Senior Cyber Threat Intelligence Analyst - Golden Valley, MN - Full-time / Part-time

Position Description:



UnitedHealth Group is a company that's on the rise. We're expanding in multiple
directions, across borders and, most of all, in the way we think. Here,
innovation isn't about another gadget, it's about transforming the health care
industry. Ready to make a difference? Make yourself at home with us and start
doing your life's best work.(sm) 



The Senior Cyber Threat Intelligence Analyst is responsible for all
source/technical data collection and analysis in order to synthesize a common
operating picture of hostile intrusion-related activity. This includes
developing/maintaining new technical and non-technical sources of information,
threat research, threat actor profile development, historical, trend, link
analysis, threat briefings, indicators and warnings development, and reporting
aligned with stakeholder needs for purposes of providing advanced warning of
attacks to operations and users. The analyst will also serve as the CTIs
primary technical writer and knowledge manager.

Primary Responsibilities:

• Monitor daily intelligence operation feeds


• Author Cyber Threat Reports based on intelligence feeds


• Perform Targeting Profile collection, data processing
  and analysis


• Perform daily upkeep of UHG IT Threat Indicator
  Database targeting data, UnitedHealth Group APT Intrusion Set and most
  targeted users/programs metrics


• Monitor Intelligence Portals, attend monthly threat
  briefings and distribute reporting


• Provide research for next generation traditional and
  non-traditional cyber threat methods, techniques and tactics specific to
  evolving IT infrastructures and business globalization.


• Facilitate UnitedHealth Group to be a thought leader to
  external IT security communities of interest to active support and participation
  in externally focused research and development efforts in the areas of
  malcode, threat analysis, cybercrime, threat actor attribution analysis


• Evaluate source reporting, APT targeting data and
  adversary open source collection activities to determine what additional
  UnitedHealth Group programs need to be incorporated into the high-value
  target framework


• Identify assets (systems/users) associated with
  existing and future UnitedHealth Group programs


• Collaborate with UHG IT operational components to
  leverage High Value Target (HVT) data for incident prioritization


• Develop security recommendations for HVT assets


• Monitor HVT scans, providing oversight for timely
  finding remediation

Required Qualifications:

• 3+ years of experience in Information Security field
  with experience in at least one of the following




• Information Security Incident response activities


• Security Assessments and/or vulnerability management


• Offensive Security (Pentest and Exploitation)




• Basic understanding of SIEM technologies (ArcSight,
  EnVision, OSSIM etc.)


• 5+ years TCP/IP experience


• Familiarity with networking security product experience
  (DOP, IDS/IPS, Malware protection)


• Demonstrated ability to work in a team environment


• Strong understanding of Windows and UNIX/Linux low
  level operating systems functionality


• Strong understanding of enterprise level Networks,
  networking protocols, devices and architecture


• Excellent communication skills (both written and
  verbal)


• Bachelor's degree in Technology  (Information
  Technology, Computer Science, etc) OR HS Diploma/GED plus 7+ years
  equivalent experience  

Preferred Qualification:

• Security Certifications (CISSP / CISM / or related)
  preferred


• Security Architecture and/or Vulnerability Assessment
  experience highly preferred

Diversity creates a healthier atmosphere: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status.

UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment. In addition, employees in certain positions are subject to random drug testing.