UnitedHealth Group is a health care and well-being company that’s dedicated to improving the health outcomes of millions around the world. We are comprised of two distinct and complementary businesses, UnitedHealthcare and Optum, working to build a better health system for all. Here, your contributions matter as they will help transform health care for years to come. Make an impact with a diverse team that shares your passion for helping others. Join us to start Caring. Connecting. Growing together. As a Senior Cybersecurity Analyst on the Cyber Threat Intelligence team, you will contribute to a fast-paced team focused on informing security teams and senior leadership of adversarial activity and threats to our environment. Your day-to-day duties will include investigating threats to our network and users and serve as the escalation point for technical intelligence analysis. You will bring hands-on intelligence experience to provide analytic support to CTI projects with large disparate data and systems with a sense of urgency to meet tight timelines for critical alerts and reports. Expertise in cyber intelligence, threat landscape and actor knowledge, intelligence platforms, vulnerability and risk analysis and writing reports are essential for success in this critical role. You’ll enjoy the flexibility to telecommute* from anywhere within the U.S. as you take on some tough challenges. Primary Responsibilities: Identify and track threat campaigns targeting the organization Monitor threat landscape to identify new tactics, techniques and procedures employed by threat actors and update associated profiles Investigate alerts from threat intelligence platform and other sources Manage intelligence requirements from internal stakeholders across operations, engineering, risk management and others, soliciting feedback to continually drive improvements Perform research and collection across the intelligence spectrum to support requests for information from internal teams Conduct trending and correlation across threat intelligence data to establish patterns, identify proactive mitigations, and develop countermeasures Develop threat intelligence reporting based on research and analysis Develop, manage, optimize and continuously improve processes to enhance the overall cyber threat intelligence function Support Cyber Defense and Engineering teams during incidents and other threat monitoring activities providing intelligence context, remediation recommendations and expertise Maintain relationships with external partners and other healthcare organizations Serve as mentor to other intelligence analysts and an escalation point for analysis related events What are the reasons to consider working for UnitedHealth Group? Put it all together – competitive base pay, a full and comprehensive benefit program, performance rewards, and a management team who demonstrates their commitment to your success. Some of our offerings include: Paid Time Off which you start to accrue with your first pay period plus 8 Paid Holidays Medical Plan options along with participation in a Health Spending Account or a Health Saving account Dental, Vision, Life& AD&D Insurance along with Short-term disability and Long-Term Disability coverage 401(k) Savings Plan, Employee Stock Purchase Plan Education Reimbursement Employee Discounts Employee Assistance Program Employee Referral Bonus Program Voluntary Benefits (pet insurance, legal insurance, LTC Insurance, etc.) More information can be downloaded at: You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: 5+ years of Cybersecurity experience 6+ years of combined experience in the following: Cyber Threat Intelligence investigations Operational security techniques for conducting online research and analysis Analyzing, tracking, and reporting of common threats and malware Analyzing, tracking, and reporting of advanced threat actor groups and associated TTPs Lockheed Martin Cyber Kill Chain and the MITRE ATT&CK framework Identifying connections between adversary tools, infrastructure, personas, and suspected affiliations using link analysis models Open and/or closed source intelligence gathering methods and processes 3+ years of experience using threat intelligence platforms and associated threat feeds as well as collecting, analyzing, interpreting, and reporting threat data 3+ years of experience independently leading multiple enterprise security projects 3+ years of experience with security technologies such as SIEM, IDS/IPS, etc. Experience mentoring and supporting junior analysts Experience with the intelligence cycle Experience writing reports for Senior leadership as well as standard operating procedures Preferred Qualifications: Security related certificates, such as: CISSP, GCTI, SANS/GIAC, Security+ Knowledge of various APT, cybercrime and other advanced threat actors Deep understanding of the current threat landscape and associated risks Understanding of conventions and models for intelligence attribution and intrusion clustering Knowledge of common intrusion tactics, techniques, and countermeasures Experience with threat concepts and frameworks (CVSS, CVE, MITRE ATT&CK, STIX/TAXII, YARA, FAIR) Experience with security technologies such as firewalls, email inspection and sandboxing, intrusion detection and preventions systems, endpoint detection and response Experience with network traffic and logging tools such as Splunk or Google Chronicle Ability to read, analyze and interpret general business periodicals, professional journals, technical procedures, or governmental regulations Ability to effectively present information and respond to questions from groups of employees, managers, clients, and customers Familiarity with the Diamond Model for Intrusion Analysis 2+ years working with Linux, OS X, UNIX, and/or Windows operating systems *All Telecommuters will be required to adhere to UnitedHealth Group’s Telecommuter Policy. California, Colorado, Nevada, Connecticut, New York, New Jersey, Rhode Island, Hawaii, Washington, or Washington D.C Residents Only: The hourly range for California, Colorado, Nevada, Connecticut, New York, New Jersey, Rhode Island, Hawaii, Washington, or Washington D.C residents is $88,000 to $173,200 per year. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. UnitedHealth Group complies with all minimum wage laws as applicable. In addition to your salary, UnitedHealth Group offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with UnitedHealth Group, you’ll find a far-reaching choice of benefits and incentives. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location, and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups, and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission. Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity / Affirmative Action employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law. UnitedHealth Group is a drug – free workplace. Candidates are required to pass a drug test before beginning employment. #RPO #Green
yara Intrusion Detection System (IDS) sandbox Splunk Logging tools Unix Business Analyst SIEM network-security Researcher network-traffic Tactics, Techniques, and Procedures (TTP) Intrusion Prevention System (IPS) taxii apt CompTIA Security+ Common Vulnerability Scoring System (CVSS) Linux Certified Information Systems Security Professional (CISSP) cve GIAC Firewalls Cybersecurity Risk analysis