Staff Cyber Risk Analyst

Job Description Summary

The Staff Cyber Risk Analyst within the Cyber Data Protection team will be responsible for leading and responding to incidents as part of the SOC. Responsible for the detection, design, and testing of analytic frameworks, processes, procedures and controls. Responsible for threat identification, indicator development, data movement analytics, data collection and analysis, and identification of anomalous patterns of data movement. Lead threat hunting and threat modelling activities.

GE HealthCare is a leading global medical technology and digital solutions innovator. Our mission is to improve lives in the moments that matter. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world.

Job Description

Roles And Responsibilities

• Lead the development and execution of the detection analytics capabilities within the Insider Threat program, including risk scoring models, thresholds, baselines, key indicators, and reporting.
• Maintain the strategic roadmap for key cybersecurity workstreams and measure effectiveness.
• Maintenance of a comprehensive response escalation process and procedures including the investigative processes.
• Perform daily response operations that may involve occasional non-traditional working hours - act as escalation points where necessary.
• Review of daily alerts, triage violations, raise cases and lead co-ordination of incidents across business and partner teams.
• Improve state of our insider program and platforms by configuring and updating policies, building the knowledge base, metrics management and maturity overall.
• Drive projects and work streams within the Insider Threat program including appropriate risk mitigation activities in the Data Protection space.
• Lead log ingestion and threat modelling activities in partnership with application owners and analytics platform teams, co-relate data and build policies to identify insider threats.
• Create dashboards, alerts and reporting in the analytics platform to identify trends, risk indicators and highlight areas to address risk.
• Participate in threat hunting activities, support triage work and case management with appropriate teams.
• Support relevant SOC tooling, platforms, infrastructure, code and automation processes, including development of new code, scripts, automation or upkeep of existing.
• Work with MSSPs, 3rd parties, Legal counsel, HR, IT, physical security, product, engineering and global teams on mitigation or remediation solutions.

Qualifications

• Bachelor’s degree in computer science or “STEM” Majors (Science, Technology, Engineering and Math) with 6 years of relevant technical and SOC experience.

Desired Characteristics

• Must be hands-on technical with experience in anomaly detection, data analytics, behavior analytics.
• Detailed understanding of Insider Threats, DLP (Data Loss Prevention), Data-level Security, and associated tactics.
• Experience in a technical Cyber SOC (Security Operations Centre) environment.
• Experience detecting and responding to cyber incidents in complex Information Technology environments.
• Experience with UEBA tools (Ex. Securonix, MS Purview IRM etc.) highly beneficial.
• Strong MS Sentinel/M365 experience (or other SIEM tools) in advanced reporting and alerting, queries, and data modelling.
• Scripting, coding and querying skills (Ex. Python, KQL, PowerShell, Bash, Python, Regex etc.).
• IT infrastructure background including familiarity with: Applications, Operating systems, Cloud, Networks, Databases, Cryptography, Identity & Access Management, Proxies etc.
• Training in Information Security specific disciplines (CISSP, Security+, SSCP, SANS, CERT, CMU-SEI, CEH certifications etc.).
• Experience with host-based detection and prevention suites, host-centric tools for forensic collection and analysis and Network Security Monitoring tools.
• Experience in working with Agile / Lean / Six Sigma process improvement methodologies.
• Master’s degree in business or information technology.

We expect all employees to live and breathe our behaviors: to act with humility and build trust; lead with transparency; deliver with focus, and drive ownership –always with unyielding integrity.

Our total rewards are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration, and support.

#Li-Br3

#Li-Remote

We will not sponsor individuals for employment visas, now or in the future, for this job opening. For U.S. based positions only, the pay range for this position is $114,400.00-$171,600.00 Annual. It is not typical for an individual to be hired at or near the top of the pay range and compensation decisions are dependent on the facts and circumstances of each case. The specific compensation offered to a candidate may be influenced by a variety of factors including skills, qualifications, experience and location. In addition, this position may also be eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). GE HealthCare offers a competitive benefits package, including not but limited to medical, dental, vision, paid time off, a 401(k) plan with employee and company contribution opportunities, life, disability, and accident insurance, and tuition reimbursement.

Additional Information

GE HealthCare offers a great work environment, professional development, challenging careers, and competitive compensation. GE HealthCare is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.

GE HealthCare will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).

While GE HealthCare does not currently require U.S. employees to be vaccinated against COVID-19, some GE HealthCare customers have vaccination mandates that may apply to certain GE HealthCare employees.

Relocation Assistance Provided: No

Application Deadline: November 30, 2025