[Remote] Staff Cyber Risk Analyst
Note: The job is a remote job and is open to candidates in USA. GE HealthCare is a leading global medical technology and digital solutions innovator. The Staff Cyber Risk Analyst will lead the Cyber Data Protection team in responding to incidents, developing detection analytics capabilities, and improving insider threat programs. Responsibilities include threat hunting, data analysis, and collaboration with various teams to enhance cybersecurity measures.
Responsibilities
- Lead the development and execution of the detection analytics capabilities within the Insider Threat program, including risk scoring models, thresholds, baselines, key indicators, and reporting.
- Maintain the strategic roadmap for key cybersecurity workstreams and measure effectiveness.
- Maintenance of a comprehensive response escalation process and procedures including the investigative processes.
- Perform daily response operations that may involve occasional non-traditional working hours - act as escalation points where necessary.
- Review of daily alerts, triage violations, raise cases and lead co-ordination of incidents across business and partner teams.
- Improve state of our insider program and platforms by configuring and updating policies, building the knowledge base, metrics management and maturity overall.
- Drive projects and work streams within the Insider Threat program including appropriate risk mitigation activities in the Data Protection space.
- Lead log ingestion and threat modelling activities in partnership with application owners and analytics platform teams, co-relate data and build policies to identify insider threats.
- Create dashboards, alerts and reporting in the analytics platform to identify trends, risk indicators and highlight areas to address risk.
- Participate in threat hunting activities, support triage work and case management with appropriate teams.
- Support relevant SOC tooling, platforms, infrastructure, code and automation processes, including development of new code, scripts, automation or upkeep of existing.
- Work with MSSPs, 3rd parties, Legal counsel, HR, IT, physical security, product, engineering and global teams on mitigation or remediation solutions. Skills
- Bachelor’s degree in computer science or “STEM” Majors (Science, Technology, Engineering and Math) with 6 years of relevant technical and SOC experience.
- Must be hands-on technical with experience in anomaly detection, data analytics, behavior analytics.
- Detailed understanding of Insider Threats, DLP (Data Loss Prevention), Data-level Security, and associated tactics.
- Experience in a technical Cyber SOC (Security Operations Centre) environment.
- Experience detecting and responding to cyber incidents in complex Information Technology environments.
- Experience with UEBA tools (Ex. Securonix, MS Purview IRM etc.) highly beneficial.
- Strong MS Sentinel/M365 experience (or other SIEM tools) in advanced reporting and alerting, queries, and data modelling.
- Scripting, coding and querying skills (Ex. Python, KQL, PowerShell, Bash, Python, Regex etc.).
- IT infrastructure background including familiarity with: Applications, Operating systems, Cloud, Networks, Databases, Cryptography, Identity & Access Management, Proxies etc.
- Training in Information Security specific disciplines (CISSP, Security+, SSCP, SANS, CERT, CMU-SEI, CEH certifications etc.).
- Experience with host-based detection and prevention suites, host-centric tools for forensic collection and analysis and Network Security Monitoring tools.
- Experience in working with Agile / Lean / Six Sigma process improvement methodologies.
- Master’s degree in business or information technology.
Benefits
- Medical
- Dental
- Vision
- Paid time off
- A 401(k) plan with employee and company contribution opportunities
- Life
- Disability
- Accident insurance
- Tuition reimbursement
Company Overview
- GE Healthcare provides a wide range of medical technologies and services to healthcare providers and researchers. It is a sub-organization of General Electric.
It was founded in 1892, and is headquartered in Chicago, Illinois, USA, with a workforce of 10001+ employees. Its website is Apply tot his job Apply tot his job Apply To this Job