Senior Cyber Security Operations Analyst (Remote)

Resp & Qualifications

PURPOSE:
Performs Cyber Security Operational duties to ensure the appropriate ongoing operations of systems, processes, and policies within the Cyber Security Team. This includes functions such as monitoring, upgrading, day-to-day maintenance, operational changes, etc. in support of projects/initiatives/operations to ensure the effective and efficient operations of the systems, processes, and controls.

This position a remote position but may require coming to office as needed. Your day-to-day responsibilities will include triaging and investigating security alerts, proactive threat hunting, responding to incidents, building detections, and documenting procedures and playbooks.

ESSENTIAL FUNCTIONS:

• Participates in cross functional teams in regular assessments of assigned controls to confirm the efficient and effective operations and efficacy in meeting relevant control objectives. Act as SME/Point-of-contact for certain aspects of systems and/or controls.
• Drives day-to-day ITIL processes to ensure the effective delivery of services while maintain and meeting the overall control objectives. Participates in and may be asked to lead Problem Management process.
• Accountable for understanding customer requirements tactically and support customers while maintaining the control efficacy. Escalates appropriately as warranted by risk/issue.
• Performs and coordinates ongoing maintenance, upgrades, and enhancements to controls and operational systems.
• Assess, plan, and execute security measures in a layered approach to protect the organization.
• Create and modify security Splunk dashboards to clearly identify scope of findings or monitor activity.
• You will work closely with the security engineering and leadership to ensure that we maintain the highest security standards.
• You will be expected to cover SOC duties during normal US working hours in your time zone, in addition to participating in a rotating 24/7 on-call schedule.
• Provide feedback and suggestions on improving the analysis and rules used for user behavior analysis.
• Identifies gaps in information insights that may help with detecting and assessing insider concerns.
• Helps identify and obtain log information and other contextual data for use in insider threat detection and assessments.

SUPERVISORY RESPONSIBILITY:
Position does not have direct reports but is expected to assist in guiding and mentoring less experienced staff. May lead a team of matrixed resources.
QUALIFICATIONS:
Education Level: Bachelor's Degree in Computer Science, Cyber Security, Information Technology, or related field OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.

Licenses/Certifications Preferred:

• CISSP Certified Information Systems Security Professional Upon Hire or
CISM - Certified Information Security Manager Upon Hire

• 
  

Experience: 5 years relevant information security experience
Preferred Qualifications

• Prior experience as a tier 2 or 3 SOC analyst or as an incident responder, preferably in a regulated or high security environment.
• Experience utilizing Splunk and writing Splunk search queries.
• Exposure to threat intelligence principals and experience building custom detections to cover identified gaps.
• Experience with NIST compliance and regulations.
Ability to manage both internal and external stakeholder relationships through effective communication and a solution-oriented approach.

Knowledge, Skills and Abilities (KSAs)

• Ability to explain technical information to technical and nontechnical personnel.
• Knowledge of cybersecurity trends and industry best practices.
• Knowledge of network architecture and firewall security.
• Understanding of business needs and commitment to delivering high-quality, prompt, and efficient service.
• Knowledge of cybersecurity risk management techniques, frameworks, best practices and industry/regulatory requirements.
Must be able to meet established deadlines and handle multiple customer service demands from internal and external customers, within set expectations for service excellence. Must be able to effectively communicate and provide positive customer service to every internal and external customer, including customers who may be demanding or otherwise challenging.

Salary Range: $81,144 - $161,161

Salary Range Disclaimer

The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the work is being performed. This compensation range is specific and considers factors such as (but not limited to) the scope and responsibilites of the position, the candidate's work experience, education/training, internal peer equity, and market and business consideration. It is not typical for an individual to be hired at the top of the range, as compensation decisions depend on each case's facts and circumstances, including but not limited to experience, internal equity, and location. In addition to your compensation, CareFirst offers a comprehensive benefits package, various incentive programs/plans, and 401k contribution programs/plans (all benefits/incentives are subject to eligibility requirements).

Department

CyberOps

Equal Employment Opportunity

CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.

Where To Apply

Please visit our website to apply: www.carefirst.com/careers

Federal Disc/Physical Demand

Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.

PHYSICAL DEMANDS:

The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.

Sponsorship in US

Must be eligible to work in the U.S. without Sponsorship

#LI-DM1