Cybersecurity Forensics/ Threat Analyst (Remote)

The Cybersecurity Forensic/ Threat Analyst, on the Incident Response team at Florida Blue, conducts forensic analysis, data recover, eDiscovery and other normal Threat Analyst work. They are responsible for comprehensive analysis, including recommending appropriate course of action and escalation to various business areas. They perform various cybersecurity examinations of computers and media to identify user activities and collect evidence as an expert in the area of forensic computer science. They assist with cyber event response by cooperating with third-party incident response teams and law enforcement agencies by providing logs, reports, alert notifications, and other requested information.

What are the Key Responsibilities:

• Technical expertise in following industry best practices and standards in digital evidence acquisition, handling and documentation

• Collaborates with fraud examiners, other IT investigative experts, counsel, human resources (HR) and other IT technical personnel in investigations.

• Identify artifact and evidence locations to answer crucial questions, including application execution, file access, data theft, external device usage, cloud services, device geolocation, file transfers, anti-forensics, and detailed system and user activity.

• Assists in the preparation of detailed technical papers, presentations, recommendations, and findings for Management and other Technology Leaders

• Periodically provides briefings and presentations to colleagues and leadership supporting analysis of cyber threats

• Assists remediation actions as a result of threat and vulnerability assessments or audits

• Provides training to others on security capabilities, processes, procedures and operational tasks

What is Required:

• 5+ years related work experience, including 4+ years Cybersecurity  / 1+ years Information Technology Infrastructure

• Demonstrated hands-on experience with information threat analysis and detection concepts and principles and impact.  Knowledge of tactics, techniques and procedures leveraged by attackers and adversaries (e.g., MITRE ATT&CK)

• Technical expertise in performing digital forensics on a variety of media, including hard drives; portable storage (e.g., USB drives, memory cards); smartphones and tablets; and cloud services (SaaS, IaaS)

• Experience or familiarity in collaborating with agencies (ie law enforcement) for investigation/search and seizure, including knowledge of how to acquire, manage and store evidence that can be legally admissible.

• CiSSP Certification or equivalent, or ability to obtain within 180 days in the role

• Familiar with Forensic analysis of Windows platforms, various UNIX Operating systems.

• Strong technical knowledge of security architecture, tools and controls with specific demonstrated experience in proactive detection, mitigation, and resolution of advanced cyberattacks/threats, security firewalls, data loss prevention, encryption, or end point protection appliances

• Strong technical knowledge of current systems, software, protocols and standards. (Including TCP/IP and network administration/protocols). Knowledge of network infrastructure including routers, switches, firewalls and associated network protocols and concepts.

• Experience developing, documenting and maintaining security procedures.

• Experience communicating highly complex technical information clearly and articulately for all levels and audiences.

• Strong team-oriented interpersonal skills with the ability to communicate successfully with a broad range of people and roles including vendors and IT-business personnel.

• Bachelor’s degree or additional related equivalent work experience - Computer Information Systems with Cybersecurity

What is Preferred:

• GIAC Certified Forensic Analyst (GCFA) or similar

• Understanding of HIPAA

General Physical Demands
Sedentary work: Exerting up to 10 pounds of force occasionally to move objects. Jobs are sedentary if traversing activities are required only occasionally.

What We Offer:
As a Florida Blue employee, you will thrive in our Be Well, Work Well, GuideWell culture where being well as an individual, and working well as a team, are both important in serving our members and communities.
To support your wellbeing, comprehensive benefits are offered. As an employee, you will have access to:

  Medical, dental, vision, life and global travel health insurance;

  Income protection benefits: life insurance, Short- and long-term disability programs;

  Leave programs to support personal circumstances;

  Retirement Savings Plan includes employer contribution and employer match;

  Paid time off, volunteer time off, and 11 holidays

  Additional voluntary benefits available; and

  A comprehensive wellness program
Employee benefits are designed to align with federal and state employment laws. Benefits may vary based on the state in which work is performed. Benefits for intern, part-time and seasonal employees may differ.
To support your financial wellbeing, we offer competitive pay as well as opportunities for incentive or commission compensation. We also conduct regular annual reviews with pay for performance considerations for base pay increases.
Annualized Salary Range: $93,700 - $152,200
Typical Annualized Hiring Range: $93,700 - $117,100
Final pay will be determined with consideration of market competitiveness, internal equity, and the job-related knowledge, skills, training, and experience you bring.
We are an Equal Opportunity/Protected Veteran/Disabled Employer committed to creating a diverse, inclusive and equitable culture for our employees and communities.