Cybersecurity Operations Specialist - Hybrid

Job Description

Grow your career at Cedars‑Sinai! We were recently named one of the “Best Places to Work in IT 2025” by Computerworld and ranked #2 among large organizations for hybrid work.

Cedars‑Sinai’s Healthtech excellence was acknowledged again by the “CHIME Digital Health Most Wired” recognition program. The organization was assigned Level 10, the most prestigious level of certification, among more than 300 surveyed healthcare organizations. Cedars‑Sinai netted high scores across multiple verticals and excelled in areas of infrastructure, interoperability, and population health innovation.

Beyond an outstanding benefit package and competitive salaries, we take pride in hiring the best, most committed employees. Our staff reflects the culturally and ethnically diverse community we serve. They are proof of our dedication to creating a multifaceted, inclusive environment that fuels innovation and the gold standard of patient care we strive for.

The Cybersecurity Operations Specialist is responsible for active monitoring, detection, analysis, and response to cybersecurity threats. This position plays a meaningful role in maintaining situational awareness and protecting enterprise systems, networks, and data from unauthorized access or disruption.

The role involves working with various security tools and platforms to triage alerts, investigate incidents, and support containment and recovery efforts. Strong analytical skills, attention to detail, and the ability to recognize threat patterns are critical. The position also requires effective collaboration with multi‑functional teams and the ability to detail findings and actions clearly.

• Versatility with a range of security tools and platforms (SIEM, EDR, firewall logs, threat intelligence feeds) to support alert triage and incident response.
• Strong analytical thinking with the ability to detect suspicious patterns, identify anomalies, and recognize emerging threats.
• Proficiency in reviewing logs across various systems (Windows, Linux, network devices) to identify anomalous or unauthorized activity.
• Ability to consistently meet response‑time expectations for alerts and incidents, maintaining a sense of urgency and accountability.
• Clear and structured documentation of investigation findings, remediation steps, and response actions for both technical and non‑technical audiences.

Hybrid Remote: must currently live in Los Angeles area or be willing to relocate to the LA area for weekly onsite requirements.

• Two (2)+ years of experience in a cybersecurity operations role focused on investigating security alerts, analyzing logs, and supporting incident response across endpoint, network, and cloud environments.
• Demonstrated understanding of computer/network security and operating systems (UNIX/LINUX, Windows, NT).
• LAN/WAN networking protocols such as TCP/IP, routing, firewalls, IDS/IPS, PKI and encryption.
• Solid understanding of core cybersecurity concepts including network protocols, common attack techniques (phishing, privilege escalation, lateral movement), endpoint and web‑based threats, and access control principles relevant to security alert investigation and response.

• High School Diploma/GED.
• Bachelor’s Degree in Computer Science, Information Technology, or related field (preferred).
• CISSP (Certified Information Systems Security Professional) certificate (preferred).