Cyber Defense Analyst

You’re more valuable than ever – And that’s just how we’ll make you feel.

The Cyberdefense Analyst will serve as a member of the Cybersecurity team at Gohealth, and will be responsible for the development, success, and support of the Cyberdefense team objectives and procedures. The mission of the team is to detect, analyze, triage, and manage security events from impacting the organization and establish highly effective repeatable processes and playbooks to ensure comprehensive protection exists to prevent unauthorized or malicious activities impacting the organization.

The Cyberdefense Analyst will have operational responsibilities for Cybersecurity technology used to detect and prevent malicious activities. The experienced Analyst will be responsible for updating, implementing, and following a Security incident response plan (IRP) and creating standard operating procedures (SOP). You will help support all aspects of Cyberdefense, and partner with our businesses, IT, Legal and Compliance to ensure GoHealth delivers on commitments to our customers as it relates to incident response, vulnerability management, mock phishing campaigns, cloud security controls, SIEM log integration, cloud events investigation, end point detection and response, develop remediation plans and lead a vendor management program.

This role is also responsible for daily review and investigation of security alerts from multiple sources, a point contact to a 24x7x365 managed detection and response (MDR), responding to compliance questionnaires and to help identify configuration flaws that can be used to exploit our environment.

Qualifications Education Required: • Bachelor’s degree

Work Experience Required: • 4+ years’ experience in Cybersecurity cloud/network controls, Cyberdefense monitoring, tackling, and blocking security vulnerability management and incident response required • Minimum 2+ years with servers, applications, Azure security knowledge, with maintain, operate, and support experience preferred

Preferred Qualifications, Education, Licenses, Certifications, Experience, etc.: • Possess one or more of the following certifications: Azure Certified, GIAC, CEH, GWAPT, GPEN or OSCP is preferred

Knowledge, Skills, and Abilities • This role involves interaction and collaboration with other departments and requires excellent judgment and interpersonal skills • Experience with Microsoft Azure Security, Amazon AWS, M365 threat protection, end point security products • Experience managing an enterprise EDR solutions such as Blackberry EDR, Crowdstrike, SentinelOne or MS Defender • Hands on with LogRythm SIEM, Cisco Umbrella, Knowbe4 and Digital Defense Intelligence • Excellent verbal and written communication skills and the proven ability to influence people • Ability to work collaboratively and professionally with all levels in dynamic situations • Familiarity with HIPPA and HITRUST framework, NIST, experience with regulation compliance

Essential Duties and Responsibilities • Managing relationships with our IT operational team to learn our environment and collaborate on software, systems, or network configuration changes. • Maintain vendor management standards, questionnaires, and processes to adhere to regulatory compliance. • Implement / maintain technical control systems and monitor log events for unusual or suspicious activity. • Perform threat monitoring – monitor industry resources, latest hardware, and software vulnerabilities, and observe new technical developments, intruder activities and related trends to help identify threats to GoHealth. • Follow incident handling processes, such as incident discovery, analysis and verification, incident tracking, containment and recovery, incident response coordination with Legal and notification as needed. • Prepare Cybersecurity advisories and security information bulletins. • Develop and document standard operating procedures for the Cyberdefense team. • Develop and maintain information security operational metrics, such as # of incidents, types of incidents, # of application security findings, EDR and/or missing security vulnerability patches. • Conduct daily security log management and monitoring. • Perform malware analysis and provide mitigating controls. • Perform data analysis, develop use cases and playbooks in support of a security management process. • Provide analysis and information gathering to provide situational awareness and actionable intelligence response.

• Document, communicate, and help to resolve feedback, questions, and enhancement requests along with others on the GoHealth IT and operational staff. • Escalating risks and issues as appropriate to leadership, Project management and/or the external partner. • Collaborate with a great team of people moving exciting projects forward and working to improve systems, Culture, Cybersecurity, and processes along the way.

GoHealth Core Values GoHealth’s Core Values, listed below, are essential functions of this position: • Collaboration: Takes ownership for collectively establishing productive partnerships and relationships and seek to gain joint understanding of priorities and objectives so that the greater good of the organization and those we serve is always at the forefront. • Innovation: Consistently uses good judgment, applying creativity to overcome obstacles and increasing effectiveness and efficiency through process and other forms of innovation. • Diversity & Inclusion: Fosters diversity and inclusion, to be able to better understand team members, our customers and partners. Engages the strengths and talents of each GoHealth team member, creating an environment of involvement, respect and connection where the richness of ideas, backgrounds and perspectives are harnessed. • Courage & Integrity: Models and practices the highest ethical and professional standards; demonstrates pride and personal interest in our patients, partners and fellow team members, deeply engaging in the business. Makes decisions, with a focus on doing the right thing; treats team members, our customers, partners and vendors with dignity, consideration, open-mindedness and respect. • Accountability: Always shows initiative, demonstrates a bias to action and gets things done. Actively accepts responsibility for diverse roles, obligations and actions that positively influence patient and customer outcomes, our partnerships and the healthcare needs of our communities.

Physical Requirements • Office Environment: Tasks may be conducted within a climate-controlled office setting. • Physical Activity: The role may require the ability to lift, carry, push, or pull materials, supplies, and equipment (up to 25 lbs.) Duties typically involve a combination of sitting, standing, and walking, with frequent changes in position. • Travel: Travel may be required, including travel between Company locations and out-of town destinations as needed. Up to 10%. • Safety Equipment: May require the use of safety equipment for infection prevention.

Note: This Job Description is not inclusive of all the duties of the position. You may be asked by Leaders to perform other duties. Leadership may revise this job description at any time.

Equal Employment Opportunity Statement The Company and its affiliates, joint venture partners and entities under common management are Equal Opportunity Employers. They do not discriminate based on race, color, religion, national origin, age, sex, disability, veteran status, sexual orientation, gender identity, or any other protected status under federal, state, or local law.

ADA Accommodation Statement Reasonable accommodations are available for qualified individuals with disabilities upon request. This role defines success by achieving essential function outcomes, not by the method of completion. Compliance Statement This job will be performed consistent with ADA, FMLA, FLSA, and other applicable federal, state, and local laws regulating employment.

Set up email alerts as new job postings become available that meet your interest! 

All qualified persons are granted an equal opportunity for employment without regard to race, color, religion, sex, sexual orientation and gender identity or expression, age, national origin, citizenship status, disability, genetic information, medical condition, family care leave status, pregnancy or pregnancy-related condition, otherwise qualified disabled or veteran status. The company will comply with all fair employment laws in each of the jurisdictions where we conduct business.
For applicants in California, please review our California Consumer Privacy Statement here. https://www.gohealthuc.com/privacy-policy