69 Cybersecurity jobs in Boise

Our client, a rapidly growing tech firm, is seeking a Senior Information Security Analyst specializing in Threat Intelligence to join their security operations team. This role can be performed entirely remotely, offering flexibility and the opportunity to contribute to robust cybersecurity defenses from anywhere. The ideal candidate will possess a deep understanding of the threat landscape, advanced persistent threats (APTs), and emerging attack vectors. You will be responsible for proactively identifying, analyzing, and mitigating cyber threats to protect the organization's digital assets. This includes gathering, processing, and analyzing threat intelligence from various sources to provide actionable insights to security teams.

Key responsibilities include developing and implementing threat intelligence programs, monitoring global threat activities, and identifying indicators of compromise (IOCs). You will conduct deep-dive analyses of malware, phishing campaigns, and other malicious activities. The role involves creating threat models, vulnerability assessments, and providing strategic recommendations to enhance the overall security posture. You will collaborate closely with incident response teams, security operations center (SOC) analysts, and IT infrastructure teams to ensure effective threat mitigation and response. Strong analytical, research, and communication skills are essential for synthesizing complex information and presenting clear, concise intelligence reports to both technical and executive audiences. Experience with threat intelligence platforms, SIEM tools, and various security technologies is highly desirable. We are looking for a proactive, detail-oriented individual who can stay ahead of evolving threats and contribute to a secure digital environment. This is an exciting opportunity to play a critical role in protecting sensitive data and systems in a challenging and dynamic field.

Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, or a related field.
• 5+ years of experience in information security, with a specialization in threat intelligence or security operations.
• Proven experience in analyzing threat data from multiple sources (e.g., OSINT, commercial feeds, internal logs).
• Strong understanding of cyber threat actors, their TTPs (Tactics, Techniques, and Procedures), and motivations.
• Familiarity with security tools such as SIEM, SOAR, EDR, and threat intelligence platforms.
• Experience with scripting languages (e.g., Python) for automation and data analysis.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong written and verbal communication skills, with the ability to create comprehensive reports.
• Relevant certifications such as CISSP, GCTI, or GIAC are a plus.

Our client, a leader in safeguarding digital assets, is seeking a vigilant and experienced Senior Information Security Analyst specializing in Threat Intelligence to join their team in Boise, Idaho, US . This critical role involves proactively identifying, analyzing, and responding to cyber threats that could impact the organization. You will be responsible for gathering intelligence from various sources, developing threat models, and providing actionable insights to enhance our security posture. The ideal candidate possesses a strong understanding of the threat landscape, advanced analytical skills, and experience with security information and event management (SIEM) systems and threat intelligence platforms.
Responsibilities:

• Collect, analyze, and disseminate threat intelligence from diverse sources including open-source intelligence (OSINT), dark web monitoring, and commercial feeds.
• Develop and maintain threat models and profiles of relevant threat actors and their tactics, techniques, and procedures (TTPs).
• Monitor security alerts and events, investigate potential security incidents, and provide timely analysis.
• Collaborate with incident response teams to support the containment and eradication of security threats.
• Develop and implement strategies to integrate threat intelligence into security operations, security monitoring, and defensive controls.
• Create comprehensive threat intelligence reports and briefings for technical teams, management, and executive leadership.
• Maintain and optimize threat intelligence platforms and tools.
• Conduct vulnerability assessments and penetration testing support as needed.
• Stay up-to-date on the latest cybersecurity threats, vulnerabilities, and trends.
• Contribute to the development and improvement of security policies and procedures.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.
• Minimum of 5 years of experience in information security, with a specific focus on threat intelligence and analysis.
• Proven experience in collecting, analyzing, and reporting on cyber threats.
• Proficiency with SIEM tools (e.g., Splunk, QRadar), EDR solutions, and threat intelligence platforms.
• Strong understanding of attacker methodologies, malware analysis, and network security principles.
• Excellent analytical, problem-solving, and critical thinking skills.
• Superior written and verbal communication skills, with the ability to convey complex technical information clearly and concisely.
• Relevant security certifications such as CISSP, GIAC, or CEH are a plus.

This is a vital opportunity to contribute to the security of a leading organization in Boise, Idaho, US .

Our client, a rapidly growing technology firm, is seeking a proactive and skilled Senior Information Security Analyst specializing in Threat Intelligence to join their dedicated security team in Boise, Idaho, US . In this role, you will be at the forefront of identifying, analyzing, and responding to emerging cyber threats. You will play a crucial part in developing and enhancing the organization's threat intelligence capabilities, providing actionable insights to protect against sophisticated attacks. The ideal candidate will have a deep understanding of the threat landscape, experience with various threat intelligence platforms and tools, and a strong analytical mindset.

Key Responsibilities:

• Collect, analyze, and interpret threat intelligence data from various sources, including open-source intelligence (OSINT), commercial feeds, and internal security tools.
• Identify and track threat actors, their tactics, techniques, and procedures (TTPs).
• Develop and maintain threat intelligence reports, summaries, and alerts for relevant stakeholders.
• Provide actionable intelligence to incident response, security operations, and risk management teams.
• Contribute to the development and improvement of threat hunting methodologies and capabilities.
• Evaluate and recommend new threat intelligence tools and technologies.
• Collaborate with internal teams and external partners to share and receive threat information.
• Stay current with the latest global cybersecurity threats, vulnerabilities, and trends.
• Assist in the development and delivery of security awareness training related to emerging threats.
• Contribute to the overall information security strategy and posture of the organization.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.
• Minimum of 5 years of experience in information security, with a focus on threat intelligence, security operations, or incident response.
• Strong understanding of cyber threat intelligence frameworks (e.g., MITRE ATT&CK, Cyber Kill Chain).
• Experience with threat intelligence platforms (TIPs), SIEM tools, and endpoint detection and response (EDR) solutions.
• Proficiency in data analysis and scripting languages (e.g., Python) for automation and research.
• Excellent research, analytical, and critical thinking skills.
• Strong written and verbal communication skills, with the ability to present complex information clearly.
• Relevant security certifications (e.g., CISSP, GIAC GCTI, CompTIA Security+) are highly desirable.
• Ability to work independently and as part of a collaborative team in a hybrid work environment.

Our Vision: We make dreams possible.
Yes, we're a student loan servicer. We're also a technology company, idea incubator, start-up accelerator, and K-12 and higher education expert. At Nelnet, we're so much more than what you think-and we're just getting started. So, no matter what you want to do in life-build codes or build brands-we're the best place to do it.
Join Nelnet as an intern and do real work that matters to our business. All Nelnet interns receive one-on-one mentorship, competitive pay, casual dress, flexible schedule, intern-specific programming, and meaningful work experience.
Apply to one of our internships today. Your career awaits.
The Cyber Threat Intelligence Research Intern will support Nelnet's cyber threat intelligence (CTI) program by conducting research, analysis, and dissemination of cyber threat insights. This role will identify threats and their potential impact on Nelnet by monitoring emerging cyber campaigns, profiling threat actors, cataloging indicators of compromise, and contributing to intelligence reports and briefings. The intern will support enterprise cybersecurity operations and help mature the CTI function to better serve security and risk teams across the organization.
**JOB RESPONSIBILITIES:**
+ Conduct research into cyber activity conducted by nation-state and cyber-criminal threat actors and identify tactics, techniques, and procedures used in cyber campaigns
+ Collect, analyze, catalog, and assist in the deployment of indicators of compromise (IOCs) associated with cyber threat actors to help refine detection and response efforts.
+ Identify relevant and actionable cyber threats, trends, and new developments in the threat landscape regarding cyber threat actors through analysis of open-source intelligence (OSINT), news articles, industry blogs/reports
+ Contribute to the development of internal briefings on cyber threat activity
+ Support the development of threat profiles into nation-state cyber and cyber-criminal threat actors
+ Conduct research into new vulnerabilities and impact to Nelnet's technology stack
+ Conduct research into digital threats impacting Nelnet and opportunities for digital risk protection for Nelnet associates and executives
+ Assist with the production of routine cyber threat intelligence products
+ Support the CTI program in identifying opportunities to enhance threat intelligence process
**EDUCATION:**
Currently pursuing a degree in international relations, Information Science & Technology, public policy, international security, or criminal justice.
Must be currently enrolled at the University of Nebraska at Omaha
**EXPERIENCE:**
+ Prior coursework, academic research, or internship experience in cybersecurity, threat intelligence, criminal justice, or a related field.
+ Demonstrated ability to research and analyze information from multiple sources.
+ Exposure to OSINT tools, cybersecurity blogs, or threat feeds is preferred.
**COMPETENCIES - SKILLS/KNOWLEDGE/ABILITIES:**
+ Possession of excellent oral and written communication skills.
+ Strong self-editing skills.
+ Interest in social media or open-source intelligence analysis.
+ Experience with Microsoft Office Suite.
+ Bonus Points:
+ Functional knowledge of the MITRE ATT&CK Framework.
+ Regional interest in Russia, China, or the Middle East.
Pay - $21 - $27/ Hourly
Nelnet is committed to providing a welcoming and respectful workplace where all associates have the opportunity to succeed. As an Equal Opportunity Employer, we ensure that all qualified applicants are considered for employment. Employment decisions are made without regard to race, color, religion/creed, national origin, gender, sex, marital status, age, disability, use of a guide dog or service animal, sexual orientation, military/veteran status, or any other status protected by federal, state, or local law. We value the unique contributions of every team member and believe that a positive work environment benefits everyone.
Qualified individuals with disabilities who require reasonable accommodations in order to apply or compete for positions at Nelnet may request such accommodations by contacting Corporate Recruiting at or .
Nelnet is a Drug Free and Tobacco Free Workplace.
You may know Nelnet as the nation's largest student loan servicer - but we do more than that. _A lot more._ We're also a professional services company, consumer loan originator and servicer, payment processor, renewable energy innovator, and K-12 and higher education expert (and that's just a shortlist). For over 40 years, we've been serving our customers, associates, and communities to make dreams possible.
EEO Info ( | EEO Letter ( | EPPA Info ( | FMLA Info (

Our client, a leader in digital defense, is seeking a highly skilled and experienced Senior Threat Intelligence Analyst to join their elite cybersecurity team in Boise, Idaho, US . This critical role involves researching, analyzing, and disseminating actionable intelligence on advanced persistent threats (APTs), malware, and emerging attack vectors targeting our client's global infrastructure. The successful candidate will be instrumental in shaping the organization's defensive strategies by providing timely and relevant threat insights.

You will be responsible for collecting and analyzing vast amounts of data from various sources, including open-source intelligence (OSINT), dark web forums, threat feeds, and internal security telemetry. Developing comprehensive threat models, understanding adversary tactics, techniques, and procedures (TTPs), and correlating indicators of compromise (IOCs) will be core functions. This role requires a deep understanding of geopolitical landscapes, cybercrime syndicates, and nation-state actors. The ability to translate complex technical findings into clear, concise, and actionable recommendations for security operations, incident response, and executive leadership is paramount.

Responsibilities include:

• Proactively identifying, analyzing, and reporting on emerging cyber threats, campaigns, and actors.
• Developing and maintaining deep understanding of adversary TTPs relevant to our client's industry.
• Leveraging a wide array of intelligence sources, tools, and analytical methodologies.
• Producing high-quality intelligence reports, briefings, and threat assessments tailored to different audiences.
• Collaborating closely with security operations, incident response, and forensic teams to provide context and support.
• Building and maintaining relationships with external intelligence sharing communities and government agencies.
• Developing and implementing threat hunting methodologies based on intelligence insights.
• Contributing to the maturation of the threat intelligence program through process improvements and tool evaluations.
• Mentoring junior analysts and sharing expertise within the team.
• Staying current with the latest cybersecurity trends, vulnerabilities, and attack techniques.

The ideal candidate will possess a Bachelor's degree in Cybersecurity, Computer Science, International Relations, or a related field, with a minimum of 7 years of experience in threat intelligence, cybersecurity analysis, or a similar role. Proven experience with scripting languages (e.g., Python), data analysis tools, and various threat intelligence platforms is essential. Strong analytical, critical thinking, and communication skills are a must. This is a challenging and rewarding opportunity for a seasoned professional looking to make a significant impact on the security of a leading organization.

Amex GBT is a place where colleagues find inspiration in travel as a force for good and - through their work - can make an impact on our industry. We're here to help our colleagues achieve success and offer an inclusive and collaborative culture where your voice is valued.
Amex GBT is seeking a Cyber Security Engineer with an analytical mind and a detailed understanding of cyber security methodologies. Cyber Security Engineers are expected to provide meticulous attention to detail, outstanding problem-solving skills, work comfortably under pressure and deliver on tight deadlines.
To ensure success, a Cyber Security Engineer must display an excellent understanding of technology infrastructures which include but are not limited to Encryption, Certificates, Security governance and oversight, Security Controls, Security tooling, and Security policies and procedures. Top candidates must be comfortable working with a variety of technologies, large scale deployments, security problems and troubleshooting and providing CyberSecurity engineering deliverables in a secure/compliant manner.
**What You'll Do:**
+ Working with CyberSecurity Architects team for the planning, proposal and implementation of security controls and platforms.
+ Working knowledge in the field of CyberSecurity, including but not limited to Cloud deployments, application integration, and APIs.
+ Project level experience working in a team environment with multiple parallel workflows, team members, Project Managers, and defined deliverables.
+ Identify and define system security requirements including requirements for achieving audit requirements.
+ Preparing and documenting standard operating procedures and protocols for the Projects and workflows that the Engineer is participating in for the team.
+ Configure and troubleshoot security infrastructure devices as necessary for a smooth and highly available set of controls.
+ In a team environment, develop technical solutions and deploy security tools to help mitigate security vulnerabilities and automate repeatable tasks
+ Troubleshooting and diagnostic skills for the purpose of providing long term actionable solutions and remediation of issues.
+ Responding to and participating in incidents as a representative of the CyberSecurity Engineering team.
+ Ensuring that the organization's data and infrastructure are protected by enabling and maintaining security controls. This includes Gap Analysis as necessary.
+ Participating in the change management process
+ Daily administrative tasks, reporting and communication with the relevant stakeholders, managers and directors.
+ Delivering comprehensive reports including assessment-based findings, outcomes and solutions for increased system security enhancements
+ Working as part of a team with similarly tasked Engineers and Analysts in a diverse, engaging, supportive and respectful manner
**What We're Looking For:**
+ 5+ years working experience as a Cyber Security Engineer
+ BS degree in Computer Science, Cyber Security or related field or equivalent work experience
+ Knowledge of risk assessment tools, technologies and methods
+ Experience designing secure networks, systems and application architectures
+ Use and deployment of encryption for data protection at rest and in transit for contractual, regulatory and audit requirements
+ Direct experience with implementation of security tools such as WAF, DAM, IPS/IDS, Anti-DDoS, Bot Detection, SIEM, Data Leakage Prevention, Proxy, Automation & Orchestration, etc.
+ Experience working in a team environment for planning, researching and developing security policies, standards and procedures
+ Ability to communicate security issues to peers and management
+ Detailed technical knowledge of database and operating system security
+ Experience with network security and networking technologies and with system, security, and network monitoring tools
+ Thorough understanding of the latest security principles, techniques, and protocols
+ Maintaining current knowledge of technology capabilities and trends
+ Problem solving skills and ability to work under pressure
+ Understanding of the OSI (Open Systems Interconnection) model and well-known ports and services
+ Industry certifications in cyber security such as but not limited to, CISSP, GSEC, CSSP, CEH highly desired
**Location**
United States
The US national base salary range for this position is from
$104,300.00 - $193,700.00
The national range provided includes the base salary that GBT expects to pay for the role. Actual base salary will be based on factors including the scope and complexity of the role and the successful candidate's relevant experience, skills, knowledge, and work location.
In addition to base salary, the anticipated range of which is posted above, this role is eligible for a discretionary annual bonus which rewards participants based on individual and/or company performance.
For information about our comprehensive US benefits programs and eligibility, please review our Benefits-at-a-Glance document.
Benefits at a glance ( #TeamGBT Experience**
Work and life: Find your happy medium at Amex GBT.
+ **Flexible benefits** are tailored to each country and start the day you do. These include health and welfare insurance plans, retirement programs, parental leave, adoption assistance, and wellbeing resources to support you and your immediate family.
+ **Travel perks:** get a choice of deals each week from major travel providers on everything from flights to hotels to cruises and car rentals.
+ **Develop the skills you want** when the time is right for you, with access to over 20,000 courses on our learning platform, leadership courses, and new job openings available to internal candidates first.
+ **We strive to champion Inclusion** in every aspect of our business at Amex GBT. You can connect with colleagues through our global INclusion Groups, centered around common identities or initiatives, to discuss challenges, obstacles, achievements, and drive company awareness and action.
+ And much more!
All applicants will receive equal consideration for employment without regard to age, sex, gender (and characteristics related to sex and gender), pregnancy (and related medical conditions), race, color, citizenship, religion, disability, or any other class or characteristic protected by law.
Click Here ( for Additional Disclosures in Accordance with the LA County Fair Chance Ordinance.
Furthermore, we are committed to providing reasonable accommodation to qualified individuals with disabilities. Please let your recruiter know if you need an accommodation at any point during the hiring process. For details regarding how we protect your data, please consult the Amex GBT Recruitment Privacy Statement ( .
**What if I don't meet every requirement?** If you're passionate about our mission and believe you'd be a phenomenal addition to our team, don't worry about "checking every box;" please apply anyway. You may be exactly the person we're looking for!
Click Here to Learn More (

Our client, a leading innovator in technology solutions, is seeking a proactive and highly skilled Cybersecurity Analyst to join their expanding security team. This role requires a strong understanding of threat landscapes and defensive strategies. The position is based in Boise, Idaho and offers a hybrid work model, allowing for a blend of in-office collaboration and remote flexibility. You will be at the forefront of protecting our client's digital assets, infrastructure, and sensitive data from evolving cyber threats. The ideal candidate possesses a keen analytical mind, extensive experience with security tools, and a passion for staying ahead of emerging security challenges.

Responsibilities:

• Monitor security alerts and events using SIEM and other security tools.
• Investigate and respond to security incidents, performing root cause analysis.
• Conduct vulnerability assessments and penetration testing.
• Develop and implement security policies, procedures, and best practices.
• Manage and maintain security infrastructure, including firewalls, IDS/IPS, and endpoint protection.
• Perform risk assessments and identify potential security weaknesses.
• Develop and deliver security awareness training to employees.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
• Collaborate with IT and development teams to ensure secure system design and implementation.
• Prepare reports on security posture, incident summaries, and recommended improvements.

Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• 5+ years of experience in cybersecurity operations or information security.
• Proficiency with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, firewalls, and endpoint security solutions.
• Experience with vulnerability scanning tools (e.g., Nessus, Qualys) and penetration testing methodologies.
• Knowledge of relevant security frameworks (e.g., NIST, ISO 27001).
• Strong understanding of network protocols, operating systems, and cloud security.
• Excellent analytical, problem-solving, and incident response skills.
• Relevant certifications such as CISSP, Security+, CEH are highly desirable.
• Ability to work effectively in both team and independent settings, with strong communication skills.
• Experience in a hybrid work environment.

This is a critical role that demands vigilance, expertise, and a forward-thinking approach to cybersecurity. You will have the opportunity to work with advanced security technologies and contribute to the protection of a cutting-edge organization. The hybrid nature of this role requires individuals who are self-motivated and can effectively manage their time between remote and in-office responsibilities.

Ready to be pushed beyond what you think you're capable of?
At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system.
To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems.
Our is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be.
While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported.
Security is a primary competency at Coinbase, and the Threat Intelligence team within Security Operations keeps a watchful eye over every aspect of it. Every day, we go to battle against some of the most sophisticated attackers in the world to protect billions of dollars worth of digital assets and ensure that our customers and employees can enjoy a safe, trusted experience. As Coinbase scales globally, our team is scaling along with it, using a blend of tooling, automation, and strategic team growth to ensure that we're well-equipped to protect the next billion users of crypto.
Join our dynamic threat intelligence team at Coinbase to enhance our threat intelligence platform. Your work will directly support our mission of securing crypto assets by developing capabilities within Vertex Synapse to address the evolving needs of our stakeholders and enhance the efficacy of our threat detection and response.
*What you'll be doing (ie. job duties):*
* Develop and integrate external and internal enrichments and power-ups with Vertex Synapse
* Collect and support stakeholder intelligence needs through tool development within Vertex Synapse to satisfy collection management requirements
* Quickly create and fine-tune tools to improve security operations processes and ensure the tools integrate into data processing pipelines
* Enhance the efficiency of processes within Vertex Synapse related to the collection, analysis, storage, tagging, and enrichment of indicators of compromise (IoCs) and associated data to improve the detection and mitigation of cyber threats
* Work closely with security operations teams to align on collection requirements and translate operational requirements into technical specifications
*What we look for in you (ie. job requirements):*
* 3+ years of experience developing enrichments, automations, and tagging in threat intelligence platforms, specifically Vertex Synapse
* Technical proficiency in software development, including demonstrable experience in creating and maintaining security tools
* Exceptional analytical skills to dissect complex problems and synthesize actionable insights, supported by an ability to discover opportunities for unique data correlations
* Ability to rapidly prototype and iterate tool development to adapt to evolving threat intelligence needs
* Experience managing security telemetry data
* Excellent communication skills and a collaborative mindset to work efficiently with cross-functional teams
Job #: P70662
*Pay Transparency Notice:* Depending on your work location, the target annual salary for this position can range as detailed below. Full time offers from Coinbase also include target bonus + target equity + benefits (including medical, dental, vision and 401(k)).
Pay Range:
$144,500-$170,000 USD
Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying.
Commitment to Equal Opportunity
Coinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the in certain locations, as required by law.
Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations Data Privacy Notice for Job Candidates and Applicants
Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available Disclosure
For select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description.
For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate.
*The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment*. To request a reasonable accommodation due to disability, please contact accommodations(at)coinbase.com

Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company connecting patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with more than 50,000 employees in nearly 60 countries, Cardinal Health ranks among the top 20 on the Fortune 500.
Cardinal Health's Information Security team aims to be a world-class cybersecurity and risk management organization that enables Cardinal Health to be healthcare's most trusted partner. We are a remote-first team and are excited to offer full-time remote opportunities. We currently have a full-time career opening for an SIEM Engineer in our Cybersecurity Platform Engineering team.
We boast tremendous opportunities to grow and apply technical skills to meet organizational needs, empowering talented team members who mentor and uplift others, led by leaders with a maniacal focus on employee development and well-being, dedicated training programs, and a fun and collaborative atmosphere.
This role is responsible for onboarding and normalizing data sources from a variety of platforms, developing custom content including dashboards, apps, and addons for our SIEM platform. The right person for this role will be an individual with proven experience onboarding data and developing content for Splunk with a strong passion for Cybersecurity.
**About the Team:**
The Cybersecurity Platform Engineering team is the convergence between systems administration and cybersecurity to provide consistently reliable and available security platforms, while improving the operational efficiency and detection capabilities of cybersecurity operations through integrations, automation, and continuous improvement. We manage a wide range of cybersecurity platforms, build and manage security infrastructure, automate processes and develop custom integrations.
**Responsibilities:**
+ Developing content, onboarding data, and integrating systems with our Security Information Event Management (SIEM)
+ Building cloud native infrastructure including Linux servers, containers, and storage buckets
+ Integration of platforms through APIs
+ Continuous optimization, tuning, and monitoring of platforms
+ Working closely with Cyber Threat & Response
+ Executing projects to improve the cybersecurity maturity of the organization
+ Troubleshooting issues affecting internal customers
+ Participation in POC/RFP by testing solutions or building test environments
+ Mentor other members of the team
**Qualifications**
_Required_
+ Experience onboarding data and developing content for Splunk
+ Excellent Splunk query and dashboarding skills
+ Proficient with Linux Operating Systems
+ Experience working with APIs
+ Experience with reading event logs from common IT and Security platforms
+ Ability to collaborate with numerous teams and internal customers
_Preferred_ _(the following are a plus but not required)_
+ Familiarity with security frameworks (MITRE ATT&CK, NIST CSF, etc.)
+ Experience with Python
+ Agile development experience
+ General knowledge of networking, servers, cloud technologies, and firewalls.
+ Experience in a large enterprise environment (2000+ users) is a plus
**Anticipated salary range:** $93,500 - $140,280
**Bonus eligible:** No
**Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being.
+ Medical, dental and vision coverage
+ Paid time off plan
+ Health savings account (HSA)
+ 401k savings plan
+ Access to wages before pay day with myFlexPay
+ Flexible spending accounts (FSAs)
+ Short- and long-term disability coverage
+ Work-Life resources
+ Paid parental leave
+ Healthy lifestyle programs
**Application window anticipated to close:** 9/15/2025 *if interested in opportunity, please submit application as soon as possible.
The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity.
_Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._
_Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._
_To read and review this privacy notice click_ here (