Senior Security Engineer, Security Operations Center

CVS Health-posted 5 days ago
Full-time • Mid Level
5,001-10,000 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

At CVS Health, we’re building a world of health around every consumer and surrounding ourselves with dedicated colleagues who are passionate about transforming health care. As the nation’s leading health solutions company, we reach millions of Americans through our local presence, digital channels and more than 300,000 purpose-driven colleagues – caring for people where, when and how they choose in a way that is uniquely more connected, more convenient and more compassionate. And we do it all with heart, each and every day. Position Summary As a Senior Security Operations Center (SOC) Engineer you will be responsible for the identification and tracking of potential security incidents across the CVS Health enterprise. The Senior SOC Engineer is essential, as you are part of the first line of defense for CVS Health’s Information Security. The Senior SOC Engineer position is responsible for training new SOC analysts, assisting in intricate cyber security investigations as part of Threat Response activities, facilitating escalation of cyber security Incidents according to a well-documented Incident Response plan, creating, maintaining & updating SOP documentation for SOC Threat Response playbooks, metrics reporting, and ensuring correct analysis for the cyber security investigations. Additional Responsibilities Perform thorough investigative analysis of potential cyber security threats based on log review and correlating events which requires the documenting of results that create a timeline that can be read and understood by both technical and non-technical personnel. Review ongoing or completed investigations performed by Level 1/L2 SOC Analysts for potential escalation and / or provide analysis feedback to Analyst and SOC Manager. Work alongside other senior security engineers and architects to deliver superior security services to CVS Health business units. Develop, enhance, and operationalize processes to ensure quality of triage. Assist with the development, measurement, analysis, and maintenance of internal and external service metrics for Security Operations, providing timely reports to leadership teams. Leverage the metrics to make better informed decisions on improving the organization's capability and functionality. Lead, coordinate, and train others on effective analysis of security alerts. Work with Alert & Detection engineers (OCE) on the new alert creation, validation and tuning. Collaborate across various business units to deliver the most comprehensive security response to internal customers.

  • identification and tracking of potential security incidents across the CVS Health enterprise
  • training new SOC analysts
  • assisting in intricate cyber security investigations as part of Threat Response activities
  • facilitating escalation of cyber security Incidents according to a well-documented Incident Response plan
  • creating, maintaining & updating SOP documentation for SOC Threat Response playbooks
  • metrics reporting
  • ensuring correct analysis for the cyber security investigations
  • Perform thorough investigative analysis of potential cyber security threats based on log review and correlating events which requires the documenting of results that create a timeline that can be read and understood by both technical and non-technical personnel
  • Review ongoing or completed investigations performed by Level 1/L2 SOC Analysts for potential escalation and / or provide analysis feedback to Analyst and SOC Manager
  • Work alongside other senior security engineers and architects to deliver superior security services to CVS Health business units
  • Develop, enhance, and operationalize processes to ensure quality of triage
  • Assist with the development, measurement, analysis, and maintenance of internal and external service metrics for Security Operations, providing timely reports to leadership teams
  • Leverage the metrics to make better informed decisions on improving the organization's capability and functionality
  • Lead, coordinate, and train others on effective analysis of security alerts
  • Work with Alert & Detection engineers (OCE) on the new alert creation, validation and tuning
  • Collaborate across various business units to deliver the most comprehensive security response to internal customers
  • 5+ years of experience with networking concepts & protocols (TCP/IP, UDP, DNS, DHCP, HTTP, HTTPS, VPN, etc.)
  • 3+ years of experience with operating system architecture (Windows, UNIX, Linux, MacOS)
  • 3+ years of experience in Cybersecurity / InfoSec concepts (Phishing, Malware, Vulnerabilities, DDoS)
  • 3+ years of experience in various identity and access management / authentication concepts and technologies
  • Working experience and knowledge of two or more of the following security related technologies: Intrusion Prevention systems, Web Proxies, SIEM, SOAR, EDR, Firewalls, Web Application Scanner, Vulnerability Scanners, Malware Research Tools or Forensics Tools
  • Previous experience providing input on policy direction & best practices
  • Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan.
  • No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.
  • Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Operations Engineer Resume Examples
Operations Engineer Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service