ELLKAY is a nationwide leader in health care data interoperability delivering innovative solutions that support the data migration needs of all members of the healthcare ecosystem. ELLKAY is playing a vital role in helping healthcare organizations access and share data among disparate systems. We are recognized by our e-health industry partners, independent medical group practices, hospitals and health systems, laboratories, and payers as the “Healthcare Data Plumbers” that make data migration and interoperability possible.
Our ‘Client-first’ focus has made ELLKAY one of the most respected healthcare IT companies in the nation. We value our clients and believe that strong relationships are the foundation for a strong company, and we’re dedicated to providing connectivity to the healthcare industry.
Company Culture: We deal with medical data and we take our work very seriously, but not ourselves. If you’re a smart, hard-working, dedicated individual who thrives in a laidback, friendly work environment, ELLKAY may be the place for you. We’re committed to attracting good people who are passionate about the work they do.
ELLKAY was founded over a decade ago on the values of innovation, efficiency, and service created in a collaborative work culture. As we have grown, we are proud to still possess the same energy and passion for what we do. We strive to provide exceptional customer experiences to our clients, which begins with first employing amazing people. ELLKAY is proud to maintain a high-quality, innovative, and diverse workforce.

QUALIFICATIONS:

• Bachelor’s degree in Computer Networks & Cybersecurity, Computer Science, or a related field (or equivalent experience).
• 2+ years of experience working with IT technologies, architectures, security concepts, and industry best practices.
• Strong knowledge of information security principles, standards, tools, and methodologies.
• At least one relevant certification, such as Security+, CAP, CISA, CISM, or CISSP.
• Familiarity with assessing commercial cloud environments (e.g., AWS).
• Strong attention to detail and ability to communicate effectively with diverse technical and non-technical stakeholders (system administrators, ISSOs, developers, etc.).
• Demonstrated problem-solving and analytical skills, with the ability to prioritize and interpret large sets of data.
• Comfortable working on ambiguous and dynamic tasks in a fast-paced environment.
• Experience authoring or contributing to key security deliverables such as System Security Plans (SSPs) and Security Assessment Reports (SARs).

• Develop, maintain, and update System Security Plans (SSPs) and related security documentation in collaboration with the compliance team.
• Prepare for, participate in, and support security certification and compliance audits (e.g., CSF, HIPAA, PCI, HITRUST, SOC 1/2, NIST 800-53, GDPR).
• Collect, coordinate, and organize evidence in support of certifications (e.g., SOC 2, HITRUST).
• Review, analyze, and process security surveillance reports and vulnerability scan results; coordinate remediation efforts with technical teams.
• Support compliance automation initiatives and continuous monitoring activities.
• Independently manage assigned IT security projects, providing clear status reports, identifying risks, and recommending solutions for successful completion.
• Assist with internal and third-party security assessments to ensure ongoing compliance and risk mitigation.