About UHG

Careers at UnitedHealth Group


We have modest goals: Improve the lives of others. Change the landscape of health care forever. Leave the world a better place than we found it. Such aspirations tend to attract a certain type of person. Crazy talented. Compassionate. Driven. To these individuals, we offer the global reach, resources and can-do culture of a Fortune 5 company. We provide an environment where you’re empowered to be your best. We encourage you to take risks and in return, offer a world of rewards and benefits for performance. Exceeding your limits is an exceptional start to your life's best work.SM


Just like you, we are driven by a set of fundamental principles that are guiding our way forward. Our values of integrity, compassion, relationships, innovation, and performance serve as a foundation to transform health care. Are you in? Learn more about your future at UnitedHealth Group at careers.unitedhealthgroup.com


Job Category:

Information Technology



Postal Code:


Approximate Salary:

Not Specified

Position Type:

Full Time

This job has expired and you can't apply for it anymore. Start a new search.

IT Senior Cyber Forensic Investigator- Plymouth, MN or Raleigh, NC

UHG - Raleigh, North Carolina

Posted: 10/30/2018

In this role, the individual will provide intelligence operational support to the Cyber Forensic Investigations Manager as part of our Cyber Defense team. The Cyber Defense (CD) team has identified an opportunity to significantly enhance the effectiveness of our current cyber defenses posture. The value proposition centers on the development of a holistic cyber defense model that requires alignment and integration of key technical resources, security functions and related processes. We are creating a state-of-the-art centralized cyber defense operating model which will manage the security threats across the enterprise effectively and consistently.

Responsibilities of this specific role will include the following:

  • Incident response to focused operations and other major attacks

  • Continuously evaluate current operations, identify gaps or problem areas, and innovate new solutions to address areas of improvement or expansion

  • Stay abreast of adversary tactics, techniques and procedures (TTPs), intelligence reporting and UnitedHealth Group (UHG) business strategy to enable the practical application of intelligence to information security

  • Perform static and dynamic malware analysis using tools such as disassemblers, debuggers and sandboxes

  • Extract IOCs from investigations to share with other groups within the Cyber Defense group

  • Stay in step with the cyber intelligence community and collaboration forums to maintain/develop formal and informal sources of information incorporate industry best practices where applicable

  • Collaborate with the other Investigative Services teams to produce expert level analysis of advanced attacks

  • Assist the SOC and other Investigative Services teams with investigations by utilizing your knowledge of SIEM platforms

  • Respond to incidents on a moment’s notice if required (travel may be required)

  • Utilize forensic skills to obtain malware samples, memory images and drive images

  • Attribute malware to specific actors by collaborating with the Intelligence Services team

Required Skills/Experiences:

  • 4 or more years of information security experience in a large, highly-regulated enterprise
  • 4 or more years computer forensic and/or malware engineering experiences
  • Experience with digital forensic analysis tools
  • Experience using 1 or more of the following tools: EnCase, X-Ways, and/or F-Response
  • Subject matter expert knowledge of the technology aspects of security
  • Basic project management skills and detail orientation
  • Understanding of the technology risks that are inherent to a business and an ability to effectively communicate those risks
  • QSA, CCFP, EnCE, X-Pert, GCFE, GNFA, and/or GRIM Certification
  • Undergraduate degree or equivalent experience

Preferred skills/experiences:

  • Direct experience with current advanced persistent threats (APT)
  • Deep expertise with any of the following products: NetWitness, FireEye, EnCase, ArcSight, and/or RSA Security Analytics
  • Knowledge of Volatility, HBGary Responder Pro and/or Mandiant Redline
  • Knowledge of Chain of Custody process and procedures
  • Network traffic knowledge

Technology Careers with Optum. Information and technology have amazing power to transform the health care industry and improve people's lives. This is where it's happening. This is where you'll help solve the problems that have never been solved. We're freeing information so it can be used safely and securely wherever it's needed. We're creating the very best ideas that can most easily be put into action to help our clients improve the quality of care and lower costs for millions. This is where the best and the brightest work together to make positive change a reality. This is the place to do your life's best work.SM

Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.

Apply Now
This job has expired and you can't apply for it anymore