Senior Cyber Security Analyst

Position Purpose:

Performs daily monitoring and review of security events that are escalated by junior analysts. Keeps up with the cyber threat landscape in order to rapidly identify potential threats. Performs security assessments such as penetration testing, vulnerability scanning and advanced threat hunting.

What You'll Do:

• Plans and performs security assessments such as penetration testing, vulnerability scanning and advanced threat hunting. Anticipates and mitigates potential attacks through enterprise connections to ensure the security of the system (s). Exploits weaknesses detected in systems to assess and prevent potential break-ins. Analyzes business impact and exposure based on security threats, vulnerabilities, and risks. Keeps up with the cyber threat landscape in order to rapidly identify potential threats. Ensures security tools are properly tuned to identify and contain cyber-attacks before they happen.

• Develops and implements enterprise information security architectures and solutions. Researches, designs, and advocates new technologies, infrastructure, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Identifies, plans and implements security tools.

• Performs daily monitoring and review of security events that are escalated by junior analysts. Provides security technical guidance to junior analysts. Performs investigations as needed and responses to potential incidents rapidly and accurately.

• Researches new security/cyber intelligence and keeps up with the cyber threat landscape in order to rapidly identify potential threats. Ensures security tools are properly tuned to identify and contain cyber-attacks before they happen.

• Evaluates and recommends procedures and processes for the prevention, detection, containment and correction of information security breaches. Advises management and users regarding security procedures.

• Monitors security agencies and services in order to keep apprised of current security threats and concerns. Evaluates products and/or procedures to enhance productivity and effectiveness of information security across the organization.

To Qualify for This Position, You'll Need:

This position requires a clearance which requires U.S. Citizenship to obtain.

Required Education:

• Bachelor's degree in a job-related field

Degree Equivalency:

• Associate's degree plus an extra 2 years job-related work experience for a total of 10 years of required work experience (see "required work experience).

OR

• 12 total years required job-related work experience

Required Work Experience:

• 8 years of job-related technical experience.

Required Skills and Abilities:

• Strong analytical, data gathering and problem-solving skills with experience analyzing network attacks.

• Understanding of system and network security, incident management, intrusion detection, log analysis, and related technologies.

• Creativity to recognize and address new threats and security challenges as they arise.

• Strong knowledge of enterprise data architecture, systems engineering and data communications as applied to the automated storage and retrieval of information, using multiple platforms and protocols with the inherent security risks of each.

• Ability to effectively prioritize and execute tasks in a high-pressure environment.

• Comprehensive understanding of the organization's goals and objectives.

• Expertise with threat analysis risk management, configuration management, business continuity and contingency planning.

• Advanced knowledge of administrative, procedural and technical controls used to reduce security risks.

• Ability to troubleshoot multi-vendor Security issues.

• Strong organizational, interpersonal and oral communication skills.

• Advanced proficiency in network troubleshooting, diagnostic root cause analysis.

• Excellent analytical and problem-solving abilities.

Work Environment: Fast paced, multi-platformed environment which may require action and response 24X7 to support the technical business needs of the customer.

Required Software and Other Tools:

• Advanced proficiency with applicable IT Security tools (software and hardware).

• Microsoft Office.

We Prefer that You Have:

• Penetration testing specific certification (GPEN, CRTO, RTAC).

• Web application penetration testing and vulnerability analysis experience.

• Strong incident response experience in a medium to large sized enterprise.

• Experience interpreting and acting on cyber threat intelligence.

• COMPTIA Security +

• ISACA Certified Information Security Manager

• EC Certified Ethical Hacker (CEH)

• ISC2 System Security Certified Practitioner (SSCP)

• ISC2 Certified Information Systems Security Professional (CISSP)

• Offensive Security Certified Professional (OSCP)

What We Can Do for You:

We understand the value of a diverse and inclusive workplace and strive to be an employer where employees across all spectrums have access and opportunity to develop their skills, advance their careers and contribute their unique abilities to the growth of our company.

Our comprehensive benefits package includes:

• 401(k) retirement savings plan with company match

• Subsidized health plans and free vision coverage

• Life insurance

• Paid annual leave - the longer you work here, the more you earn

• Nine paid holidays

• On-site cafeterias and fitness centers in major locations

• Wellness programs and a healthy lifestyle premium discount

• Tuition assistance

• Service recognition

What to Expect Next:

After submitting your application, our recruiting team members will review your resume to ensure you meet the qualifications. This may include a brief telephone interview or email communication with our recruiter to verify resume specifics and salary requirements. Management will be conducting interviews with those candidates who qualify with prioritization given to those candidates who demonstrate the preferred qualifications.

Equal Employment Opportunity Statement

BlueCross BlueShield of South Carolina and our subsidiary companies maintain a continuing policy of nondiscrimination in employment to promote employment opportunities for persons regardless of age, race, color, national origin, sex, religion, veteran status, disability, weight, sexual orientation, gender identity, genetic information or any other legally protected status. Additionally, as a federal contractor, the company maintains affirmative action programs to promote employment opportunities for individuals with disabilitiesand protected veterans. It is our policy to provide equal opportunities in all phases of the employment process and to comply with applicable federal, state and local laws and regulations.

We are committed to working with and providing reasonable accommodations to individuals with disabilities, pregnant individuals, individuals with pregnancy-related conditions, and individuals needing accommodations for sincerely held religious beliefs, provided that those accommodations do not impose an undue hardship on the Company.

If you need special assistance or an accommodation while seeking employment, please email mycareer.help@bcbssc.comor call 800-288-2227, ext. 47480 with the nature of your request. We will make a determination regarding your request for reasonable accommodation on a case-by-case basis.

We participate in E-Verify and comply with the Pay Transparency Nondiscrimination Provision. We are an Equal Opportunity Employer. Here's moreinformation.

Some states have required notifications. Here's more information.