WPS—A health solutions company
Principal SOC Analyst
Role Overview
As a key member of the Security Operations Center (SOC), our Principal SOC Analyst serves as the first line of defense in a highly secure and regulatory‑compliant environment. This senior analyst brings advanced cybersecurity expertise to lead and mentor other SOC analysts, develop and optimize monitoring tools, procedures, and ensure clear, effective communication with auditors and business stakeholders. The role plays a critical part in guiding complex security initiatives, responding to incidents, and driving continuous improvement across SOC operations.
Location & Work Model Primary location: Madison, Wisconsin. Eligibility to work in Wisconsin is required. Employees within 45 miles of WPS Headquarters (1717 W. Broadway, Madison, WI) are expected to work in a hybrid model three days a week. Remote work is available for approved states (Colorado, Florida, Georgia, Illinois, Indiana, Iowa, Michigan, Minnesota, Missouri, Nebraska, New Jersey, North Carolina, Ohio, South Carolina, Texas, Virginia, Wisconsin).
Compensation $125,000 ~ $160,000
Responsibilities
Lead security incident response, managing the end‑to‑end process from preparation to post‑incident analysis.
Coordinate testing, simulations, and training exercises to maintain team readiness.
Provide expert‑level guidance and mentorship to SOC analysts, fostering skill development and knowledge sharing.
Design, implement, and maintain SOC monitoring solutions, tools, and procedures to enhance threat visibility and operational efficiency.
Represent the SOC in audits, vendor discussions, cross‑functional meetings, and other engagements, ensuring clear communication of security posture.
Develop, review, and maintain comprehensive SOC documentation, including SOPs, incident playbooks, and monitoring protocols.
Serve in an on‑call capacity during security incidents, ensuring timely escalation and resolution outside of regular business hours.
Minimum Qualifications
U.S. citizenship required due to Department of Defense restrictions.
Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field (or equivalent experience).
7 or more years of progressive cybersecurity experience, especially in SOC activities.
Proficiency with SIEM platforms (log correlation, alert tuning, threat detection).
Experience applying the MITRE ATT&CK framework and aligning operations with NIST, CMMC, and MAC‑ARS standards.
Strong background in network, cloud (AWS, Azure), and emerging AI/ML security principles for SOC automation.
Working knowledge of scripting (PowerShell, Python) and foundational AI integration skills.
Leadership, mentoring, and communication skills to engage both technical and non‑technical stakeholders.
Skilled in security policy development, technical documentation, and diagramming tools (e.g., Visio, Lucidchart).
Preferred Qualifications
Experience on federal contracts in highly security‑conscious environments, including CMMC or MAC‑ARS controls.
Industry certifications such as CISSP, CCSP, or CISM.
Remote Work Requirements
High‑speed cable or fiber internet.
Minimum 10 Mbps downstream and 1 Mbps upstream.
Review Remote Worker FAQ for additional details.
Benefits
Remote and hybrid work options.
Performance bonus and merit increase opportunities.
401(k) with a 100 % match for the first 3 % of salary and a 50 % match for the next 2 % (100 % vested immediately).
Competitive paid time off.
Health, dental, and telehealth coverage beginning day one.
Professional and leadership development programs.
Additional benefits can be reviewed at https://www.wpshealthsolutions.com/careers/fulltime_benefits.shtml.
Who We Are WPS is a leading not‑for‑profit health insurer and federal government contractor headquartered in Madison, Wisconsin. We offer health insurance plans, process claims, and provide support for the Medicare program and military beneficiaries across the U.S. and abroad.
Cultures & Values Our culture emphasizes open, empowering employee experience, recognition of diverse perspectives, and agility that fuels innovation across high‑performing teams.
Legal & Regulatory This position may provide support to federal health care programs and other regulated industries. Individuals in this role are subject to all applicable federal regulations, agency contract requirements, and WPS internal policies, including standards for data security, privacy, confidentiality, and program integrity. Mandatory enhanced background investigation is required prior to access to sensitive data.
#J-18808-Ljbffr
Location & Work Model Primary location: Madison, Wisconsin. Eligibility to work in Wisconsin is required. Employees within 45 miles of WPS Headquarters (1717 W. Broadway, Madison, WI) are expected to work in a hybrid model three days a week. Remote work is available for approved states (Colorado, Florida, Georgia, Illinois, Indiana, Iowa, Michigan, Minnesota, Missouri, Nebraska, New Jersey, North Carolina, Ohio, South Carolina, Texas, Virginia, Wisconsin).
Compensation $125,000 ~ $160,000
Responsibilities
Lead security incident response, managing the end‑to‑end process from preparation to post‑incident analysis.
Coordinate testing, simulations, and training exercises to maintain team readiness.
Provide expert‑level guidance and mentorship to SOC analysts, fostering skill development and knowledge sharing.
Design, implement, and maintain SOC monitoring solutions, tools, and procedures to enhance threat visibility and operational efficiency.
Represent the SOC in audits, vendor discussions, cross‑functional meetings, and other engagements, ensuring clear communication of security posture.
Develop, review, and maintain comprehensive SOC documentation, including SOPs, incident playbooks, and monitoring protocols.
Serve in an on‑call capacity during security incidents, ensuring timely escalation and resolution outside of regular business hours.
Minimum Qualifications
U.S. citizenship required due to Department of Defense restrictions.
Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field (or equivalent experience).
7 or more years of progressive cybersecurity experience, especially in SOC activities.
Proficiency with SIEM platforms (log correlation, alert tuning, threat detection).
Experience applying the MITRE ATT&CK framework and aligning operations with NIST, CMMC, and MAC‑ARS standards.
Strong background in network, cloud (AWS, Azure), and emerging AI/ML security principles for SOC automation.
Working knowledge of scripting (PowerShell, Python) and foundational AI integration skills.
Leadership, mentoring, and communication skills to engage both technical and non‑technical stakeholders.
Skilled in security policy development, technical documentation, and diagramming tools (e.g., Visio, Lucidchart).
Preferred Qualifications
Experience on federal contracts in highly security‑conscious environments, including CMMC or MAC‑ARS controls.
Industry certifications such as CISSP, CCSP, or CISM.
Remote Work Requirements
High‑speed cable or fiber internet.
Minimum 10 Mbps downstream and 1 Mbps upstream.
Review Remote Worker FAQ for additional details.
Benefits
Remote and hybrid work options.
Performance bonus and merit increase opportunities.
401(k) with a 100 % match for the first 3 % of salary and a 50 % match for the next 2 % (100 % vested immediately).
Competitive paid time off.
Health, dental, and telehealth coverage beginning day one.
Professional and leadership development programs.
Additional benefits can be reviewed at https://www.wpshealthsolutions.com/careers/fulltime_benefits.shtml.
Who We Are WPS is a leading not‑for‑profit health insurer and federal government contractor headquartered in Madison, Wisconsin. We offer health insurance plans, process claims, and provide support for the Medicare program and military beneficiaries across the U.S. and abroad.
Cultures & Values Our culture emphasizes open, empowering employee experience, recognition of diverse perspectives, and agility that fuels innovation across high‑performing teams.
Legal & Regulatory This position may provide support to federal health care programs and other regulated industries. Individuals in this role are subject to all applicable federal regulations, agency contract requirements, and WPS internal policies, including standards for data security, privacy, confidentiality, and program integrity. Mandatory enhanced background investigation is required prior to access to sensitive data.
#J-18808-Ljbffr