations and customer success to marketing, technology, and leadership—directly contributes to improving how healthcare organizations care for their patients.