by Terrance Ellis | Jan 15, 2026 | Uncategorized
If you’re solid on the fundamentals and ready to level up fast, this role puts you in the middle of real security work: alert triage, vuln management, incident support, and automation. You’ll partner closely with senior SecOps and offshore teams to keep detections tight, remediation moving, and playbooks getting smarter over time.
About RethinkFirst
RethinkFirst is a behavioral health technology company making mental wellness, education, and support more accessible and scalable. Through platforms like RethinkEd, RethinkCare, and RethinkBH, they serve educators, employers, and providers with tools designed to deliver measurable, inclusive outcomes.
Schedule
Full-time | Remote
Remote eligibility: AL, AZ, CT, FL, GA, HI, IL, IN, KY, LA, MD, MA, MI, MN, MO, NC, NE, NH, NJ, NV, OH, OR, PA, RI, TN, TX, VA, WA, WI
What You’ll Do
- Review alerts escalated from a third-party SOC, perform initial triage, and document findings
- Execute defined response actions under senior guidance and contribute to incident investigations
- Maintain and improve security playbooks, runbooks, and knowledge base articles
- Assist with endpoint, identity, and cloud security monitoring
- Run recurring vulnerability scans (Tenable, Defender, etc.), verify remediation, and track progress to closure
- Track vulnerability SLAs and produce periodic metrics for leadership reporting
- Support automation efforts by testing and maintaining scripts/workflows and validating pipeline/dashboard data
- Help with tool integrations and API connections (EDR, SIEM, Jira, MDM, etc.)
- Participate in after-action reviews and lessons-learned sessions
- Collaborate with offshore SecOps engineers to standardize procedures and share knowledge
- Support compliance teams by providing data for audit evidence and control validation
What You Need
- 1–3 years of experience in IT, security operations, or system administration
- Foundational knowledge of cloud environments (Azure, AWS)
- Familiarity with SIEM tools (Sentinel, DataDog) and EDR platforms
- Basic scripting/automation skills (Python or PowerShell preferred)
- Understanding of common attack vectors and frameworks (MITRE ATT&CK, NIST CSF)
- Strong documentation and organizational skills
Benefits
- Health, dental, and vision coverage
- Flexible paid time off
- 11 paid company holidays
- 401(k) with matching
- Parental leave
- Access to RethinkCare platform supporting neurodiversity, resilience, and wellbeing
Here’s the real question before you get excited: are you aiming to be a future senior SecOps engineer or are you trying to stay “ticket-comfortable”? Because this role rewards the first mindset. If you want to grow, tailor your resume to show three things: clean incident documentation, measurable vuln remediation tracking, and at least one automation you built or improved.
Happy Hunting,
~Two Chicks…
by Terrance Ellis | Jan 15, 2026 | Uncategorized
If you’re the type who can keep audits calm, vendors honest, and evidence flowing without chasing people for three weeks, this role is built for you. You’ll run Security Assurance day-to-day, own Vanta, and keep RethinkFirst continuously audit-ready across SOC 2 Type II, HIPAA, and HITRUST in a cloud-forward SaaS environment.
About RethinkFirst
RethinkFirst is a behavioral health technology company making mental wellness, education, and support more accessible and scalable. Through platforms like RethinkEd, RethinkCare, and RethinkBH, they serve educators, employers, and providers with tools designed to deliver measurable outcomes.
Schedule
Full-time | Remote
Remote eligibility: AL, AZ, CT, FL, GA, HI, IA, IL, IN, KY, LA, MD, MA, MI, MN, MO, MT, NC, NE, NH, NJ, NV, OH, OR, PA, RI, TN, TX, VA, WA, WI, WY
What You’ll Do
- Lead Security Assurance across SOC 2, HIPAA, HITRUST, and related frameworks with year-round audit readiness
- Program-manage audits end-to-end, coordinating evidence collection with Legal, HR, Engineering, Product, and Infrastructure
- Own Vanta hands-on, including implementation, configuration, optimization, and ongoing operations:
- Control mapping and ownership assignments
- Evidence collection workflows and repositories
- Vendor risk modules and workflows
- Trust Center and client-facing security responses (questionnaires, RFPs, audit requests)
- Build and maintain audit calendars, evidence playbooks, and standardized collection processes
- Drive security policy, standards, and procedure development and upkeep
- Run Third-Party Risk Management: vendor tiering (including Tier 1/BAA), questionnaires, residual risk scoring, and contract security reviews
- Partner with SecOps to ensure tools (Tenable, Defender, Sentinel, etc.) produce audit-ready evidence and that operational controls stay compliant
- Support AppSec alignment with compliance requirements, including secure SDLC processes, risk assessments, and remediation tracking
What You Need
- 7+ years in Information Security, with 3+ years in GRC/Security Assurance leadership
- Hands-on Vanta experience (required)
- Proven work supporting SOC 2 Type II, HIPAA Security Rule, and HITRUST in a SaaS environment
- Strong Microsoft Azure security knowledge (Entra ID, RBAC, Conditional Access, Defender for Cloud, Sentinel, workload identities)
- Solid grasp of audit control design, evidence expectations, and control operation
- Experience building and running vendor risk programs, including DPAs/BAAs and due diligence
- Strong writing skills for policies, audit documentation, and customer security responses
- Comfortable leading cross-functional projects with deadlines and competing priorities
Benefits
- Health, dental, and vision coverage
- Flexible paid time off
- 11 paid company holidays
- 401(k) with matching
- Parental leave
- Access to RethinkCare platform supporting neurodiversity, resilience, and wellbeing
One quick gut-check: this is not a “set it and forget it” compliance gig. You’ll be herding cats across Engineering, HR, Legal, and vendors while keeping Vanta clean and audits smooth. If that sounds like control, clarity, and momentum to you, this role is a solid move.
Happy Hunting,
~Two Chicks…
by Terrance Ellis | Jan 15, 2026 | Uncategorized
This is a senior-level Salesforce build-and-own role supporting two Salesforce orgs and 1,000+ users. If you’re strong in Apex + Lightning, comfortable balancing low-code with custom code, and you like shipping real enhancements in an agile squad, this is built for you. Heads up: it’s hybrid, with one day a week onsite at the nearest tech hub.
About GoodLeap
GoodLeap is a tech company providing financing and software for sustainable home solutions like solar, batteries, HVAC, roofing, and windows. Their platform has powered $30B+ in financing since 2018, and they support GivePower, a nonprofit delivering clean water and electricity systems globally.
Schedule
Remote
Full-time
Locations: Roseville CA, San Mateo CA, Lehi UT, Austin TX, West Palm Beach FL, Plano TX
Salary: $146,000–$170,000/year (bonus eligible)
What You’ll Do
• Develop across two Salesforce environments supporting Service Cloud, Sales Cloud, Financial Services Cloud, and Experience Cloud for 1,000+ users
• Design and implement technical solutions using declarative tools when possible and custom code when needed
• Build and enhance data models and data flows
• Create custom apps/objects, flows, custom views, and other intermediate-complexity functionality
• Scope and deploy new requests using Apex, Visualforce, LWC, Aura, SOQL/SQL, JavaScript, plus tools like Data Cloud, Agentforce, OmniStudio, and Experience Cloud portals
• Evaluate downstream/upstream impacts of changes across systems and processes
• Participate in refinement, technical discussions, and code reviews
• Monitor org health, conduct audits, prep for upgrades, and support integrations/data feeds
• Partner closely with solution analysts, engineering manager, peer developers, and vendors to deliver end-to-end
What You Need
• 8+ years Salesforce Developer experience, including proven Senior Developer work
• Salesforce Platform Developer I certification (required)
• Advanced low-code Salesforce capability + strong custom dev skills
• Proficiency in Apex, LWC, Visualforce, Lightning Design System, SOQL/SQL, JavaScript
• Experience with API integrations (MuleSoft desired)
• Experience with Git/GitHub and CI/CD
• Strong requirements translation, deadline management, and prioritization skills
• Strong communication across all levels, including distributed teams (Zoom/Slack/email)
• Experience with large data sets and bulkification
• Experience working in SCRUM/Agile
Preferred
• Financial Services Cloud experience
• Agentforce, Data Cloud, MuleSoft, OmniStudio experience
• Background in green energy, financial services, mortgage, or payments
• Additional Salesforce certs (Admin, JavaScript Dev, Agentforce, etc.)
• Bachelor’s degree
Benefits
• [Not listed in posting]
Quick gut-check: if you’re not into hybrid or you’re missing PD1, this is a non-starter. If you’ve got the chops, this is a strong comp band and a modern Salesforce stack.
Happy Hunting,
~Two Chicks…
by Terrance Ellis | Jan 15, 2026 | Uncategorized
If you’re a certified coder who’s tired of chaos and loves clean, accurate charts, Curana Health will feel like home. You’ll code with precision in a multi-specialty environment, hit quality and productivity benchmarks, and serve as a go-to resource for the team.
About Curana Health
Curana Health is a national leader in value-based care focused on improving the health, happiness, and dignity of older adults. Founded in 2021, Curana now serves 200,000+ seniors across 1,500+ communities in 32 states, delivering proactive care solutions for senior living communities and skilled nursing facilities.
Schedule
Remote (United States)
Full-time
No visa sponsorship available at this time
What You’ll Do
• Perform abstracting and coding in a multi-specialty/place-of-service organization
• Assign accurate diagnosis and procedure codes and modifiers for outpatient and/or inpatient records
• Maintain timeliness while meeting productivity and quality benchmarks
• Apply industry coding standards and best practices in all coding and audit work
• Serve as a subject matter expert and resource to other staff
• Support additional coding-related duties as assigned by leadership
What You Need
• Coding certification required (RHIA preferred)
• 3+ years of outpatient coding experience preferred
• Bachelor’s degree preferred
• Strong time management, organization, and attention to detail
• Ability to multi-task and work independently in a remote environment
• Comfort collaborating with a team and supporting others as a resource
• Working knowledge of Microsoft Word, Excel, and Outlook
• Experience with 3M Coding Software
Benefits
• [Not listed in posting]
If your strength is accuracy, consistency, and keeping things compliant without shortcuts, this is a strong fit.
Coders who can hit quality and pace don’t stay available long. Move on it.
Happy Hunting,
~Two Chicks…
by Terrance Ellis | Jan 15, 2026 | Uncategorized
If you live in the intersection of data, healthcare, and “why is this file shaped like that,” this role is for you. You’ll own EDI mapping and transformations end-to-end, keep pipelines healthy in production, and help level up junior engineers while you’re at it.
About American Specialty Health Incorporated (ASH)
American Specialty Health supports members, providers, and health plans by powering access to benefits and services with reliable systems and strong operational support. ASH is remote-friendly, process-driven, and focused on secure, compliant work in a healthcare environment.
Schedule
Remote (United States)
Full-time
Remote training with company-provided equipment
Stable internet required for video meetings (minimum 50 Mbps download and 10 Mbps upload; 100/20 recommended)
Salary range: $72,000–$110,000 annually (based on qualifications, experience, and internal equity)
What You’ll Do
• Build and maintain EDI mappings across multiple file types using traditional mapping techniques and the ASH Gateway tool
• Manage inbound file/data processing and develop new files and reporting outputs
• Support a wide range of EDI transactions (enrollment, benefits, claims, financial) including X12 workflows
• Lead EDI connection implementations with clients and trading partners and oversee production workloads
• Monitor key reporting and data delivery jobs, identify errors fast, and drive resolution and prevention
• Create and maintain technical documentation and support junior engineers with their documentation
• Develop, debug, and maintain SQL reports and ETL-related processes
• Execute, monitor, and automate routine EDI jobs and reduce manual effort through automation
• Coach junior team members on testing and participate in UAT and defect resolution
• Recommend improvements and lead continuous improvement efforts across processes and tooling
What You Need
• Bachelor’s degree in information systems/business or equivalent experience (high school diploma required if equivalent path)
• 4+ years SQL Server experience with ETL emphasis (including SSIS packages)
• 4+ years experience with Python, JSON, and XSLT
• 4+ years enterprise development experience using Visual Studio
• 4+ years experience with source control and monitoring data pipeline processes
• 4+ years experience with file transfer protocols (sFTP) and QA practices
• Healthcare EDI experience with ASC X12 5010 standards (required)
• Strong analytical and troubleshooting skills, attention to detail, and comfort solving complex problems
• Ability to lead requirement discussions, mentor peers, and establish code review standards
• Knowledge of HIPAA guidelines and working in confidential environments
Benefits
• Company-provided equipment for your remote setup
• Remote training and collaboration with a distributed team
• Clear, structured environment focused on quality, documentation, and process improvement
• Equal Opportunity/Affirmative Action workplace
If you’ve been looking for a role where you’re not just “mapping files,” but actually owning integrations and improving the machine, apply while it’s open.
This is a real builder role with leadership baked in.
Happy Hunting,
~Two Chicks…
by Terrance Ellis | Jan 14, 2026 | Uncategorized
Lock down sensitive data where it lives. This contract role is for an Imperva pro who can configure, monitor, and strengthen data security controls across platforms, while helping teams close gaps before they turn into incidents.
About WaveStrong, Inc.
WaveStrong is an information security consulting firm delivering enterprise and cloud security services across government, education, and business. Their vendor-agnostic approach helps customers choose and implement the right security model for their environment.
Schedule
Remote, contract role
Location listed: San Ramon, CA (role is remote)
Customer-facing collaboration to monitor controls and address vulnerabilities
What You’ll Do
- Configure and monitor Imperva Data Security Fabric (DSF) to protect sensitive data across platforms
- Manage data security controls and support ongoing tuning and policy improvements
- Partner with stakeholders to identify vulnerabilities and implement mitigation plans
- Support database security best practices and contribute to incident response when needed
- Communicate findings, risks, and recommendations clearly to technical and non-technical audiences
What You Need
- Hands-on experience with Imperva Data Security Fabric (DSF) and either WAF and/or DAM
- Working knowledge of data privacy and protection regulations (GDPR, CCPA)
- Strong foundation in database security practices and security incident response
- Solid problem-solving skills and clear, professional communication
If you’ve been living in Imperva and you like roles where you can make systems safer fast, this one’s worth moving on.
Happy Hunting,
~Two Chicks…
