We use cookies to improve your experience on our site. To find out more, read our privacy policy.

ChenMed Jobs

Home View All Jobs (423)

Job Information

ChenMed Counterintelligence Operations Analyst in Miami, Florida

We’re unique. You should be, too.

We’re changing lives every day. For both our patients and our team members. Are you innovative and entrepreneurial minded? Is your work ethic and ambition off the charts? Do you inspire others with your kindness and joy?

We’re different than most primary care providers. We’re rapidly expanding and we need great people to join our team.

The Insider Threat Operations Analyst will provide day-to-day insider threat subject matter expert services. Focus will be on insider threat program monitoring, detection and analysis, investigations, to assist leadership to make timely and well thought out decisions.

The incumbent conducts triage of anomalous events collected by User Activity Monitoring (UAM) Tools and other data analytics tools and sources to decipher underlying trends or uncover anomalies and discern obscure patterns and attributes. This position will assess events of concern and produce proactive Insider Threat leads and conduct follow-up and investigations on issues of unintentional or intentional misuse, violations of policies, continuous valuation, adjudicative and other insider threat concerns. The Insider Threat Analyst will conduct technical analyses of user activity data and alerts to identify indicators of insider threats.

The Insider Threat Operations Analyst reviews behavioral patterns and data pursuant to directed requests in support of workplace, fraud, or intelligence/investigations. Analysts will compile results of analyses and investigations into reports that are concise, accurate, and timely and be capable of presenting the results to team members and management as required.

ESSENTIAL JOB DUTIES/RESPONSIBILITIES:

  • Conducts technical analysis of user activity data and alerts to identify indicators of insider threats. Creates a hypotheses and performs analyses using tools to understand user dynamics and behavior.

  • Triages insider threat alerts by correlating insider threat data, behavioral data, and other data sources to determine potential indications of malicious or risky insider activity.

  • Provides guidance on building and/or maturing insider threat programs, detecting and responding to incidents, and implementation of tools and technologies used for enterprise security

  • Day to day monitoring, detecting, and analyzing data, information, processes, and behaviors to make determinations and if necessary, investigate potential vulnerabilities.

  • Implements and/or assesses existing security controls.

  • Develops governance-policies, procedures and processes.

  • Reviews existing technology capabilities and limitations and build business case for recommended new technology capabilities

  • Provides expertise level knowledge of tools and technologies used for enterprise insider threat.

  • Conducts analyses and insider threat investigations to include intelligence collection and forensics activities leveraging DLP, UBA, and CASB tools.

  • Provides expert in-depth knowledge in collecting, analyzing, and escalating security events, responding to insider incidents, and/or collecting, analyzing, and disseminating insider threat intelligence

  • Produces reports of analysis results for distribution to appropriate insider threat stakeholders, management, and team members.

  • Presents analysis results to management and team members to convey appropriate details in an easy to understand format.

  • Builds and leverages collaborative and constructive networks of diverse coworkers, peers, customers, stakeholders, and teams, within an organization and across the community to share knowledge and achieve results.

  • Performs other duties as assigned and modified at manager’s discretion.

KNOWLEDGE, SKILLS AND ABILITIES:

  • Strong technology, data, cyber, information security knowledge

  • Understanding of cyber security operations, event monitoring, backup tooling, and SIEM tools

  • Familiarity with security bypasses and backdoors to security controls as investigation points

  • Strong familiarity with cloud technologies such as Microsoft Azure and Amazon Web Services

  • Forensic investigations knowledge preferred

  • High level expertise to evaluate threats, countermeasures along with architecture to understand impact to enhance the overall security posture and risk

  • Understanding of business principals

  • Proven excellence in data and behavioral analytics

  • Critical thinker and solution finder for complex IT security situations and/or business processes vulnerable to insider threats

  • Familiarity with IT monitoring tools; configuration management; managing or maintaining user accounts and system privileges; risk and vulnerability assessments; operational threat assessments

  • Knowledge of network protocols; network security; information assurance management; cyber security capability validations; automated vulnerability scanning tools

  • Critical thinker - Structured analytic methodology, logical processing, integrate and synthesize diverse sources of information, creative application of insight, ability to derive/willingness to determine assessments, and systematic approach to gather, evaluate and use multiple sources of information to inform decisions and outcomes

  • Proficient in Microsoft Office Suite products including Word, Excel, PowerPoint and Outlook, spreadsheet, database, e-mail and presentation software

  • Ability and willingness to travel locally, regionally and nationwide up to 10% of the time

  • Spoken and written fluency in English

  • This job requires use and exercise of independent judgment

EDUCATION AND EXPERIENCE CRITERIA:

  • Associate or Bachelor’s degree; experience may substitute for education on a year-for-year basis above the minimum experience required.

  • Master’s Degree from an accredited University preferred

  • Three (3) years’ insider thread experience to include:

  • Counterintelligence, cyber-security, criminal investigations, incident response, application security, network security, security operations, security monitoring, or security focused system’s engineering;

  • Data loss protection, user behavior, and cloud access security broker analytics;

  • Conducting data analysis;

  • Experience developing governance (policies, procedures, process) for insider threat and risk programs a plus

  • SOC experience preferred

  • Background in law enforcement or intelligence preferred

  • Preferred certifications:

  • OSCP, GIAC, GCIH, GCFA, GCIA, GPEN, GNFA, GCUX, CEH, Linux+, Security+ CERT Certification

  • CIISP Certification

  • CSSP Analyst

  • 870 Certifications IAT

  • Insider Threat Risk Certification

We’re ChenMed and we’re transforming healthcare for seniors and changing America’s healthcare for the better. Family-owned and physician-led, our unique approach allows us to improve the health and well-being of the populations we serve. We’re growing rapidly as we seek to rescue more and more seniors from inadequate health care.

ChenMed is changing lives for the people we serve and the people we hire. With great compensation, comprehensive benefits, career development and advancement opportunities and so much more, our employees enjoy great work-life balance and opportunities to grow. Join our team who make a difference in people’s lives every single day.

Current Employee apply HERE (https://careers.chenmed.com/i/us/en/homerevisited)

Current Contingent Worker please see job aid HERE to apply

DirectEmployers