Senior Incident Response Analyst

Join to apply for the Senior Incident Response Analyst role at Centene Corporation.

1 day ago Be among the first 25 applicants.

You could be the one who changes everything for our 28 million members by using technology to improve health outcomes around the world. As a diversified, national organization, Centene's technology professionals have access to competitive benefits including a fresh perspective on workplace flexibility.

Resolves security incidents, recommends enhancements to improve security, identifies common attack patterns to publicly exposed aspects of the organization's environment, and contributes to the implementation of scalable and preventative security measures. Executes enterprise-wide Incident Response Plan. Partners with business units to accomplish enterprise-wide remediation and develops and delivers presentations to senior leadership team.

• Reviews current configurations of Centene’s production information systems and networks against compliance standards.
• Prepares for the prevention and resolution of security breaches and ensures incident and response management processes are initiated.
• Implements and discusses security service audit schedules, reviews access authorization, and performs required access controls testing to identify security shortfalls.
• Designs automated scripts, contingency plans, and other programmed responses launched during detected attacks against Centene’s systems.
• Collaborates with Information Security Architects, Engineers, and stakeholders.
• Notifies internal and external teams according to alert priority levels, escalation trees, and triaging of alerts.
• Integrates third-party attack monitoring and threat reporting services into internal CIRT communications systems.
• Performs post-mortem analysis using logs, network traffic, and recorded information to identify intrusions and unauthorized activities.
• Performs other duties as assigned and complies with all policies and standards.

Bachelor's degree in a quantitative or business field (e.g., statistics, mathematics, engineering, computer science) and 4–6 years of related experience, or equivalent experience demonstrating applicable knowledge, duties, scope, and skills.

• Knowledge of threat actor TTPs.
• Knowledge of Indicators of compromise (IOC).
• Experience with SOAR platforms (Splunk SOAR, Palo Alto Cortex XSOAR, Tines, Torq).
• Experience with Endpoint protection and detection & response software (CrowdStrike, Carbon Black).
• Knowledge of network and infrastructure technologies (routers, switches, firewalls).

• Intermediate knowledge seeking to acquire more.
• Ability to identify problems, collect data, and draw conclusions.
• Ability to work independently.
• Strong analytical and project management skills.
• High accuracy, good judgment, and decision-making skills.

• Certifications such as CySA+, CASP+, GCIA, GCIH, or equivalent are recommended.

Pay Range: $85,300.00 - $158,100.00 per year.

Centene offers comprehensive benefits including pay, health insurance, 401K, stock plans, tuition reimbursement, paid time off, and flexible work schedules. Actual pay depends on skills, experience, education, and other factors. Additional incentives may apply.

Centene is an equal opportunity employer committed to diversity. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or other protected characteristics. Applicants with arrest or conviction records will be considered in accordance with applicable laws.