Cyber Security Lead Analyst - HIH - Evernorth

About Evernorth Health Services:

Evernorth Health Services (Evernorth) is the pharmacy, care and benefits solution division of The Cigna Group - a Fortune 16 global health company with 75,000 employees, 186 million customers in more than 30 countries and jurisdictions around the world. Evernorth exists to make the prediction, prevention, and treatment of illness and disease more accessible to millions of people. We do this by creating and connecting premier health services offerings, such as benefits management, pharmacy, care solutions, insights and intelligence.

About Cigna:

The Cigna Group is a global health company committed to improving the health and vitality of individuals and communities around the world and includes products and services marketed under its Cigna Healthcare and Evernorth Health Services subsidiaries. Cigna Healthcare is the health benefits provider of The Cigna Group, serving customers and clients through its U.S. Employer, U.S. Government, and International Health business. Evernorth Health Services is the pharmacy, care and benefits solution division of The Cigna Group.

Position Overview:

This position will support security engineering and operations in collaboration with our global security engineering teams. The role involves supporting security infrastructure and log source monitoring, access provisioning, and security automation workflows. This role will be responsible for performing standard operating procedures for outage handling and log monitoring, responding to incident alerts, performing incident triage, conducting vulnerability scans, and collaborating with operations and development teams.

Education:

·        Any bachelor’s degree (Full time)

Experience:

·        Minimum of 5 – 8 years of experience in a Security Operations Center or Security Engineering.

Skills:

• Strong analytical and technical skills.

• Innovative thinker with strong communication skills

• Strong experience with SIEM platforms

• Familiarity with ITSM platforms.

• Experience managing and leveraging vulnerability scanning tools

• Understanding of incident response processes and escalation protocols.

• Proficiency in scripting or automation (Python, PowerShell, etc.).

• Strong analytical and troubleshooting skills.

• Experience working in a 24/7 SOC environment or with follow-the-sun support models.

• Familiarity with access management and identity governance tools.

• Exposure to DevSecOps practices and secure integration pipelines

• Excellent communication and documentation abilities.

• Proven ability to perform in-depth data analysis and present insights in a clear
  manner

• Ability to adapt in a dynamic work environment, learn quickly, contribute
  solutions

• Ability to prioritize and meet timelines and deadlines

• Advanced problem-solving skills and the ability to work collaboratively with other departments to resolve complex issues with innovative solutions.

• Carrying out analytics and metrics

Responsibilities:

Core Engineering & Monitoring Functions:

• Develop and maintain Standard Operating Procedures (SOPs) for outage handling and log source monitoring in the SIEM.

• Monitor and respond to ITSM error tickets and alerts.

• Perform Level 1 triage and response for security incidents and anomalies.

• Conduct overnight ad-hoc vulnerability scans and ensure timely reporting of findings.

• Support access setup and provisioning for SOC tools and platforms.

• Maintain and report on SOC metrics and health checks to ensure operational readiness.

Collaboration & Support:

• Coordinate with Operations team for off-hours support and escalation.

• Engage resources for early morning coverage and integration tasks.

• Work with development teams to support integration coding and automation efforts (based on talent availability).

• Collaborate with release management to ensure minimal after-hours impact during change cycles.

Equal Opportunity Statement

Evernorth is an Equal Opportunity Employer actively encouraging and supporting organization-wide involvement of staff in diversity, equity, and inclusion efforts to educate, inform and advance both internal practices and external work with diverse client populations.

About Evernorth Health Services