Ennoble Care
Healthcare
CybersecurityAnalyst
Neural analysis suggests this role is
optimal for Mid+ candidates.
“Cybersecurity Analyst at Ennoble Care. Skills: Microsoft 365 security, Identity and Access, Email Security, Threat Detection. Own day-to-day security operations. Harden Microsoft security stack”
What You'll Achieve.
Improve security posture; Build mature security program; Improve user resilience; Achieve DMARC enforcement
Industry & Context.
Root cause analysis; Troubleshooting; Threat hunting; Incident investigation
Disclose immigration sponsorship
What They're Looking For.
Must Have
3+ years security operations, 3+ years security engineering, 3+ years security analyst, Deep Microsoft 365 security, Investigate email compromise, Remediate email compromise, Investigate phishing attacks, Remediate phishing attacks, Investigate identity attacks, Remediate identity attacks, Hands-on email authentication, Exchange Online Protection, Defender for Office 365, Proficiency with KQL, Understand HIPAA security
Nice to Have
Healthcare industry experience, Microsoft Purview experience, SentinelOne experience, EDR platforms experience, Support M&A security, AI-assisted security workflows
What You'll Do.
Own day-to-day security operations
Harden Microsoft security stack
Run incident response
Build security program
Close Conditional Access gaps
Ensure compliance posture
Manage Conditional Access policies
Administer Privileged Identity Management
Enforce least-privilege
Monitor identity-based threats
Respond to identity threats
Drive phishing-resistant MFA adoption
Deploy token-theft protections
Conduct tabletop exercises
Develop corrective action plans
Conduct entitlement reviews
Clean up stale access
Harden Exchange Online Protection
Manage Safe Attachments
Manage anti-phishing policies
Own email authentication
Configure SPF records
Configure DKIM records
Maintain DKIM records
Configure DMARC records
Maintain DMARC records
Monitor DMARC reports
Drive domain to enforcement
Strengthen mail transport posture
Strengthen anti-spoofing posture
Investigate BEC incidents
Investigate phishing incidents
Investigate account compromise incidents
Own user phishing-reporting workflow
Triage phishing submissions
Perform rapid email remediation
Design simulated phishing campaigns
Execute simulated phishing campaigns
Measure user resilience
Improve user resilience
Run security awareness program
Run human-risk program
Report on click-rate trends
Report on report-rate trends
Triage Defender alerts
Investigate incidents end-to-end
Document incident findings
Coordinate with MDR provider
Own incident response lifecycle
Implement Purview information protection
Implement Purview DLP policies
Implement Purview retention rules
Collect evidence for HIPAA
Maintain evidence for HIPAA
Collect evidence for SOC 2
Maintain evidence for SOC 2
Support cyber insurance renewals
Execute posture improvement roadmaps
Track Microsoft Secure Score
Improve Microsoft Secure Score
Own security workstream during M&A
Evaluate security tooling additions
Recommend security tooling additions
How You'll Work.
Team & Collaboration
Work with external partner; Work with CIO; Work with CTO; Work with AI Manager; Coordinate with MDR provider
Communication Scope
Risk documentation
Process & Methodology
Roadmap planning
Full Job Description
About Us Ennoble Care is a mobile primary care, palliative care, and hospice service provider with patients in New York, New Jersey, Maryland, DC, Virginia, Oklahoma, Kansas, Pennsylvania, Texas, Florida, and Georgia. Ennoble Care’s clinicians go to the home of the patient, providing continuum of care for those with chronic conditions and limited mobility. Ennoble Care offers a variety of programs including, remote patient monitoring, behavioral health management, and chronic care management, to ensure that our patients receive the highest quality of care by a team they know and trust. We seek individuals who are driven to make a difference and embody our motto, “To Care is an Honor.” Join Ennoble Care today! Position Overview We are hiring our first dedicated cybersecurity professional. You will own the day-to-day security operations for a HIPAA-regulated, cloud-only environment. This is a hands-on role: you will harden our Microsoft security stack, run incident response, hunt threats, and build the security program alongside our external Microsoft security partner. This is not a policy-writing job. You will spend most of your time in Defender, Entra ID, Purview, and Exchange Online. You will be the person who investigates alerts, tunes detections, closes gaps in Conditional Access, and ensures our compliance posture holds up under scrutiny. You will report to the CIO and work closely with our CTO and our Engineering AI Transformation Manager who serves as a cybersecurity technical SME with FedRamp/NIST 800-171/Soc2/ISO 27001 cybersecurity R&D background. What You'll Do Identity & Access Security Manage and refine Conditional Access policies across Entra ID Administer Privileged Identity Management (PIM) and enforce least-privilege Monitor and respond to identity-based threats (token theft, MFA bypass, impossible travel) Drive adoption of phishing-resistant MFA (FIDO2/passkeys, Windows Hello for Business, certificate-based auth) and deploy token-theft protections —
Applying for this Cybersecurity Analyst role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Greenhouse
- Create a Greenhouse profile before applying — it saves time across multiple applications.
- Upload your resume as a PDF; the parser handles it better than Word.
- Answer all knockout questions carefully — wrong answers auto-reject before a human sees you.
- Enable email notifications to track application status in real time.
ANONYMOUS · UNFILTERED
What do employees actually say about Ennoble Care?
Real rants from real employees. Read before you apply.