Position Summary / Career Interest:

Serves as a key contributor to the Advanced Detection & Response (ADR) team, supporting the Security Operations program in managing, monitoring, and improving security measures to safeguard the organization’s data, systems, and networks. Acts as a technical expert and Subject Matter Expert (SME) for complex security incidents, investigations, and projects, collaborating with senior team members and other departments to ensure successful resolution and continuous improvement. Responsible for supporting Tier 2-3 Security Operations, Incident Response, Threat Hunting, Detection Engineering, and Digital Forensics functions, assisting with identifying, analyzing, and mitigating security threats. Provides support for the ongoing enhancement of detection capabilities and the development of incident response playbooks, while ensuring alignment with best practices in security operations. In addition to technical expertise, this position will contribute to mentoring and knowledge sharing within the ADR team, fostering a collaborative environment to build technical skills across the organization. This role will also involve identifying security gaps and recommending improvements to enhance the efficiency and effectiveness of the security operations and response processes.

Responsibilities and Essential Job Functions:

• Act as a highly competent contributor within the Advanced Detection & Response (ADR) team, supporting the planning, implementation, management, monitoring, and upgrading of security measures and systems to protect the organization's data, systems, and networks.

• Stay up to date on emerging security and technology trends, particularly in the context of security operations, threat detection, incident response, and digital forensics; assess and communicate their feasibility for UKHS to Cybersecurity leadership.

• Act as a technical resource for routine or low-risk projects related to Security Operations, Incident Response, Threat Hunting, and Detection Engineering, partnering with senior engineers and analysts to successfully drive these initiatives to completion.

• Develop technical documentation, reports, graphs, and flowcharts to communicate complex security concepts and findings, with guidance from Senior or Principal-level engineers, ensuring clarity for both technical and non-technical stakeholders.

• Identify internal or external challenges, including vendor and regulatory issues; recommend process, product, or service improvements to enhance security posture and operational efficiency.

• Provide troubleshooting and resolution for known security and network problems, ensuring timely response and mitigation in accordance with established incident response processes.

• Respond to security events as required, playing an integral role in investigation, containment, remediation, and recovery efforts in collaboration with the Security Operations team.

• Participate actively in the change management process, providing technical representation for the Cybersecurity organization and ensuring that changes to security infrastructure are properly assessed and communicated.

• Perform daily administrative tasks, reporting, and maintaining communication with relevant departments to ensure the smooth operation of the security operations functions.

• Communicate technical concepts effectively, anticipating potential objections, and influencing peers and working groups to adopt appropriate security strategies and solutions.

• Provide technical mentorship and guidance to Associate-level members of the Cybersecurity organization, fostering a collaborative environment to develop and expand technical expertise.

• Support the development and refinement of incident response playbooks, threat hunting methodologies, and detection engineering processes to improve the efficiency and effectiveness of the ADR team.

• May perform additional duties as assigned, depending on the needs of the team and the organization.

We are an equal employment opportunity employer without regard to a person’s race, color, religion, sex (including pregnancy, gender identity and sexual orientation), national origin, ancestry, age (40 or older), disability, veteran status or genetic information.