Who We Are
WPS Health Solutions is a leading not-for-profit health insurer in Wisconsin. Our services offer health insurance plans for individuals, families, seniors, and group plans for small to large businesses. We process claims and provide customer service support for beneficiaries of the Medicare program and manage benefits for millions of active-duty and retired military personnel across the U.S. and abroad. In 2021, WPS Health Solutions celebrated 75 years of making health insurance easier for those we serve. Proud to be military and veteran ready.
WPS’ Performance-Based Culture is where the great work and innovations of our people are seen, fueled, and rewarded. We accomplish this by creating an inclusive, empowering employee experience, focusing on People, Work, and Conditions. This results in people bringing their authentic selves to work every day in an organization that successfully adapts to business changes and new opportunities. We are guided by our Purpose: Together, making health care easier for the people we serve.
In 2021, WPS Health Solutions was recognized for several awards including:
- Madison, Wisconsin’s Top Workplaces
- Top Workplace national cultural excellence awards for Remote Work and Work-Life Flexibility
- Achievers 50 Most Engaged Workplaces® with the further honor of Achievers “Elite 8” winner in the category of Culture Alignment
This position can be filled at the Senior Level or the more advanced Principal Level.
Joining the Security Operations Center (SOC) at WPS, you will be a pivotal member that will drive the maturity of the program and help ensure the security of our client’s sensitive medical information. You will be not only be responding to alerts but will be creating new detection techniques, implementing new use cases and plays, tuning current detection methods and be a pivotal player in helping the SOC innovate using new technologies and platforms. In this role, you will:
is open to remote positions with occasional travel to WPS headquarters.
- Respond to security alerts as a second-tier analyst responsible for making accurate disposition calls on complex alerts.
- Tune and maintain current detection techniques.
- Create and maintain investigation and response plays that are used by other analysts.
- Mentor and enhance the other analysts’ skills.
- Perform threat hunting and investigate new detection techniques.
- Participate in on call rotation with other SOC analysts.
- Act as a primary Incident Responder during Security Incidents.
- Collaborate with our IS business partners in enhancements or investigations.
- Pro-actively immunize WPS from emerging threats.
- Provide leadership, expertise, and solutions for complex initiatives.
- Being a security thought leader, sharing innovative ideas, learning about cutting edge cyber security frameworks, systems and toolsets
- Have the ability to take a leadership role in advanced SOC projects, implementations and upgrades.
How do I know this opportunity is right for me? If you:
- Understand threat actor tactics, techniques, and procedures.
- Understand NIST based security controls and how artifacts created by these controls will assist in detection and response.
- Are able to adapt and execute in the ever-changing threat landscape.
- Can be counted on to do the right thing with minimal supervision.
- Have experience with cloud monitoring and threat detection experience.
- Like to perform penetration Testing.
- Want to work in an environment that takes Compliance, Security and Ethics seriously and are willing to do the right thing no matter the situation.
What will I gain from this role?
- Working in a complex, highly security conscious environment that has a security umbrella encompassing consumer Health Insurance as well as large contracts with Center for Medicare and Medicaid Service (CMS) and Department of Defense (DOD).
- Exposure to modern detection and response tools, techniques and processes.
- Cybersecurity Incident Response Team experience.
- Being a strong collaborator who is willing to engage with other internal departments to creatively solve problems.
- Working in an environment that serves our Nation’s military, veterans, Guard and Reserves along with their families.
- U.S. citizenship is required for this position due to Department of Defense restrictions.
- Bachelor's Degree in related field or equivalent post high school and/or related work experience.
- Senior level: 1 or more year of related work experience
- Specialist level: 2 or more year of related work experience
- Senior level: 5 or more year of experience working in a Security Operations Center environment.
- Specialist level: 7 or more year of experience working in a Security Operations Center environment.
- Familiarity with MITRE AT&CK framework.
- Significant SIEM/SOAR experience.
- Scripting skills (PowerShell and/or Python).
- Advanced understanding of Windows, Linux, and/or UNIX OS.
- Understanding of networking including packet capture analysis.
This role is open to 100% remote work for this opportunity in the following approved states:
Approved States: Arizona, Colorado, Connecticut, Florida, Georgia, Illinois, Indiana, Iowa, Michigan, Minnesota, Missouri, Nebraska, New Jersey, North Carolina, North Dakota, Ohio, South Carolina, South Dakota, Texas, Virginia, Wisconsin
- The base pay offered for this position may vary based on your experience, knowledge, skills and may fall outside the posted range.
- Senior level: $70,700 ~ $131 Plus
- Specialist level: $87,500 ~ $162,500
- Remote and hybrid work options available
- Performance bonus and/or merit increase opportunities
- 401(k) with dollar-per-dollar match up to 6% of salary (100% vested immediately)
- Competitive paid time off
- Health, dental insurance, Teladoc starts DAY 1
- Review additional benefits here
Sign up for Job Alerts
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)