Jobs
>
Eden Prairie

    Principal Cybersecurity Analyst, Threat Intelligence - Eden Prairie, United States - UnitedHealth Group

    UnitedHealth Group
    UnitedHealth Group Eden Prairie, United States

    1 week ago

    UnitedHealth Group background
    Regular, Full time
    Description
    Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives.

    The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best.

    Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities.

    Come make an impact on the communities we serve as you help us advance health equity on a global scale.

    Join us to start Caring. Connecting. Growing together.


    Principal Cybersecurity Analyst, you will serve as team lead for CTI analysts, assist management with operational duties and serve as the escalation point for technical intelligence analysis.

    You will bring hands-on intelligence experience to provide analysis support working on CTI projects with large disparate data and systems with a sense of urgency to meet tight timelines for critical alerts and reports.

    Expertise in cyber intelligence, threat landscape and actor knowledge, intelligence platforms, vulnerability and risk analysis and writing reports are essential for success in this critical role.

    You will participate in information sharing and analysis groups that are located in the US and offshore resulting in travel and working across differing time zones.

    You'll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges.


    Primary Responsibilities:
    Identify and track threat campaigns targeting the organization

    Develop and maintain threat actor profiles along with associated activity, trends, TTPS, etc. from all available sources

    Monitor threat landscape to identify new tactics, techniques and procedures employed by threat actors and update associated profiles

    Analyze malware and other threats to identify artifacts, behaviors and indicators

    Manage intelligence requirements from internal stakeholders across operations, engineering, risk management and others, soliciting feedback to continually drive improvements

    Perform research and collection across the intelligence spectrum to support requests for information from internal teams

    Conduct trending and correlation across threat intelligence data to establish patterns, identify proactive mitigations, and develop countermeasures

    Develop threat intelligence reporting based on research and analysis

    Develop, manage, optimize and continuously improve processes to enhance the overall cyber threat intelligence function

    Support Cyber Defense and Engineering teams during incidents and other threat monitoring activities providing intelligence context, remediation recommendations and expertise

    Maintain relationships with external partners such as the FBI, DHS, NH-ISAC, and other healthcare organizations

    Serve as mentor to other intelligence analysts and an escalation point for analysis related events


    You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.


    Required Qualifications:
    Undergraduate degree or 5+ years of Cybersecurity experience

    6+ years of combined experience in the following:
    Operational security techniques for techniques for conducting online research and analysis

    Analyzing, tracking, and reporting of common threats and malware

    Analyzing, tracking, and reporting of advanced threat actor groups and associated TTPs

    Using the Diamond Model for Intrusion Analysis to cluster, track, and group threat activities

    Lockheed Martin Cyber Kill Chain to depict and analyze discreet phases of adversary operations

    MITRE ATT&CK framework of adversary operational TTP's

    Identifying connections between adversary tools, infrastructure, personas, and suspected affiliations using link analysis models

    Open and/or closed source intelligence gathering methods and processes

    5+ years of experience managing threat intelligence platforms and associated threat feeds coupled with collecting, analyzing, interpreting, and reporting threat data

    5+ years of experience independently leading multiple enterprise security projects

    4+ years of experience with security technologies such as SIEM, IDS/IPS, Snort, Suricata, Bro, etc.

    2+ years working with Linux, OS X, UNIX, and Windows operating systems

    2+ years of experience mentoring and supporting junior analysts


    Preferred Qualifications:

    Security related certificates, such as:
    CISSP, GPEN, GCIH, GREM, GCTI

    Knowledge of cyber threat models such as the Diamond Model of Intrusion Analysis and Cyber Kill Chain

    Knowledge of various APT, cybercrime and other advanced threat actors

    Deep understanding of the current threat landscape and associated risks

    Understanding of conventions and models for intelligence attribution and intrusion clustering

    Knowledge of common intrusion tactics, techniques, and countermeasures

    Threat concepts and frameworks (CVSS, CVE, MITRE ATT&CK, STIX/TAXII, YARA, FAIR)

    Experience with security technologies such as firewalls, email inspection and sandboxing, intrusion detection and preventions systems, endpoint detection and response

    Experience with netflow data, network traffic and packet capture analysis

    Ability to write reports, business correspondence and procedure manuals

    Ability to read, analyze and interpret general business periodicals, professional journals, technical procedures, or governmental regulations

    Ability to effectively present information and respond to questions from groups of employees, managers, clients, and customers

    Ability to interpret a variety of instructions furnished in written, oral, diagram or schedule form

    *All employees working remotely will be required to adhere to UnitedHealth Group's Telecommuter Policy.

    California, Colorado, Connecticut, Hawaii, Nevada, New Jersey, New York, Rhode Island, or

    Washington Residents Only:
    The salary range for this role is $104,700 to $190,400 annually. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. UnitedHealth Group complies with all minimum wage laws as applicable.

    In addition to your salary, UnitedHealth Group offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements).

    No matter where or when you begin a career with UnitedHealth Group, you'll find a far-reaching choice of benefits and incentives.


    Application Deadline:

    This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected.

    Job posting may come down early due to volume of applicants.


    At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone.

    We believe everyone–of every race, gender, sexuality, age, location and income–deserves the opportunity to live their healthiest life.

    Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes.

    We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission.


    Diversity creates a healthier atmosphere:

    UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

    UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment.
  • UnitedHealth Group

    Principal Cybersecurity Analyst, Threat Intelligence

    2 weeks ago

    UnitedHealth Group Eden Prairie, United States

    Identify and track threat campaigns targeting the organization Develop and maintain threat actor profiles along with associated activity, trends, TTPS, etc. from all available sources Monitor threat landscape to identify new tactics, techniques and p Cybersecurity Analyst, Securi ...

  • UnitedHealth Group

    Principal Cybersecurity Analyst, Threat Intelligence

    4 days ago

    UnitedHealth Group Eden Prairie, United States

    Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel ...

  • N/A

    Threat Hunter II

    1 week ago

    N/A Eden Prairie, United States

    Problem Solvers. Proactive Protectors. Relentless Allies. · Ready to join us? Let's get started. · A Threat Hunter is a technical role that focuses on identifying novel threats impacting Fortra clients and devising strategies to improve Fortra's ability to quickly detect simila ...

  • HelpSystems

    Security Operations Manager

    1 week ago

    HelpSystems Eden Prairie, United States

    Problem Solvers. Proactive Protectors. Relentless Allies. Ready to join us? Let's get started. The Security Operations Manager is an experienced leader responsible for overseeing Fortra's Security Operations Center (SOC) activities. The ideal candidate will have a solid backgroun ...

  • Arctic Wolf Co

    CyberSecurity Skillbridge Internship

    1 week ago

    Arctic Wolf Co Eden Prairie, United States InternshipSHIP

    Ready to further your career in the fast-paced, exciting world of cyber security? · Arctic Wolf, with its unicorn valuation, is the leader in security operations in an exciting and fast-growing industry-cybersecurity. We have won countless awards for our excellence in security o ...

  • Agropur, inc.

    Global Director OT Security

    3 weeks ago

    Agropur, inc. Eden Prairie, United States Regular, Full time

    Job Type: · RegularThe Director OT Security is responsible to support our plants and partners in implementing an integrated security, vigilance, and resilience strategy in the face of Cyber threats. This position will support our plants in identifying and understanding their main ...

  • UnitedHealth Group

    Business Analyst Consultant

    1 week ago

    UnitedHealth Group Minnetonka, United States

    At UnitedHealthcare, we're simplifying the health care experience, creating healthier communities and removing barriers to quality care. The work you do here impacts the lives of millions of people for the better. Come build the health care system of tomorrow, making it more resp ...

  • UnitedHealth Group

    Business Analyst Consultant

    5 days ago

    UnitedHealth Group Minnetonka, United States

    At UnitedHealthcare, we're simplifying the health care experience, creating healthier communities and removing barriers to quality care. The work you do here impacts the lives of millions of people for the better. Come build the health care system of tomorrow, making it more resp ...

  • Vital Images

    Sales Manager

    2 weeks ago

    Vital Images Minnetonka, United States

    The Sales Manager is responsible for expanding Canon s North American customer base by promoting and selling Canon s leading Advanced Visualization and AI Automation portfolio. This role will identify new business opportunities by staying up to date on Medical Imaging Advanced Vi ...

  • Canon Medical Informatics

    Sales Manager

    1 week ago

    Canon Medical Informatics Hopkins, United States

    POSITION OVERVIEWWe are looking for a talented and motivated Sales Manager to join our team at Canon Medical As the Sales Manager, you will spearhead efforts to expand Canon's North American customer base by promoting and selling our leading Advanced Visualization and AI Automati ...

  • Canon Medical Informatics

    Sales Manager

    1 week ago

    Canon Medical Informatics Hopkins, United States

    POSITION OVERVIEW · We are looking for a talented and motivated Sales Manager to join our team at Canon Medical As the Sales Manager, you will spearhead efforts to expand Canon's North American customer base by promoting and selling our leading Advanced Visualization and AI Auto ...

  • CrowdStrike

    Threat Hunter, GovCloud 2nd Shift

    6 days ago

    CrowdStrike Minneapolis, United States

    CrowdStrike, Inc. Full time R18105 About the Role: The CrowdStrike OverWatch GovCloud team is seeking a motivated Threat Hunter/Intrusion Analyst with technical skills to analyze threat actor activity, identify intrusions, create detections, and track campaigns as part of our Thr ...

  • CrowdStrike

    Client Success Advisor

    6 days ago

    CrowdStrike Minneapolis, United States

    CrowdStrike, Inc. Full time R18492 About the Role: The CrowdStrike Counter Adversary Operations (CAO) team is seeking a customer-centric individual to act as a regional advisor to CAO Elite customers. Client Success Advisors (CSA) achieve success by delighting our clients through ...

  • Amazon Services

    Risk Analyst

    2 weeks ago

    Amazon Services Minneapolis, United States

    It's no secret that Amazon relies on its technology to deliver millions of packages every day to its customers – on time, with low cost. The Middle Mile Transportation Technology organization, builds complex software solutions that work across our vendors, warehouses and carriers ...

  • Amazon Services

    Risk Analyst

    22 hours ago

    Amazon Services Minneapolis, United States

    It's no secret that Amazon relies on its technology to deliver millions of packages every day to its customers – on time, with low cost. The Middle Mile Transportation Technology organization, builds complex software solutions that work across our vendors, warehouses and carriers ...

  • Amazon Services

    Risk Analyst

    1 week ago

    Amazon Services Minneapolis, United States

    Its no secret that Amazon relies on its technology to deliver millions of packages every day to its customers on time, with low cost. The Middle Mile Transportation Technology organization, builds complex software solutions that work across our vendors, warehouses and carriers to ...

  • Amazon Services

    Risk Analyst

    3 days ago

    Amazon Services Minneapolis, United States

    Job ID: | Services LLC · It's no secret that Amazon relies on its technology to deliver millions of packages every day to its customers – on time, with low cost. The Middle Mile Transportation Technology organization, builds complex software solutions that work across our vendor ...

  • LMI Government Consulting (Logistics Management Institute)

    Public Health

    1 week ago

    LMI Government Consulting (Logistics Management Institute) Minneapolis, MN, United States

    Overview LMI is seeking a Public Health Coordinator to join our DHS CWMD BioDetection Support Team as a Jurisdictional Coordinator · This position requires the ability to obtain and maintain both DHS Suitability and a Secret clearance · You must be a U.S · citizen · This is an Of ...

  • Getac

    Information Security Manager

    6 days ago

    Getac Minneapolis, United States

    The Company: · Getac is comprised of a passionate team that takes pride in its our tight-knit culture. We are committed to our employee fulfillment by providing a flexible work schedule, honoring achievements, and maintaining a supportive working environment. Getac strives to p ...

  • American K-9 Detection Services LLC

    K9 Handler

    2 weeks ago

    American K-9 Detection Services LLC Minneapolis, United States

    POSITION SUMMARY The Handler is responsible with screening cargo in compliance with TSA rules and regulations. The Handler is required to complete a 4-8 weeks minimum team training course and certification prior to mobilization to the assigned location. RESPONSIBILITIES Participa ...