Senior Cybersecurity Analyst

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Security, Computer Science, Criminal Justice, or a related field
• 5+ years of experience in cybersecurity
• 5+ years of experience in security analysis, investigations, insider risk, threat analysis, or digital forensics
• 3+ years of experience working knowledge of security logs, user activity monitoring, and investigative techniques
• 3+ years of experience of documenting findings clearly and communicating effectively with both technical and non‑technical audiences
• Strong analytical and critical‑thinking skills with the ability to assess risk objectively.
• Demonstrated ability to handle sensitive information with discretion and professionalism
• All Telecommuters will be required to adhere to UnitedHealth Group’s Telecommuter Policy.

Nice To Haves

• Experience supporting an insider risk, fraud, compliance, or digital forensics program
• Hands‑on experience with SIEM platforms (e.g., Splunk, Sentinel), DLP tools, endpoint security, or identity monitoring
• Familiarity with insider risk frameworks and best practices (e.g., CERT Insider Threat, NIST CSF)
• Experience collaborating with HR, Legal, Privacy, or Employee Relations teams
• Knowledge of privacy, data protection, and employee monitoring considerations in a regulated environment

Responsibilities

• Monitor and analyze user activity, system logs, and alerts to identify potential insider risk indicators, including data exfiltration, misuse of access, policy violations, or negligent behavior
• Perform analytical triage of insider risk alerts generated from enterprise security tools (e.g., SIEM, DLP, endpoint, identity, and email systems)
• Establish baseline user behavior and identify deviations that may indicate insider risk activity
• Conduct insider risk investigations by collecting, correlating, and analyzing data from multiple technical and non‑technical sources
• Document investigative findings, timelines, and conclusions in accordance with Insider Risk Program procedures and records‑retention requirements
• Prepare clear, concise investigative summaries and risk assessments for leadership and stakeholders
• Analyze logs, email activity, file access, web activity, and authentication events to support investigations
• Assist with digital forensic data collection and analysis in support of insider risk cases, as appropriate
• Develop, maintain, and refine queries, dashboards, and analytical workflows to improve detection efficiency and investigative quality
• Partner with HR, Legal, Compliance, Employee Relations, Privacy, and Information Security teams during insider risk reviews and investigations
• Support escalation and coordination with Enterprise Information Security for incidents requiring broader security response
• Participate in insider risk working groups and contribute to program governance activities
• Contribute to the development and enhancement of insider risk policies, procedures, and standard operating processes
• Assist in defining insider risk indicators, metrics, and reporting to support program maturity
• Support audits, assessments, and program evaluations related to insider risk management

Benefits

• In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements).
• No matter where or when you begin a career with us, you’ll find a far-reaching choice of benefits and incentives.