🌎
This job posting isn't available in all website languages

(While navigating through the site, please be sure to disable your pop-up blocker.)


Senior Cybersecurity Analyst - Security Operations Center

📁
Information Technology
💼
📅
181685 Requisition #
Sign Up for Job Alerts

The University of Texas MD Anderson Cancer Center is seeking a Senior Cybersecurity Analyst Security Operations Center to serve within the Cybersecurity department, supporting the Security Operations Center (SOC). The Senior Cybersecurity Analyst Security Operations Center is responsible for continuous monitoring, detection, analysis, and response to cybersecurity threats and incidents across the institution, operating as a key Tier 2 escalation resource. This role plays a critical function in bridging frontline triage with advanced forensic investigation while strengthening enterprise detection capabilities.
UT MD Anderson is a leading institution focused on cancer care, research, education, and prevention. The Senior Cybersecurity Analyst Security Operations Center contributes directly to protecting critical systems, data, and operations that enable lifesaving work. As part of a highly specialized SOC team, the Senior Cybersecurity Analyst Security Operations Center ensures the organization maintains a strong, proactive cybersecurity posture.
The ideal candidate brings advanced SOC experience with strong hands-on expertise in SIEM platforms, threat detection, and incident response, along with a bachelor’s degree in a relevant field (master’s preferred). They demonstrate leadership in handling complex security incidents, possess relevant industry certifications such as GCIA, GCIH, GCFA, CySA+, Security+, or CISSP, and have experience operating within enterprise environments while mentoring junior analysts.
Minimum $106,500 – Midpoint $133,000 – Maximum $159,500
Work Location: Remote 100% within Texas

Why Us?
This role offers the opportunity to play a key part in safeguarding critical healthcare and research systems while advancing your cybersecurity career in a mission-driven environment. UT MD Anderson supports professional growth through complex technical challenges, mentorship opportunities, and exposure to advanced technologies, while fostering a work environment that values operational excellence and work-life balance.
• Employer-paid medical coverage starting day one for employees working 30+ hours/week, plus optional group dental, vision, life, AD&D, and disability insurance.
• Accruals for PTO and Extended Illness Bank, plus paid holidays, wellness, childcare, and other leave options.
• Tuition Assistance Program after six months of service and access to extensive wellness, fitness, and employee resource groups.
• Defined-benefit pension through the Teachers Retirement System, voluntary retirement plans, and employer-paid life and reduced salary protection programs.
Responsibilities
Security Monitoring & Threat Detection
• Lead continuous monitoring of the institutional environment using SIEM and detection platforms
• Develop, tune, and maintain correlation rules, detection use cases, and alerting content
• Identify malicious or anomalous activity through advanced threat detection techniques
Incident Response & Triage
• Lead response to escalated Tier 1 alerts and security incidents
• Investigate root causes and determine scope and impact of incidents
• Manage containment and eradication procedures to resolve threats
Threat Hunting & Intelligence Integration
• Proactively hunt for hidden threats and anomalous activity across systems
• Operationalize threat intelligence including indicators of compromise and adversary TTPs
• Map observed activity to the MITRE ATT&CK framework to enhance detection and response
Detection Engineering, AI & Automation
• Develop and maintain detection logic, use cases, and automated response playbooks
• Minimize false positives through continuous tuning and optimization
• Leverage AI technologies, including generative and agentic capabilities, to improve SOC performance
• Support development and implementation of AI agents integrated with security tools and MCP
Technical Leadership, Metrics & Documentation
• Serve as a technical lead and escalation point for SOC analysts
• Mentor junior and mid-level analysts and lead knowledge transfer activities
• Develop SOC metrics, dashboards, and reports on performance and threat trends
• Maintain SOC workflows, runbooks, and standard operating procedures
• Support escalation of complex incidents to Tier 3 or CSIRT teams

EDUCATION

  • Required: Bachelor's Degree Computer Information Systems, Business Information Systems, Computer Science or related field.
  • Preferred: Master's Degree Information Security, Computer Science or related field.

WORK EXPERIENCE

  • Required: 5 years Experience in information security/cybersecurity experience, to include experience in multiple security domains.
  • May substitute required education degree with additional years of equivalent experience on a one to one basis.
  • Preferred: At least 4–5 years of hands-on experience working in a Security Operations Center performing alert triage, investigation, and incident response, hands-on (querying, building/tuning detections, dashboards) in an enterprise SIEM, direct experience leading or serving as a primary responder on security incidents through the full lifecycle, relevant industry certification (e.g., GCIA, GCIH, GCFA, CySA+, Security+, or equivalent).
  • Required: Ability to work an on-call rotation and/or shift coverage as required by 24x7 SOC operations. 
  • Prefer candidates in the Houston Texas and surrounding area. 

LICENSES AND CERTIFICATIONS

  • Preferred: CISSP Certified Information Systems Security Professional
  • Preferred: Certified Information Systems Auditor (CISA) 
  • Preferred: Other applicable industry certifications.

The University of Texas MD Anderson Cancer Center offers excellent benefits, including medical, dental, paid time offretirement, tuition benefits, educational opportunities, and individual and team recognition.

This position may be responsible for maintaining the security and integrity of critical infrastructure, as defined in Section 113.001(2) of the Texas Business and Commerce Code and therefore may require routine reviews and screening. The ability to satisfy and maintain all requirements necessary to ensure the continued security and integrity of such infrastructure is a condition of hire and continued employment.

It is the policy of The University of Texas MD Anderson Cancer Center to provide equal employment opportunity without regard to race, color, religion, age, national origin, sex, gender, sexual orientation, gender identity/expression, disability, protected veteran status, genetic information, or any other basis protected by institutional policy or by federal, state, or local laws unless such distinction is required by law.http://www.mdanderson.org/about-us/legal-and-policy/legal-statements/eeo-affirmative-action.html

My Submissions

Track your opportunities.

My Submissions

Similar Listings

United States, Texas, Houston, Houston (TX Med Ctr)

📁 Information Technology

Requisition #: 178303

United States, Texas, Houston, Houston (TX Med Ctr)

📁 Information Technology

Requisition #: 181480

United States, Texas, Houston, Houston (TX Med Ctr)

📁 Information Technology

Requisition #: 181687