Senior UEBA Security Engineer

You could be the one who changes everything for our 28 million members by using technology to improve health outcomes around the world.  As a diversified, national organization, Centene's technology professionals have access to competitive benefits including a fresh perspective on workplace flexibility.
 

Position Purpose:

We are seeking an experienced and highly skilled Senior UEBA (User and Entity Behavior Analytics) Engineer to lead the implementation, and optimization of advanced security analytics solutions. The ideal candidate will possess deep expertise in threat detection, data analysis, and behavioral analytics, driving initiatives to enhance the organization’s security posture through proactive monitoring and anomaly detection. This role requires a deep understanding of security analytics, behavioral baselining, data integration, and threat detection methodologies. This role will serve as a key technical leader, mentor, and strategic advisor within the cybersecurity team to enhance threat detection and overall security posture.

• Solution Design & Leadership: Architect and maintain scalable UEBA solutions, integrating with SIEMs, data lakes, and other security technologies.
• Design & Implementation: Deploy and configure UEBA platforms to monitor and analyze user and entity behaviors across IT and cloud environments. 
• Anomaly Detection: Develop and refine behavioral analytics models to detect complex threats, including insider threats, lateral movement, and account compromises.
• Data Integration: Collect and integrate data from multiple sources, including SIEMs, authentication logs, endpoint systems, and network devices, to enrich security analytics.
• Incident Investigation: Provide in-depth analysis and investigation of alerts triggered by anomalous behavior.
• Incident Response Support: Provide expert guidance and technical analysis for security incidents involving anomalous user and entity behavior.
• Threat Hunting: Assist in proactive threat hunting efforts using behavioral insights from the UEBA platform.
• Optimization: Continuously fine-tune analytics models to reduce false positives and improve detection capabilities.
• Mentorship & Collaboration: Guide and mentor junior engineers, fostering knowledge sharing and technical skill development.
• Stakeholder Engagement: Partner with security operations, threat intelligence, and leadership teams to define UEBA strategies and implement use cases.
• Reporting & Documentation: Develop dashboards, reports, and detailed documentation for technical and non-technical stakeholders.
• Performs other duties as assigned.
• Complies with all policies and standards.

Education/Experience:

A Bachelor's degree in a quantitative or business field (e.g., statistics, mathematics, engineering, computer science).
Requires 4 – 6 years of related experience.

Or equivalent experience acquired through accomplishments of applicable knowledge, duties, scope and skill reflective of the level of this position.

Technical Skills:

• 5+ years of experience in cybersecurity with a focus on security analytics, threat detection, or UEBA solutions.
  Hands-on experience with UEBA platforms (e.g., Exabeam, Gurucul, Splunk UEBA, Microsoft Sentinel).
• Strong knowledge of cybersecurity concepts and threat vectors.
• Proficiency in scripting (Python, PowerShell, etc.) for data analysis and automation.
• Experience with data normalization, correlation, and event analysis.
• Deep understanding of SIEM technologies, data pipelines, and event management processes.
• Knowledge of SIEM platforms and their integration with UEBA solutions.
• Experience with machine learning models for threat detection and behavioral analytics.
• Hands-on experience with cloud security analytics (AWS, Azure, GCP).
• Familiarity with NIST, MITRE ATT&CK, and other security frameworks.

Soft Skills:

• Intermediate - Seeks to acquire knowledge in area of specialty
• Intermediate - Ability to identify basic problems and procedural irregularities, collect data, establish facts, and draw valid conclusions
• Intermediate - Ability to work independently
• Intermediate - Demonstrated analytical skills
• Intermediate - Demonstrated project management skills
• Intermediate - Demonstrates a high level of accuracy, even under pressure
• Intermediate - Demonstrates excellent judgment and decision making skills

License/Certification:

• Security certifications such as CISSP, GIAC, GCTI, or Security+.

Centene offers a comprehensive benefits package including: competitive pay, health insurance, 401K and stock purchase plans, tuition reimbursement, paid time off plus holidays, and a flexible approach to work with remote, hybrid, field or office work schedules.  Actual pay will be adjusted based on an individual's skills, experience, education, and other job-related factors permitted by law.  Total compensation may also include additional forms of incentives.

Centene is an equal opportunity employer that is committed to diversity, and values the ways in which we are different. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or other characteristic protected by applicable law.

Qualified applicants with arrest or conviction records will be considered in accordance with the LA County Ordinance and the California Fair Chance Act