Principal SOC Analyst

Description

Role Snapshot
As a key member of the Security Operations Center (SOC), our Principal SOC Analyst serves as the first line of defense in WPS's highly secure and regulatory-compliant environment, delivering innovative solutions. This senior analyst brings advanced cybersecurity expertise to lead and mentor other SOC analysts, develop and optimize monitoring tools, procedures, and ensure clear, effective communication with auditors and business stakeholders. This Principal SOC Analyst plays a critical role in guiding complex security initiatives, responding to incidents, and driving continuous improvement across SOC operations.

Salary Range
$125,000 ~ $160,000
The base pay offered for this position may vary within the posted range based on your job-related knowledge, skills, and experience.

Work Location
Our first consideration will be to have this new employee live in the state of Wisconsin to take advantage of Hybrid work and collaboration. Employees within 45 miles of WPS Headquarters (1717 W. Broadway in Madison, WI) will be expected to be able to be able to work Hybrid 3 days a week on a regular basis.

**As a secondary consideration, we do offer remote work in the following approved states:
Colorado, Florida, Georgia, Illinois, Indiana, Iowa, Michigan, Minnesota, Missouri, Nebraska, New Jersey, North Carolina, Ohio, South Carolina, Texas, Virginia, Wisconsin

How do I know this opportunity is right for me? If you:

• Enjoy leading security incident response by managing the end-to-end process, including preparation, detection, containment, eradication, recovery, and post-incident analysis.
• Have coordinated testing, simulations, and training exercises to ensure team readiness.
• Like to provide expert-level guidance and mentorship to SOC analysts, fostering skill development, knowledge sharing, and continuous improvement in threat detection and response capabilities.
• Thrive when designing, implementing, and maintaining SOC monitoring solutions, tools, and procedures to enhance threat visibility, detection accuracy, and operational efficiency.
• Can represent the SOC function in audits, vendor discussions, cross-functional meetings, and other engagements, ensuring clear communication of security posture and operational effectiveness.
• Enjoy developing, reviewing, and maintaining comprehensive SOC documentation, including standard operating procedures (SOPs), incident handling playbooks, and monitoring protocols to support operational consistency and compliance.
• Can serve in an on-call capacity to support the Security Operations Center (SOC) and Incident Response Manager during security incidents, ensuring timely escalation, coordination, and resolution of critical events outside of regular business hours.
  

Minimum Qualifications

• U.S. citizenship is required for this position due to Department of Defense restrictions.
• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related field, or equivalent education and/or relevant work experience.
• 7 or more years of progressive cybersecurity experience, with strong expertise in Security Operations Center (SOC) activities, including incident detection, analysis, containment, and recovery in complex enterprise environments.
• Security Operations Center experience that includes:
  
  • Proficient with Security Information and Event Management (SIEM) platforms, including log correlation, alert tuning, and threat detection strategies.
  • Experienced in applying the MITRE ATT&CK framework and aligning security operations with standards such as NIST, CMMC, and MAC-ARS controls in regulated environments.
  • Solid technical background in network security, cloud security architectures (AWS, Azure), and emerging AI/ML security principles for threat mitigation and SOC automation.
  • Working knowledge of scripting languages (PowerShell, Python) and foundational skills in AI integration to enhance SOC processes.
  • Strong leadership, mentoring, and communication skills with the ability to engage technical and non-technical stakeholders effectively.
  • Skilled in security policy development, technical documentation, and diagramming tools (e.g., Visio, Lucidchart).
    
  
  
  

Preferred Qualifications

• Experience working on federal contracts in a highly security conscious environment, i.e: experience with CMMC (Cybersecurity Maturity Model Certification) OR MAC-ARS (Medicare Administrative Contractor CMS - Acceptable Risk Safeguards) controls.
• Industry certifications could include: CISSP, CCSP, or CISM.
  

Remote Work Requirements

• High speed cable or fiber internet
• Minimum of 10 Mbps downstream and at least 1 Mbps upstream internet connection (can be checked at https://speedtest.net)
• Please review Remote Worker FAQs for additional information
  

Benefits

• Remote and hybrid work options available
• Performance bonus and/or merit increase opportunities
• 401(k) with a 100% match for the first 3% of your salary and a 50% match for the next 2% of your salary (100% vested immediately)
• Competitive paid time off
• Health insurance, dental insurance, and telehealth services start DAY 1
• Professional and Leadership Development Programs
• Review additional benefits: (https://www.wpshealthsolutions.com/careers/fulltime_benefits.shtml)
  

Who We Are

WPS, a health solutions company, is a leading not-for-profit health insurer and federal government contractor headquartered in Madison, Wisconsin. WPS offers health insurance plans for individuals, families, seniors and group health plans for small to large businesses. We process claims and provide customer support for beneficiaries of the Medicare program and manage benefits for millions of active-duty and retired military personnel across the U.S. and abroad. WPS has been making healthcare easier for the people we serve for nearly 80 years. Proud to be military and veteran ready.

Culture Drives Our Success

WPS' culture is where the great work and innovations of our people are seen, fueled and rewarded. We accomplish this by creating an open and empowering employee experience. We recognize the benefits of employee engagement as an investment in our workforce-both current and future-to effectively seek, leverage, and include differing and unique perspectives that fuel agility and innovation on high-performing teams. This results in people bringing their authentic selves to work every day in an organization that successfully adapts to business changes and new opportunities.

We are proud of the recognition we have received from local and national organization regarding our culture and workplace: WPS Newsroom - Awards and Recognition.

Sign up for Job Alerts

FOLLOW US
Instagram
LinkedIn
Facebook
WPS Health Blog

This position may from time to time provide support to federal health care programs and other governmental or regulated industries. In accordance with law and/or contractual requirements, individuals in this role are or may be subject to all applicable federal regulations, agency contract requirements, and WPS internal policies, including but not limited to standards for data security, privacy, confidentiality, and program integrity. WPS and its personnel are subject to mandatory enhanced screening and background investigation prior to being granted access to information systems and/or sensitive data in order to safeguard regulated information and government resources that provide critical services.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

This employer is required to notify all applicants of their rights pursuant to federal employment laws.
For further information, please review the Know Your Rights notice from the Department of Labor.

---