Job Description

Employment Type:

Shift:

Description:

POSITION PURPOSE

Senior Cyber Threat Detection Analyst will apply experience, technical knowledge supporting cybersecurity monitoring and threat detection capabilities. Collaborates closely with peers across the Cyber Fusion Center, including Incident Response and Offensive Security teams, this colleague will enable best practices for cyber threat monitoring and detection. The role involves contributing to the strategic direction and overseeing the implementation of complex network security monitoring and alerting technologies. Additionally, the colleague will administer technologies such as SIEM, UEBA, SOAR, logging, monitoring solutions, and Managed Security Service Provider (MSSP) relationships. Incumbent mentors less experienced and more junior roles.

ESSENTIAL FUNCTIONS

• Knows, understands, incorporates, and demonstrates the Trinity Health Mission, Vision, and Values in behaviors, practices and decisions.
• Applies knowledge to better monitor and develop detections for cybersecurity events and alerts based on real world attacks and threat actor techniques.
• Provides in-depth administration, creation of rules, watchlists and tuning for SIEM, SOAR, UEBA and logging technologies.
• Keeps up to date with latest threat tactics, techniques and Procedures (TTPs) and applies the knowledge to create detection logic to discover malicious and anomalous activity
• Performs root cause analysis for all related and complex network security device outage and performance issues.
JOB IS FROM: italents.netVIEW
• Assists in the development of a technology architecture plan with a network security focus, in order to ensure integration and support of overall business requirements and strategic business objectives.
• Keeps abreast of current industry best practices; develops knowledge through self-study in order to increase expertise as subject matter expert for understanding, designing, and implementing network security solutions. 
• Educates and mentors Cyber Threat Detection analysts. May coach and review the work of lower level professionals. 
• Performs other duties as assigned.
• Maintains a working knowledge of applicable Federal, State and local laws/regulations; the Trinity Health Integrity and Compliance Program and Code of Conduct; as well as other policies and procedures in order to ensure adherence in a manner that reflects honest, ethical and professional behavior.
• pay grade 16 range 103,589.24-170,922.2437  Actual compensation will fall within the range but may vary based on factors such as experience, qualifications, education, location, licensure, certification requirements, and comparisons to colleagues in similar roles.

MINIMUM QUALIFICATIONS

• Bachelor’s degree with at least five (5) to seven (7) years of related experience in large complex environments performing enterprise level network security monitoring or response using hardware and software security solutions for LANs and WANs with latest technology or equivalent combination of education and applicable experience.
• Must possess advanced administrative experience with SIEM, Next Generation firewall systems, Experience with Palo Alto Networks is preferred. 
• Must have experience with log and alert management & troubleshooting tools such as CrowdStrike Falcon, WireShark, Cribl, Cortex XSOAR, ServiceNow.
• Familiar with the Cyber Kill Chain and MITRE ATT&CK framework
• Must possess experience in creating technical documentation, network diagrams, and job-aids with Microsoft applications Visio, Word, Excel and PowerPoint.
• Demonstrated leadership ability and detailed project management skills.
• Ability to work independently, manage multiple priorities and to effectively adapt to rapidly changing technology and business needs with demonstrated ability to prioritize projects & workload. 
• Certification Relevant industry certification is preferred (CISSP, GCDA, GCIA, GCIH, GSOM, GSOC, GDSA, GCIH, CEH, CCNP or CCSE).
• Must be team oriented, supportive, and committed to excellence and possess high level of initiative and self-motivation with demonstrated work ethic. 
• Must be committed to continual personal and profession growth, possess a pro-active approach with a willingness to “go the extra mile”, every time for the customer.

PHYSICAL AND MENTAL REQUIREMENTS AND WORKING CONDITIONS

• This position operates in a typical office environment.  The area is well lit, temperature-controlled and free from hazards.  
• Incumbent communicates frequently, in person and over the telephone, with people in several different locations on technical issues.  
• Manual dexterity is needed in order to operate a keyboard. Hearing is needed for extensive telephone and in person communications.  
• The environment in which the incumbent will work requires the ability to concentrate, meet deadlines, work on several projects at the same period and adapt to interruptions.  
• Must be available for on-call rotations to support 24x7x365 service availability.
• Must be able to travel to the various Trinity Health sites (up to 10%) as needed (may or may not apply).

Our Commitment to Diversity and Inclusion
 

Trinity Health is one of the largest not-for-profit, Catholic healthcare systems in the nation. Built on the foundation of our Mission and Core Values, we integrate diversity, equity, and inclusion in all that we do. Our colleagues have different lived experiences, customs, abilities, and talents. Together, we become our best selves. A diverse and inclusive workforce provides the most accessible and equitable care for those we serve. Trinity Health is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other status protected by law.