Senior Incident Response Analyst

Join to apply for the Senior Incident Response Analyst role at Centene Corporation.

Get AI-powered advice on this job and more exclusive features.

You could be the one who changes everything for our 28 million members by using technology to improve health outcomes around the world. As a diversified, national organization, Centene's technology professionals have access to competitive benefits including a fresh perspective on workplace flexibility.

Resolves security incidents, recommends enhancements to improve security, identifies common attack patterns to publicly exposed aspects of the organization's environment, and contributes to the implementation of scalable and preventative security measures. Executes enterprise-wide Incident Response Plan. Partners with business units to accomplish enterprise-wide remediation and develops and delivers presentations to the senior leadership team.

• Reviews current configurations of Centene’s production information systems and networks against compliance standards.
• Prepares the prevention and resolution of security breaches and ensures incident and response management processes are initiated.
• Implements and discusses security service audit schedules, reviews access authorization, and performs required access controls testing to identify security shortfalls.
• Designs automated scripts, contingency plans, and programmed responses launched when an attack against Centene’s systems is detected.
• Collaborates with Information Security Architects, Engineers, and stakeholders.
• Notifies internal and external teams according to alert priority levels, escalation trees, and triaging security alerts and events.
• Integrates third-party attack monitoring and threat reporting services into internal communication systems.
• Performs post-mortem analysis with logs, network traffic, and other data to identify intrusions and unauthorized activities.
• Performs other duties as assigned and complies with all policies and standards.

Bachelor's degree in a quantitative or business field (e.g., statistics, mathematics, engineering, computer science) and 4–6 years of related experience, or equivalent experience reflecting the position level.

• Knowledge of Tools, Techniques, and Processes (TTP) used by threat actors.
• Knowledge of Indicators of Compromise (IOC).
• Experience with SOAR platforms (e.g., Splunk SOAR, Palo Alto Cortex XSOAR).
• Experience with Endpoint protection and detection & response software (e.g., CrowdStrike, Carbon Black).
• Knowledge of network and infrastructure technologies including routers, switches, firewalls.

• Intermediate knowledge seeking to grow in the area of specialty.
• Ability to identify problems, collect data, and draw conclusions.
• Ability to work independently and demonstrate analytical and project management skills.
• High accuracy under pressure, excellent judgment, and decision-making skills.

• Recommended certifications: CySA+, CASP+, GCIA, GCIH, or equivalent.

Pay Range: $85,300.00 - $158,100.00 per year.

Centene offers comprehensive benefits including health insurance, 401K, stock plans, tuition reimbursement, paid time off, and flexible work schedules. Actual pay depends on skills, experience, education, and other factors. Total compensation may include incentives.

Centene is an equal opportunity employer committed to diversity. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or other protected characteristics.