General Electric Cyber SOC Analyst – Sr. Incident Responder in Bengaluru, India
Job Description Summary
At GE Healthcare, we are building a new portfolio of Cyber Commercial offerings to help customers combat the threat of growing cyber-attacks. For this purpose, we have set up a Cyber Security Operations Center to monitor customers clinical networks and devices for cyber threats. For this purpose, we are seeking A Cyber Secure Operations Center (SOC) Analyst, who will be part of a dynamic, growing team, responsible for the remote provisioning of cybersecurity technologies, monitoring, and responding to cybersecurity events occurring in customers’ production environments.
GE Healthcare is a leading global medical technology and digital solutions innovator. Our mission is to improve lives in the moments that matter. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world.
In this role, you will:
As a SOC Analyst, you will be expected to work in an intense, 24×7 operational environment focused on monitoring, alerting and remediation of identified cybersecurity issues, potentially targeting clinical medical devices or customers’ enterprise IT computing environments.
In addition to real-time threats, you must be able to research, document, and report on emerging cybersecurity trends facing healthcare industries worldwide.
You must be able to demonstrate strong leadership abilities in a large corporate environment, as well as able to understand and convey technical risk aspects to different audiences.
Perform daily customer network/system monitoring and response operations
Configure/tune cybersecurity monitoring systems/tools, and develop scripts and correlation rules
Strong verbal and written communication skills
4-year degree in Computer Science or a related technical degree
1+ years’ of experience detecting and remediating cybersecurity issues in a Clinical Operations Technology environment.
1+ years' experience as a Security/Network/System Administrator or equivalent knowledge.
In-depth knowledge of various operating systems (Microsoft Windows, Linux, MacOS, Android, etc.)
In-depth knowledge of TCP/IP Protocols, Network analysis, Packet capture, Routing/Switching, Network segmentation, Network/System/Host level operating principals and security controls.
Working knowledge of various relational database technologies (Microsoft SQL, MySQL, Oracle, etc.)
Working knowledge of various security methodologies, processes, and technical security solutions (e.g. Firewalls, Intrusion Detection/Prevention systems, Access Control Lists, Network Segmentation, SIEMs, Auditing/Logging and Identity & Access Management solutions, etc.).
General knowledge of cloud based technologies and cloud security architecture basics.
Network+, Security+, CEH or related SANS, or vendor specific (e.g. CISCO, Microsoft, RedHat, AWS, etc.) certifications preferred.
Hands-on familiarity with SOC operations and tools
Practical hands-on experience monitoring and responding to events in on-prem and cloud-based environments such as Amazon Web Services and Microsoft Azure
Practical hands-on experience with SIEM technologies
Practical hands-on experience with one or more network security monitoring related technologies such as Snort, Surricata, etc.
Practical hands-on experience with Antimalware solutions, such as McAfee, Norton, ClamAV, etc.
IDS/IPS monitoring and analysis
Network routing configuration and troubleshooting
Network traffic and log analysis
Insider threat and APT detection
Malware analysis and forensics
Understanding/differentiation of intrusion attempts vs. false positives
Familiarity with CVSS risk scoring methodology
Cybersecurity events investigation tracking and threat resolution
Compose security alert notifications to field engineers responsible for on-prem remediation activities
Remotely assist field engineers with remediation activities
Experience with and an understanding of Medical Device Cyber Security threats
Inclusion and Diversity
GE Healthcare is an Equal Opportunity Employer where inclusion matters. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Our total rewards are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support.
Relocation Assistance Provided: No