WPS—A health solutions company
Principal SOC Analyst – Role Snapshot
As a senior member of the Security Operations Center (SOC) at WPS, you will serve as the first line of defense in our highly secure, regulatory‑compliant environment. Your responsibilities include leading incident response, mentoring junior analysts, optimizing monitoring tools and procedures, and communicating security posture to auditors and business stakeholders. You will also guide complex security initiatives, drive continuous improvement, and represent the SOC in audits and cross‑functional engagements. Responsibilities
Lead and manage the end‑to‑end incident response process, including preparation, detection, containment, eradication, recovery, and post‑incident analysis. Coordinate testing, simulations, and training exercises to ensure SOC readiness. Provide expert guidance and mentorship to SOC analysts, fostering skill development and knowledge sharing. Design, implement, and maintain SOC monitoring solutions, tools, and procedures to improve threat visibility and operational efficiency. Represent the SOC in audits, vendor discussions, cross‑functional meetings, and other engagements. Develop, review, and maintain comprehensive SOC documentation, including SOPs, incident playbooks, and monitoring protocols. Support on‑call coverage for incident response, ensuring timely escalation and resolution outside of regular business hours. Minimum Qualifications
U.S. citizenship required for Department of Defense restrictions. Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field (or equivalent experience). 7+ years of progressive cybersecurity experience, with strong expertise in SOC activities such as incident detection, analysis, containment, and recovery. Proficient with SIEM platforms, log correlation, alert tuning, and threat detection strategies. Experience applying the MITRE ATT&CK framework and aligning operations with NIST, CMMC, and MAC‑ARS controls in regulated environments. Solid technical background in network security, cloud security architectures (AWS, Azure), and emerging AI/ML security principles for SOC automation. Working knowledge of scripting languages (PowerShell, Python) and foundational AI integration skills. Strong leadership, mentoring, and communication skills. Experience in security policy development, technical documentation, and diagramming tools. Preferred Qualifications
Experience on federal contracts in a highly security‑conscious environment (e.g., CMMC or MAC‑ARS). Industry certifications such as CISSP, CCSP, or CISM. Remote Work Requirements
High‑speed cable or fiber internet. Minimum of 10 Mbps downstream and 1 Mbps upstream (verified via
speedtest.net ). Review Remote Worker FAQs for additional information. Benefits
Remote and hybrid work options available. Performance bonus and/or merit increase opportunities. 401(k) with 100% match for the first 3% of salary and 50% match for the next 2% (100% vested immediately). Competitive paid time off. Health, dental, and telehealth insurance starting day 1. Professional and Leadership Development Programs. Additional benefits details at
wpshealthsolutions.com . Company Overview
WPS is a not‑for‑profit health insurer and federal government contractor headquartered in Madison, Wisconsin. We offer health insurance plans, manage Medicare claims, and provide benefits for active‑duty and retired military personnel across the U.S. and abroad. WPS has been serving communities for nearly 80 years, proudly supporting military and veteran members. This position may occasionally support federal health‑care programs and other regulated industries. All personnel are subject to mandatory enhanced background screening and adherence to federal regulations, agency contract requirements, and WPS policies.
#J-18808-Ljbffr
As a senior member of the Security Operations Center (SOC) at WPS, you will serve as the first line of defense in our highly secure, regulatory‑compliant environment. Your responsibilities include leading incident response, mentoring junior analysts, optimizing monitoring tools and procedures, and communicating security posture to auditors and business stakeholders. You will also guide complex security initiatives, drive continuous improvement, and represent the SOC in audits and cross‑functional engagements. Responsibilities
Lead and manage the end‑to‑end incident response process, including preparation, detection, containment, eradication, recovery, and post‑incident analysis. Coordinate testing, simulations, and training exercises to ensure SOC readiness. Provide expert guidance and mentorship to SOC analysts, fostering skill development and knowledge sharing. Design, implement, and maintain SOC monitoring solutions, tools, and procedures to improve threat visibility and operational efficiency. Represent the SOC in audits, vendor discussions, cross‑functional meetings, and other engagements. Develop, review, and maintain comprehensive SOC documentation, including SOPs, incident playbooks, and monitoring protocols. Support on‑call coverage for incident response, ensuring timely escalation and resolution outside of regular business hours. Minimum Qualifications
U.S. citizenship required for Department of Defense restrictions. Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field (or equivalent experience). 7+ years of progressive cybersecurity experience, with strong expertise in SOC activities such as incident detection, analysis, containment, and recovery. Proficient with SIEM platforms, log correlation, alert tuning, and threat detection strategies. Experience applying the MITRE ATT&CK framework and aligning operations with NIST, CMMC, and MAC‑ARS controls in regulated environments. Solid technical background in network security, cloud security architectures (AWS, Azure), and emerging AI/ML security principles for SOC automation. Working knowledge of scripting languages (PowerShell, Python) and foundational AI integration skills. Strong leadership, mentoring, and communication skills. Experience in security policy development, technical documentation, and diagramming tools. Preferred Qualifications
Experience on federal contracts in a highly security‑conscious environment (e.g., CMMC or MAC‑ARS). Industry certifications such as CISSP, CCSP, or CISM. Remote Work Requirements
High‑speed cable or fiber internet. Minimum of 10 Mbps downstream and 1 Mbps upstream (verified via
speedtest.net ). Review Remote Worker FAQs for additional information. Benefits
Remote and hybrid work options available. Performance bonus and/or merit increase opportunities. 401(k) with 100% match for the first 3% of salary and 50% match for the next 2% (100% vested immediately). Competitive paid time off. Health, dental, and telehealth insurance starting day 1. Professional and Leadership Development Programs. Additional benefits details at
wpshealthsolutions.com . Company Overview
WPS is a not‑for‑profit health insurer and federal government contractor headquartered in Madison, Wisconsin. We offer health insurance plans, manage Medicare claims, and provide benefits for active‑duty and retired military personnel across the U.S. and abroad. WPS has been serving communities for nearly 80 years, proudly supporting military and veteran members. This position may occasionally support federal health‑care programs and other regulated industries. All personnel are subject to mandatory enhanced background screening and adherence to federal regulations, agency contract requirements, and WPS policies.
#J-18808-Ljbffr