The Cybersecurity Engineer provides engineering and operational support for the SIEM and SOAR technologies area within corporate Cybersecurity. This position ensures that all system components are maintained, updated, monitored, accessible, and available in accordance with cybersecurity standards while partnering with other engineers to evaluate, test, and implement diverse solutions. The Cybersecurity engineer will assist in cybersecurity investigations leveraging SIEM and SOAR. Other key responsibilities include:
Serve as subject matter expert for the cybersecurity operations team and primary escalation point for SIEM platform issues, contributing to root-cause analysis, troubleshooting, and service restoration procedures.
Contribute to the development of enterprise-wide cyber security strategy by contributing to efforts with other stakeholders and working directly with service providers.
Reporting security gaps to leadership as applicable with appropriate recommendations
Providing strategic direction for our Corporate, our Healthcare Facilities, and related business lines regarding data security, incident response, emerging cyber security technologies, and industry best practices
Intermediate understanding of cloud environments and ingesting logs from these environments
Willingness to support on an as-needed basis (including after-hours) active SIEM and investigation support during active incident response efforts
Develop effective correlation rules and perform ongoing development for additional use cases
Tune SIEM components to ensure maximum reliability and reduce false positives
Integrate SIEM with a wide variety of data sources and industry-leading commercial security tools
Assist and perform testing of implemented solutions, recommend improvements, and support the deployment of changes following our change and release management process.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
Human Resources Request Form. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
BS in Computer Science or equivalent field preferred. Related job experience may substitute
GIAC-GCED, GCDA, GDSA, GMON, or other equivalent industry-standard security certifications preferred
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.