Summary

Responsible for thea Insider Threat platforms at GE Healthcare. The individual will own and manage day-to-day operational aspects of the platforms and ensure it is aligned to business priorities. Lead the design and deployment of solutions, data ingestion & management, policy & content development, driving functionality & adoption, managing engineering & operational activities, vendor interface, supporting improvements and ensure uptime & availability of the platforms.

At GE Healthcare, our passionate people are creating the products, solutions and services our customers need to deliver the best patient care possible.

GE HealthCare is a leading global medical technology and digital solutions innovator. Our purpose is to create a world where healthcare has no limits. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world tex

In this role, as part of the global Data Protection & Response Team, you will: Responsible for all operational aspects of the GE Healthcare Insider Threat platform.

• Lead design and deployment of solution, manage data ingestion, implementing new functionality to meet business requirements.
• Work collaboratively with stakeholders (and the Insider Threat Leader) to support data ingestion, data modelling, playbook/policy design and production deployment for operational teams.
• Responsible for enabling and maintenance of all data sources and feeds to support the operational requirements of platform and downstream needs.
• Perform Hybrid work assisting Insider Analytics and associated functions around Data Loss Prevention.
• Provide technology support, maintenance of application functionality and integrations.
• Triage production issues, identify root cause and corrective actions. Dive into crisis situations and Production issues, trouble-shoot, engage stakeholders and own problem resolution.
• Manage service parameters around operational incidents and SLAs in partnership with platform service provider/vendors.
• Responsible for policy and content development on the platform to support Insider Threat team needs.
• Implement innovative ways of identifying threats to data using the platform and ensure aligned to industry best practices.
• Collect, monitor and analyze data produced by the tools to discover and discern trends, threats, and security risks associated with improper use of GE data.
• Ensure compliance with all regional legal requirements globally.
• Support tenant, tools, end-point and data migration efforts aligned with business spin-off.
• Manage stakeholder communication, balance of program/business priorities and communicate progress towards business objectives.
• Track outcomes and stakeholders satisfaction levels through established metrics against service level. Ensure lessons learned are collected and implemented.
• Analyze business requirements, gather and analyze, identify gaps, develops architectural requirements, propose alternate approaches based on current & future digital trends.
• Work with Data protection, Cyber security and Enterprise teams on data enrichment, enhance monitoring, reporting of security events and implement data protection policies to protect GE data.
• Be pro-active in approaching opportunities for tool automation and integration with other cyber tools.
• Drive program technology discussion and strategy in line with business needs. Evaluate requests for enhancements and determine potential impacts with the current system design/configuration.
• Conduct proof of concept (POCs) of emerging capabilities and technology with business, cyber, and compliance partners.
• Perform daily operations that may involve occasional non-traditional working hours - act as escalation points where necessary.

Education Qualification

Bachelor\'s Degree in Computer Science or \xe2\x80\x9cSTEM\xe2\x80\x9d Majors (Science, Technology, Engineering and Math) or significant direct experience.

Desired Characteristics

Technical Expertise:

• 2+ years technical hands-on experience with operating, configuring and managing cyber data protection platforms.
• Experience in anomaly detection, data analytics, data leakage, policy development, behavior analytics and log management.
• Experience detecting and responding to cyber incidents in an Information Technology environment.
• Detailed understanding of Data Loss, Insider Threat and associated tactics.
• Hands-on experience with UEBA tools (Ex. Securonix, SNYPR etc.) especially in policy and content development, log ingestion, case management and workflows.
• Experience with Data Loss Prevention tools (Ex. Digital Guardian etc.) highly beneficial.
• Strong SIEM experience in data ingestion, modeling, advanced reporting, alerting and administration.
• Experience with host-based detection and prevention suites (ex: McAfee EPO, OSSEC, Yara,, Crowdstrike, Defender etc.).
• Training in Information Security-specific disciplines (CISSP, Security+, SSCP, SANS, CERT, CMU-SEI, CEH certification etc.) highly beneficial.
• Experience with Microsoft M365 suite of data protection and compliance tools (Purview, Defender, Sentinel etc.) is a plus.
• IT infrastructure background including familiarity with the following:
• Applications (HTTP, SMTP, DNS, FTP, SSH, etc.)
• Operating systems (Windows, *Nix, and Mac) and storage
• Cloud, Networks, Databases, Cryptography, Identity & Access Management, Proxies etc.
• Advanced scripting and coding skills (Ex. Powershell, VBscript, Bash, Python, Ruby, PHP etc.)
• Experience in working with Agile methodologies.

We expect all employees to live and breathe our behaviors: to act with humility and build trust, lead with transparency, deliver with focus and drive ownership \xe2\x80\x93 always with unyielding integrity. Our total rewards are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you\xe2\x80\x99d expect from an organization with global strength and scale, and you\xe2\x80\x99ll be surrounded by career opportunities in a culture that fosters care, collaboration and support. While GE Healthcare does not currently require U.S. employees to be vaccinated against COVID-19, some GE Healthcare customers have vaccination mandates that may apply to certain GE Healthcare employees. #gehealthcare #LI-MG1 #LI-Hybrid