Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together. The Cybersecurity Analyst conducts network security investigations, cloud forensics, log analysis, host-based forensics, incident response, and case management. Candidates should be proficient at communicating verbal and written findings to stakeholders at all levels of the enterprise regarding cyber security incidents. You’ll enjoy the flexibility to telecommute* from anywhere within the U.S. as you take on some tough challenges. Primary Responsibilities: Mentor analysts, providing training and guidance through complex incidents Identify deficiencies in processes and tools, make corrective recommendations, and drive implementation of solutions and efficiencies Monitor incident throughput and ensure team consistently follows established processes Improve incident response times, establishing SLAs Integrate and collaborate with other subject matter experts throughout the organization Influence the creation and/or adoption of new standards and procedures Perform host-based digital forensics on Microsoft Windows systems primarily and other operating systems and document findings in clear and concise language Preserve evidence (both network and host) using forensically sound methods Establish, evaluate, and implement performance metrics Work with Security Architecture and Engineering teams to remain abreast of changes to IT infrastructure and business environments You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: High School Diploma/GED (or higher) 2+ years of experience working in computer forensics, cyber security investigation and other related fields 2+ years of experience conducting complex forensic investigations using industry standard forensic tools including but not limited to EnCase, FTK, F-Response or X-Ways 2+ years of experience with cloud environments and Forensics techniques in Azure, AWS, and GCP cloud services providers 2+ years of enterprise level triage; collecting artifacts from endpoints, network sensors, and application logs and performing corresponding analysis 2+ years working with and understanding enterprise-wide technology risks that are inherent to a business and an ability to effectively communicate those risks so stakeholders Preferred Qualifications: Direct experience with current advanced persistent threats (APT) Undergraduate degree or equivalent experience Deep expertise with EnCase Experience with NetWitness, FireEye, Splunk, and/or RSA Security Analytics Knowledge of Volatility, Rekall and/or Mandiant Redline Knowledge of Chain of Custody process and procedures Network traffic knowledge 1 or more of the following certifications: QSA, CCFP, EnCE, X-Pert, GCFE, GCFA, GNFA, CISSP, and/or GREM Certification *All Telecommuters will be required to adhere to UnitedHealth Group’s Telecommuter Policy. California, Colorado, Nevada, Connecticut, New York, New Jersey, Rhode Island, Hawaii, Washington, or Washington D.C Residents Only: The hourly range for California, Colorado, Nevada, Connecticut, New York, New Jersey, Rhode Island, Hawaii, Washington, or Washington D.C residents is $70,200 to $137,800 per year. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. UnitedHealth Group complies with all minimum wage laws as applicable. In addition to your salary, UnitedHealth Group offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with UnitedHealth Group, you’ll find a far-reaching choice of benefits and incentives. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes – an enterprise priority reflected in our mission. Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity / Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law. UnitedHealth Group is a drug – free workplace. Candidates are required to pass a drug test before beginning employment. #green #rpo
cloud environment Splunk Case Management Incident response Amazon Web Services (AWS) Azure encase Certified Information Systems Security Professional (CISSP) qsa Google Cloud Platform (GCP) Security Process improvement computer-forensics log-analysis Cybersecurity Security Architecture