On the Corporate Security team at Cognizant, we challenge ourselves every day to continuously meet the highest standards of security. Our purpose is to deliver world class security and risk management capabilities to protect and enable Cognizant’s trusted global business while creating client value and competitive differentiation. From oversight and coordination of security efforts to compliance and risk management, the Corporate Security team’s responsibilities span across multiple partners and clients in the marketplace to defend against today’s threats. Come join us and help build more secure and resilient infrastructure for the future!
Opportunity to Enter into Cyber Security
This role falls under the Health Care Security Operations Center, helping to secure integrated businesses, working with the Corporate Security team to verify and validate logs sources and respond to threats. The Security Analyst will monitor logs in a Security Information and Event Management (SIEM) platform and conduct Detection and Response activities that align with the Corporate Enterprise Security Monitoring plan.
This is a Tier 1 position within a team that focuses on 24/7 monitoring and reporting of security events and incidents leveraging a SIEM tool and several other security tools within a security suite.
Shift work required: Day, Mid, and Night. Quarterly Rotation.
Responsibilities
- Monitors various log sources from tools and applications such as Endpoint Detection and Response (EDR) logs, Intrusion Prevention/Detection Systems (IPS/IDS), firewall logs, Windows logs, Linux operating system logs, etc.
- Analyze, investigate, and respond to security events and incidents.
- Escalate high or critical incidents or complex security alerts to Senior Security Analysts.
- Track and update security incidents over the course of the incident lifecycle.
- Work with SIEM engineering to fine-tune rules for false positive alerts.
- Develop and suggest SIEM rules that help in detection of security incidents.
- Prepare documents and reports as requested.
- Attend meetings and training as required.
- Participate in knowledge sharing sessions.
- Recommend documentation improvements.
Minimum Qualifications:
- 0 or more years of Security Operations Center experience
- Some IT exposure (Networking, Service Desk, self-learning, etc.)
- Industry standard security certification (i.e., Security+ or other entry-level security certifications)
- Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, and interact with other members.
Preferred Qualifications
- SIEM software and EDR tool experience
- Well versed in log analysis on various log sources from Next-Gen firewalls, Domain Controllers, Linux operations systems, Anti-Virus logs, EDR/XDR, IPS/IDS, router and switch logs, etc.
- Experience in threat hunting, log integration, and incident case management.
- 1-2 years of Security Operations Center experience.
- 1-2 years of general IT support experience.
- Any experience with networking
Salary and Other Compensation:
Position will be posted until 2/29/23
The annual salary for this position is between [$32,900-$74, 200] depending on experience and other qualifications of the successful candidate.
This position is also eligible for Cognizant’s discretionary annual incentive program, based on performance and subject to the terms of Cognizant’s applicable plans.
Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:
- Medical/Dental/Vision/Life Insurance
- Paid holidays plus Paid Time Off
- 401(k) plan and contributions
- Long-term/Short-term Disability
- Paid Parental Leave
- Employee Stock Purchase Plan
Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.
Employee Status : Full Time Employee
Shift : Day Job
Travel : No
Job Posting : Jan 23 2024
Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.
Cognizant is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.
If you have a disability that requires a reasonable accommodation to search for a job opening or submit an application, please email CareersNA2@cognizant.com with your request and contact information.