Information Security Auditor - Remote

ABOUT SOUND

Headquartered in Tacoma, WA, Sound Physicians is a physician-founded and led, national, multi-specialty medical group made up of more than 1,000 business colleagues and 4,000 physicians, APPs, CRNAs, and nurses practicing in 400-plus hospitals across 45 states. Founded in 2001, and with specialties in emergency and hospital medicine, critical care, anesthesia, and telemedicine, Sound has a reputation for innovating and leading through an ever-changing healthcare landscape — with patients at the center of the universe.

Sound Physicians offers a competitive benefits package inclusive of the items below, and more:

• Medical insurance, Dental insurance, and Vision insurance
• Health care and dependent care flexible spending account
• 401(k) retirement savings plan with a company match
• Self-managed PTO Plan
• Ten company-paid holidays per year

ABOUT THE ROLE

The Information Security Auditor will be responsible for conducting comprehensive audits of the company's computer systems to ensure they meet established security protocols and regulations. This role involves assessing and evaluating security controls, identifying vulnerabilities, and recommending improvements to protect sensitive data and mitigate risks.

The Details: This is a full-time, remote position.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Conduct thorough audits of information systems, networks, and applications to ensure compliance with security policies and standards.

• Identify and document security vulnerabilities and risks and provide recommendations for remediation.

• Evaluate the effectiveness of existing security controls and recommend enhancements.

• Collaborate with IT and other departments to implement security improvements.

• Prepare detailed audit reports and present findings to management.

• Stay up to date with the latest security trends, threats, and technologies.

• Assist in the development and maintenance of security policies and procedures.

• Train technical experts on policy requirements and recommendations.

VALUES

• Strategic thinker: Demonstrates the ability to look at the big picture and proactively develop a plan of action.

• Driven: Motivated to succeed and get things done at a high level of achievement.

• Intellectually curious: Demonstrates a genuine interest in learning new things and wants to know the reason “why” behind the way things are done.

• Team Player: Proactively seek to work with others to accomplish a common goal. Willingness to share challenges and successes with others.

• Resourceful: Proactive willingness to utilize available information and tools to figure things out.

KNOWLEDGE, SKILLS AND ABILITIES

• Strong knowledge of security frameworks and standards (e.g., NIST, ISO 27001).

• Knowledge of regulatory requirements (e.g., GDPR, HIPAA).

• Experience with security tools and technologies (e.g., SIEM, IDS/IPS, vulnerability scanners).

• Experience in conducting security audits in a cloud environment.

• Knowledge of healthcare industry frameworks and regulations (e.g., HIPAA and HITRUST).

• Experience with compliance management tools.

• Excellent analytical and problem-solving skills.

• Strong communication and interpersonal skills.

• Ability to work independently and as part of a team.

EDUCATION AND EXPERIENCE

• Associate degree in Information Technology, Computer Science, or related field, Professional certification such as CISA, CISSP, or equivalent.

• Bachelor’s degree in relevant field and Certified Information Security Auditor is preferred.

• 3 years experience in information security auditing or relevant field.

Pay Range:

$80,000 - $90,000 annually. Exact pay will be determined based on candidate experience and geographic location.

Sound Physicians is an Equal Employment Opportunity (EEO) employer and is committed to diversity, equity, and inclusion at the bedside and in our workforce. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, gender identity, sexual orientation, age, marital status, veteran status, disability status, or any other characteristic protected by federal, state, or local laws.

This job description reflects the present requirements of the position.  As duties and responsibilities change and develop, the job description will be reviewed and subject to amendment.