Sr. Cybersecurity Incident Response Analyst - Technology Specialist II - Digital and Technology Partners, Remote

Sr. Cybersecurity Incident Response Analyst - Technology Specialist II - Digital and Technology Partners, Remote, Req#3024370

The Mount Sinai Cybersecurity Operations team is looking for a highly motivated Sr. Cybersecurity Incident Response Analyst.  The Sr. Cybersecurity Incident Response Analyst will be a key member of the Cybersecurity operations team at Mount Sinai Health System and participates in incident response, threat investigations, threat campaigns, creating new detection methodologies and providing expert support to the security monitoring team. The focus of the Sr. Cybersecurity Incident Response Analyst is to detect, analyze and respond to cybersecurity incidents to minimize the impact of an cyber incident. To execute this mission, the Sr. Cybersecurity Incident Response Analyst will use data analysis, threat intelligence, and cutting-edge security technologies.

• Respond and Triage Cybersecurity incidents from 3rd party MDDR providers
• Hunt for and identify threats and threat actor groups and their techniques, tools and processes
• Lead and participate in "hunt campaigns" using threat intelligence, analysis of anomalous log data and results of brainstorming sessions to detect and eradicate threat actors on the network.
• Provide expert analytic investigative support of large scale and complex security incidents
• Perform analysis of security incidents for further enhancement of use case and alert catalog
• Continuously improve processes for use across multiple detection sets for more efficient operations
• Provide forensic analysis of network packet captures, DNS, proxy, Netflow, malware, host-based security, and application logs, as well as logs from various types of security sensor
• Perform analysis of security incidents & threat actors for further enhancement of Detection Catalog and Hunt missions by leveraging the MITRE ATT&CK framework
• Validate suspicious events and incidents by using open-source and proprietary intelligence sources
• Work with partner teams to transform attacker TTPs into viable, low false-positive behavioral and signature detections using a variety of techniques including supervised, semi-supervised, and unsupervised ML, with an emphasis on sequential classification and pattern-matching 
• Interface with internal teams, as necessary, to resolve issues, provide additional information, and answer questions related to incidents and monitoring
• Become proficient with third-party threat intelligence tools as required
   

• Bachelors degree in a technical discipline; Masters degree preferred
• Prefer degree in one of the following: Computer Science, Engineering, Mathematics, Business Intelligence, Statistics or Cyber Security
• Ten years of related experience, In -depth knowledge of associated technology areas that could impact area of responsibility; healthcare technology experience preferred.

Strongly preferred:

• Experience using one or more SIEM and SOAR platforms
• Deep experience and understanding of network/host-based intrusion analysis
• Experience working with industry-wide frameworks and standards like MITRE ATT&CK, STIX, TAXII, and Cyber kill chain.
• Experience with EDR technologies (e.g., CrowdStrike, Carbon Black-Response, Defender ATP, Sentinel One)
• Experience managing security in cloud environments such as Azure, GCP or AWS 
• Experience with reverse-engineering, C&C exploitation, and broader system/network forensics
   

In addition, strongly prefer the ideal candidate to have:

• One or more certifications, including but not limited to GCIH, GCIA, GCFE, GREM, GCFA, GSEC, CEH
• Experience normalizing and parsing large data sets
• Ability to independently perform statistical analysis and inference, data modeling, clustering and predictive analysis
• Ability to translate cyber and application security issues into analytical models. Capability to effectively multitask
• Excellent verbal and written communication skills
• Knowledge of security appliances and professional / open source tools that support threat hunting, including understanding the analysis of competing hypotheses
• Experience with either Red team or Blue team operations and ability to think both like an attacker and defender
• A passion for research, and uncovering the unknown about internet threats and threat actors
• The ability to successfully interface with both internal and external clients
• The ability to document and explain technical details in a concise, understandable manner
   

Compensation Statement

The Mount Sinai Health System (MSHS) provides a salary range to comply with the New York City Law on Salary Transparency in Job Advertisements. The salary range for this role is $120,000.00 - $180,060.00 Annually. Actual salaries depend on a variety of factors, including experience, education, and hospital need. The salary range or contractual rate listed does not include bonuses/incentive, differential pay or other forms of compensation or benefits.

, 296 - DTP Security - MSH, Mount Sinai Hospital

Strength Through Diversity

The Mount Sinai Health System believes that diversity, equity, and inclusion are key drivers for excellence. We share a common devotion to delivering exceptional patient care. When you join us, you become a part of Mount Sinai’s unrivaled record of achievement, education, and advancement as we revolutionize medicine together. We invite you to participate actively as a part of the Mount Sinai Health System team by:  

• Using a lens of equity in all aspects of patient care delivery, education, and research to promote policies and practices to allow opportunities for all to thrive and reach their potential.
• Serving as a role model confronting racist, sexist, or other inappropriate actions by speaking up, challenging exclusionary organizational practices, and standing side-by-side in support of colleagues who experience discrimination.
• Inspiring and fostering an environment of anti-racist behaviors among and between departments and co-workers.

At Mount Sinai, our leaders strive to learn, empower others, and embrace change to further advance equity and improve the well-being of staff, patients, and the organization.  We expect our leaders to embrace anti-racism, create a collaborative and respectful environment, and constructively disrupt the status quo to improve the system and enhance care for our patients. We work hard to create an inclusive, welcoming and nurturing work environment where all feel they are valued, belong and are able to advance professionally.

 Explore more about this opportunity and how you can help us write a new chapter in our history!

“About the Mount Sinai Health System:

Mount Sinai Health System is one of the largest academic medical systems in the New York metro area, with more than 43,000 employees working across eight hospitals, more than 400 outpatient practices, more than 300 labs, a school of nursing, and a leading school of medicine and graduate education. Mount Sinai advances health for all people, everywhere, by taking on the most complex health care challenges of our time — discovering and applying new scientific learning and knowledge; developing safer, more effective treatments; educating the next generation of medical leaders and innovators; and supporting local communities by delivering high-quality care to all who need it. Through the integration of its hospitals, labs, and schools, Mount Sinai offers comprehensive health care solutions from birth through geriatrics, leveraging innovative approaches such as artificial intelligence and informatics while keeping patients’ medical and emotional needs at the center of all treatment. The Health System includes approximately 7,400 primary and specialty care physicians; 13 joint-venture outpatient surgery centers throughout the five boroughs of New York City, Westchester, Long Island, and Florida; and more than 30 affiliated community health centers. We are consistently ranked by U.S. News & World Report's Best Hospitals, receiving high "Honor Roll" status, and are highly ranked: No. 1 in Geriatrics and top 20 in Cardiology/Heart Surgery, Diabetes/Endocrinology, Gastroenterology/GI Surgery, Neurology/Neurosurgery, Orthopedics, Pulmonology/Lung Surgery, Rehabilitation, and Urology. New York Eye and Ear Infirmary of Mount Sinai is ranked No. 12 in Ophthalmology. U.S. News & World Report’s “Best Children’s Hospitals” ranks Mount Sinai Kravis Children's Hospital among the country’s best in several pediatric specialties. The Icahn School of Medicine at Mount Sinai is ranked No. 14 nationwide in National Institutes of Health funding and in the 99th percentile in research dollars per investigator according to the Association of American Medical Colleges. Newsweek’s “The World’s Best Smart Hospitals” ranks The Mount Sinai Hospital as No. 1 in New York and in the top five globally, and Mount Sinai Morningside in the top 20 globally.

The Mount Sinai Health System is an equal opportunity employer. We comply with applicable Federal civil rights laws and does not discriminate, exclude, or treat people differently on the basis of race, color, national origin, age, religion, disability, sex, sexual orientation, gender identity, or gender expression. We are passionately committed to addressing racism and its effects on our faculty, staff, students, trainees, patients, visitors, and the communities we serve. Our goal is for Mount Sinai to become an anti-racist health care and learning institution that intentionally addresses structural racism.”

EOE Minorities/Women/Disabled/Veterans