Principal SOC Analyst

Senior Or Principal Security Operations Center Analyst

U.S. citizenship is required for this position due to Department of Defense restrictions

Who We Are

WPS Health Solutions is a leading not-for-profit health insurer in Wisconsin. Our services offer health insurance plans for individuals, families, seniors, and group plans for small to large businesses. We process claims and provide customer service support for beneficiaries of the Medicare program and manage benefits for millions of active-duty and retired military personnel across the U.S. and abroad. In 2021, WPS Health Solutions celebrated 75 years of making health insurance easier for those we serve. Proud to be military and veteran ready.

Our Culture

WPS' Performance-Based Culture is where the great work and innovations of our people are seen, fueled, and rewarded. We accomplish this by creating an inclusive, empowering employee experience, focusing on People, Work, and Conditions. This results in people bringing their authentic selves to work every day in an organization that successfully adapts to business changes and new opportunities. We are guided by our Purpose: Together, making health care easier for the people we serve.

In 2021, 2022 and 2023 WPS Health Solutions was recognized for several awards including:

• Madison, Wisconsin's Top Workplaces
• Top Workplace national cultural excellence awards for Remote Work and Work-Life Flexibility
• Achievers 50 Most Engaged Workplaces® with the further honor of Achievers "Elite 8" winner in the category of Culture Alignment

Role Snapshot

This position can be filled at the Senior Level or the more advanced Principal Level.By joining the Security Operations Center (SOC) team at WPS, you will be a pivotal member, a thought leader, that will drive the maturity and growth of our security program. You will not only be responding to alerts but will be creating new detection techniques, implementing new use cases and plays, tuning current detection methods and be a pivotal player in helping the SOC innovate using new technologies and platforms. WPS is a highly secure, highly compliant healthcare company providing innovative solutions to our healthcare customers and clients. In this role, you will:

• Tune and maintain current detection techniques.
• Create and maintain investigation and response plays that are used by other analysts.
• Mentor and enhance the other analysts' skills.
• Perform threat hunting and investigate new detection techniques.
• Participate in on call rotation with other SOC analysts.
• Act as a primary Incident Responder during Security Incidents.
• Collaborate with our IS business partners in enhancements or investigations.
• Pro-actively immunize WPS from emerging threats.
• Provide leadership, expertise, and solutions for complex initiatives.
• The WPS SOC is open to remote work with some occasional travel to WPS headquarters.
  Principal level:
  • Being a security thought leader, sharing innovative ideas, learning about cutting edge cyber security frameworks, systems and toolsets
  • Have the ability to take a leadership role in advanced SOC projects, implementations and upgrades.

How do I know this opportunity is right for me? If you:

• Understand threat actor tactics, techniques, and procedures.
• Understand NIST based security controls and how artifacts created by these controls will assist in detection and response.
• Are able to adapt and execute in the ever-changing threat landscape.
• Can be counted on to do the right thing with minimal supervision.
• Have experience with cloud monitoring and threat detection experience.
• Like to perform penetration Testing.
• Want to work in an environment that takes Compliance, Security and Ethics seriously and are willing to do the right thing no matter the situation.

What will I gain from this role?

• Working in a complex, highly security conscious environment that has a security umbrella encompassing consumer Health Insurance as well as large contracts with Center for Medicare and Medicaid Service (CMS) and Department of Defense (DoD).
• Exposure to modern detection and response tools, techniques and processes
• Cybersecurity Incident Response Team experience
• Being a strong collaborator who is willing to engage with other internal departments to creatively solve problems.
• Working in an environment that serves our Nation's military, veterans, Guard and Reserves along with their families.

Minimum Qualifications

• U.S. Citizenship is required for this position due to Department of Defense restrictions.
• Bachelor's Degree in related field or equivalent post high school and/or related work experience.
• Senior level: 1 or more year of related work experience.
• Principal level: 2 or more year of related work experience.

Preferred Qualifications

• Senior level: 5 or more year of experience working in a Security Operations Center environment.
• Principal level: 7 or more year of experience working in a Security Operations Center environment.
• Familiarity with MITRE AT&CK framework.
• Significant SIEM/SOAR experience
• Scripting skills (PowerShell and/or Python).
• Advanced understanding of Windows, Linux, and/or UNIX OS.
• Understanding of networking including packet capture analysis.
• Salary Range
  • Senior level: $100,000 ~ $125,000
  • Principal level: $120,000 ~ $153,000

The base pay offered for this position may vary within the posted range based on your job-related knowledge, skills, experience and may fall outside the posted range.

This role is open to remote work for this opportunity in the following approved states:

Arizona, Colorado, Connecticut, Florida, Georgia, Illinois, Indiana, Iowa, Michigan, Minnesota, Missouri, Nebraska, Nevada, New Jersey, North Carolina, North Dakota, Ohio, South Carolina, South Dakota, Texas, Virginia, Wisconsin

Benefits

• Remote and hybrid work options available
• Performance bonus and/or merit increase opportunities
• 401(k) with dollar-per-dollar match up to 6% of salary (100% vested immediately)
• Competitive paid time off
• Health, dental insurance, Teladoc starts DAY 1
• Review additional benefits here

Sign up for Job Alerts

FOLLOW US!

LinkedIn

Facebook

Twitter

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)