Senior Info Security Engineering Analyst - SIEM Engineer

Requisition Number: 2356996
Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together.
We are seeking an experienced SIEM Engineer with strong hands-on expertise in Microsoft Sentinel, Splunk, and CrowdStrike to design, implement, and manage enterprise security monitoring solutions. The ideal candidate will have deep knowledge of incident detection & response, along with exposure to network security technologies such as firewalls, IDS/IPS, and email security solutions.
Primary Responsibilities:

• Design, deploy, and maintain SIEM platforms including Microsoft Sentinel, CrowdStrike and Splunk
• Develop and optimize use cases, detection rules, dashboards, and alerts
• Integrate multiple log sources (cloud, on-prem, applications, endpoints) into SIEM
• Perform security incident triage, investigation, and response
• Leverage CrowdStrike for endpoint detection and response (EDR) and threat hunting
• Tune SIEM and EDR solutions to reduce false positives and improve detection accuracy
• Conduct threat hunting activities using telemetry from SIEM and EDR tools
• Work closely with SOC teams to support incident handling and escalation
• Perform log analysis and correlation to identify potential security threats
• Implement automation using playbooks, SOAR, or scripting (PowerShell/Python)
• Ensure compliance with security policies, standards, and frameworks
• Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so

Required Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field
• Relevant certifications (preferred but not mandatory):
  Microsoft SC-200 / AZ-500
• Splunk Certified Power User / Admin
• CrowdStrike certifications
• CEH, CISSP, or equivalent
• Solid hands-on experience with:
  • Microsoft Sentinel (Azure SIEM/SOAR)
  • Splunk (Enterprise Security preferred)
  • CrowdStrike Falcon (EDR)
• Hands-on experience with:
  • Firewalls (Palo Alto, Fortinet, Check Point, etc.)
  • IDS/IPS solutions
  • Email Security Gateways (Proofpoint, Mimecast, O365 Defender, etc.)
• Experience in incident response and security event analysis
• Solid knowledge of SIEM architecture, log management, and correlation
• Understanding of network protocols (TCP/IP, DNS, HTTP, etc.)
• Familiarity with:
  • Azure Security / Cloud Security concepts
  • Threat intelligence platforms
  • MITRE ATT&CK framework
  • Scripting knowledge (Python / PowerShell)
  • Experience with SOAR tools

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission.
Optum is a drug-free workplace. © 2026 Optum Global Solutions (Philippines) Inc. All rights reserved.