Senior Incident Response Analyst

Join to apply for the Senior Incident Response Analyst role at Centene Corporation.

1 day ago Be among the first 25 applicants.

You could be the one who changes everything for our 28 million members by using technology to improve health outcomes around the world. As a diversified, national organization, Centene's technology professionals have access to competitive benefits including a fresh perspective on workplace flexibility.

Resolves security incidents, recommends enhancements to improve security, identifies common attack patterns to publicly exposed aspects of the organization's environment, and contributes to the implementation of scalable and preventative security measures. Executes enterprise-wide Incident Response Plan. Partners with business units to accomplish enterprise-wide remediation and develops and delivers presentations to senior leadership team.

• Reviews current configurations of Centene’s production information systems and networks against compliance standards.
• Prepares for the prevention and resolution of security breaches and ensures incident and response management processes are initiated.
• Implements and discusses security service audit schedules, reviews access authorization, and performs required access controls testing to identify security shortfalls.
• Designs automated scripts, contingency plans, and other programmed responses launched when an attack against Centene’s systems is detected.
• Collaborates with Information Security Architects, Engineers, and stakeholders.
• Notifies internal and external teams according to alert priority levels, escalation trees, triaging security alerts, events, and notifications.
• Integrates third-party attack monitoring and threat reporting services into internal communication systems.
• Performs post-mortem analysis with logs, network traffic, and other recorded information to identify intrusions and unauthorized activities.
• Performs other duties as assigned and complies with all policies and standards.

Bachelor's degree in a quantitative or business field (e.g., statistics, mathematics, engineering, computer science) and 4–6 years of related experience, or equivalent experience demonstrating applicable knowledge, duties, scope, and skill.

• Knowledge of Tools, Techniques, and Processes (TTP) used by threat actors.
• Knowledge of Indicators of Compromise (IOC).
• Experience with SOAR platforms (e.g., Splunk SOAR, Palo Alto Cortex XSOAR, Tines, Torq).
• Experience with Endpoint protection and detection & response software (e.g., CrowdStrike, Carbon Black).
• Knowledge of network and infrastructure technologies including routers, switches, firewalls, etc.

• Intermediate knowledge seeking to deepen expertise.
• Ability to identify problems, collect data, establish facts, and draw conclusions.
• Ability to work independently.
• Demonstrated analytical and project management skills.
• High accuracy and sound judgment under pressure.

• Certifications like CySA+, CASP+, GCIA, GCIH, or equivalent are recommended.

Pay Range: $85,300 - $158,100 per year.

Centene offers comprehensive benefits including competitive pay, health insurance, 401K, stock plans, tuition reimbursement, paid time off, and flexible work schedules. Actual pay depends on skills, experience, education, and other factors. Total compensation may include additional incentives.

Centene is an equal opportunity employer committed to diversity. All qualified applicants will be considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or other protected characteristics.