All openings

IR Analyst

San Francisco, CA

Sr Information Security Analyst


Rally Health's Information Security group is looking for team players to help us scale our Security and Compliance programs,  and we need your help! You will be joining a small team that's scaling up to meet the needs of a rapidly growing company with a strong drive for security. Our team works from any of our offices across the US and we're willing to relocate people to join us. We ensure that vulnerabilities are identified, remediated or mitigated  reducing risk and preserving the confidentiality, integrity and availability of customer data and Rally Health intellectual property.
Do you love reviewing enterprise baselines, and investigations? Are you passionate about automating away the drudgery to make more time for interesting work? Do you work well in a team and across the rest of your company? If so, we would be thrilled to have you on board!


If you join us, you will likely:
  • Perform assessments on various technologies with the goal of identifying and managing risk
  • Perform audits of security architecture
  • Research new and/or better security analysis tools and do proof of concepts.
  • Review platform hardening guides based on standard security frameworks and recommend appropriate response
  • Stay up to date on current threats and trends in our industry by monitoring information security related websites and newsletters.
  • Analyze potential impact of new threats and exploits and communicate risks to the appropriate business units.


  • You bring knowledge of information systems security concepts and technologies; network architecture, general database concepts, document management, troubleshooting, alert and log investigations.
  • You are experienced with systems auditing and monitoring to ensure compliance with security policies and standards.
  • You can work with Linux, Mac, and Windows operating systems.
  • You're comfortable with the pressure that comes working in a information security and compliance team and can maintain a professional image and approach. We don't want people who get hard to work with in stressful situations.
  • You're a strong analytical writer who can articulate complex ideas clearly and effectively.
  • You work better together, not alone. While we all have our own work to do, we're in this as a team.
  • If you have an understanding of security frameworks such as SOC2, ISO 2700x, NIST, or HIPAA


No degree or certification is required. Have some? Great, let's talk about them.