GE Jobs

Mobile GE Logo

Job Information

General Electric Cyber SOC Analyst – Sr. Incident Responder in Bengaluru, India

Job Description Summary

At GE Healthcare, we are building a new portfolio of Cyber Commercial offerings to help customers combat the threat of growing cyber-attacks. For this purpose, we have set up a Cyber Security Operations Center to monitor customers clinical networks and devices for cyber threats. For this purpose, we are seeking A Cyber Secure Operations Center (SOC) Analyst, who will be part of a dynamic, growing team, responsible for the remote provisioning of cybersecurity technologies, monitoring, and responding to cybersecurity events occurring in customers’ production environments.

GE Healthcare is a leading global medical technology and digital solutions innovator. Our mission is to improve lives in the moments that matter. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world.

Job Description

In this role, you will:

  • As a SOC Analyst, you will be expected to work in an intense, 24×7 operational environment focused on monitoring, alerting and remediation of identified cybersecurity issues, potentially targeting clinical medical devices or customers’ enterprise IT computing environments.

  • In addition to real-time threats, you must be able to research, document, and report on emerging cybersecurity trends facing healthcare industries worldwide.

  • You must be able to demonstrate strong leadership abilities in a large corporate environment, as well as able to understand and convey technical risk aspects to different audiences.

  • Perform daily customer network/system monitoring and response operations

  • Configure/tune cybersecurity monitoring systems/tools, and develop scripts and correlation rules

  • Strong verbal and written communication skills

Basic Qualifications:

  • 4-year degree in Computer Science or a related technical degree

  • 1+ years’ of experience detecting and remediating cybersecurity issues in a Clinical Operations Technology environment.

  • 1+ years' experience as a Security/Network/System Administrator or equivalent knowledge.

  • In-depth knowledge of various operating systems (Microsoft Windows, Linux, MacOS, Android, etc.)

  • In-depth knowledge of TCP/IP Protocols, Network analysis, Packet capture, Routing/Switching, Network segmentation, Network/System/Host level operating principals and security controls.

  • Working knowledge of various relational database technologies (Microsoft SQL, MySQL, Oracle, etc.)

  • Working knowledge of various security methodologies, processes, and technical security solutions (e.g. Firewalls, Intrusion Detection/Prevention systems, Access Control Lists, Network Segmentation, SIEMs, Auditing/Logging and Identity & Access Management solutions, etc.).

  • General knowledge of cloud based technologies and cloud security architecture basics.

  • Network+, Security+, CEH or related SANS, or vendor specific (e.g. CISCO, Microsoft, RedHat, AWS, etc.) certifications preferred.

  • Technical Expertise:

  • Hands-on familiarity with SOC operations and tools

  • Practical hands-on experience monitoring and responding to events in on-prem and cloud-based environments such as Amazon Web Services and Microsoft Azure

  • Practical hands-on experience with SIEM technologies

  • Practical hands-on experience with one or more network security monitoring related technologies such as Snort, Surricata, etc.

  • Practical hands-on experience with Antimalware solutions, such as McAfee, Norton, ClamAV, etc.

  • Practical familiarity with scripting languages such JavaScript, PHP, VBScript, Perl, Python, Ruby, etc.

  • IDS/IPS monitoring and analysis

  • Network routing configuration and troubleshooting

  • Network traffic and log analysis

  • Insider threat and APT detection

  • Malware analysis and forensics

  • Understanding/differentiation of intrusion attempts vs. false positives

  • Familiarity with CVSS risk scoring methodology

  • Cybersecurity events investigation tracking and threat resolution

  • Compose security alert notifications to field engineers responsible for on-prem remediation activities

  • Remotely assist field engineers with remediation activities

  • Experience with and an understanding of Medical Device Cyber Security threats

Inclusion and Diversity

GE Healthcare is an Equal Opportunity Employer where inclusion matters. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.

Our total rewards are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support.

Additional Information

Relocation Assistance Provided: No