All openings

Manager, Security

San Francisco, CA

Rally Health is all about putting health in the hands of the individual. It’s our mission, and it drives everything we do, which is to empower people with easy-to-use online and mobile tools that help them take charge of their health and health care, from improving their diet and fitness to selecting health benefits, and choosing the right doctor at the right price for their needs.

Our culture is built on a deep and sincere dedication to helping people live healthier lives. To do this, we are committed to innovating at every level. As our president and COO David Ko says, “We are a company that continuously innovates. It cannot end. It has to be in everything we do, which means that some of the things we’re going to do are not going to work – and that’s okay. We’re not trying to build something that is churn and burn. We’re building something that follows consumers over their lifetime.”

Our Security team is responsible for the health data of over 20 million people, and we are looking for help on our Security leadership team.

You will have experience developing a growing team. Does your current team understand how they work they do advances and protects the organization? Do you use metrics to describe your success, and are you frank with yourself and your team about what needs to be improved? Are you managerially courageous, embracing the awkward 1-1? If so, this role could be perfect for you.

Your career will be varied. Rally is a grown-up startup of 1000 people, within (and run at arms-length from) an organization of 280,000 people, who at times works with early-stage startups. An understanding of how security programs are run, and differ, at all of those scales, would be a big plus, much like Switzerland’s flag. (A sense of humor is important for the role!)

On the team, we automate as much as we can, while saving our analysts' time for challenging investigations. We do that with Python, but experience with any scripting language is fine; the key is to come in with an automation-oriented mindset, an intense and abiding love for the command prompt, and no fear of regular expressions.

While we don't expect that anyone will have all of these qualifications, here are some of the experiences, tools, techniques, and certifications that would make a difference:

  • CISM, CISSP, or AWS CSS
  • Background at a software-development company
  • Experience mapping control frameworks to security practices
  • A history of working within HIPAA or a similarly regulated environment
  • A track record of creative and strategic use of flexible tools such as Splunk and JIRA to glue together security-specific solutions
  • Ensuring the SOC receives timely and effective training on all current and emerging technologies, processes, and product changes
  • Routine engagement with multi-functional teams to evaluate SOC's ability to meet partner needs
  • Maintenance of standard operating procedures and protocols to ensure SOC continues to effectively meet operational requirements
  • A deep understanding of operational risks and drives the response process in order to minimize the impact of these risks
  • A track record of process influence and improvement upon existing processes through innovation and operational change
  • Guidance to the team and leadership during incidents and crises
  • Evaluation of existing technical capabilities and systems and identification of opportunities for improvements
  • Work experience in an operations center environment (GSOC, SOC, CFC, or similar 24x7 communications hub)

Why join Rally? On top of an innovative work atmosphere and a chance to help people change their lives, we offer competitive pay, daily catered lunches, and an extensive benefits package for all full-time employees (including medical, dental, vision and 401(k)). In addition, offer the ability to grow, while truly making an impact in the healthcare system.

Rally Health is committed to ensuring that its workforce reflects America’s diverse population. Rally Health knows that such diversity will enrich us with the talent, energy, perspective and inspiration it needs to achieve its mission. Rally Health believes in a policy of equal employment and opportunity for all people based on merit and commitment to the principles of diversity. It is our policy to recruit, hire, train, and promote individuals in all job titles, and administer all programs, without regard to race, color, religion, national origin or ancestry, citizenship, sex, age, marital status, pregnancy, childbirth or related medical conditions, personal appearance, sexual orientation, gender identity or expression, family responsibilities, genetic information, disability, matriculation, political affiliation, veteran status, union affiliation, or any other category protected by applicable federal, state or local laws.

Individuals with disabilities and veterans are encouraged to apply. Applicants who require an accommodation related to the application and/or review process should notify Talent Acquisition (recruiting@rallyhealth.com).

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Individuals with disabilities and veterans are encouraged to apply. Applicants who require an accommodation related to the application and/or review process should notify Talent Acquisition (recruiting@rallyhealth.com).

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.