Resp & Qualifications
The Lead Cyber Security Intrusion Analyst leads cloud security event monitoring and correlation within the Cybersecurity Operations Center. The selected candidate should have proven experience and the ability to leverage computer network defense (CND) analyst toolsets to detect and respond to Cyber security incidents. This role conducts research and documents threats and their behavior; provides recommendations for threat mitigation strategies; employs effective communication to clearly manage security incident response procedures; and performs routine event reporting including trend reporting and analysis.
PRINCIPLE ACCOUNTABILITIES: Under the direction of the Manager, CyberSecurity Monitoring, Digital Forensics and Incident Response, the incumbent is responsible for, but is not limited to, the following:
Duties and Responsibilities:
Required Education and Experience: Degree or equivalent experience: BA/BS in Information Technology, CyberSecurity, Networking, Security, MIS, Computer Science or related field
Years of experience: minimum 8 years of demonstrated work experience. (Additional experience may be substituted for educational requirement.)
Along with the basic qualifications, the candidate will need to have experience in the following areas:
Specialized training (preferred, but not required): Static and dynamic malware analysis, network anomaly detection and analysis, host and network-based forensics, and user and entity behavioral analytics. Incident response principles or related technical domain that is applied in the context of a broader understanding of CSIRT and related systems and processes.
Certification requirements (preferred, but not required):
Required Skills and Abilities:
Must be able to effectively work in a fast-paced environment with frequently changing priorities, deadlines, and workloads that can be variable for long periods of time. Must be able to effectively communicate.
Incumbent must have a firm understanding of Information and/or Cyber Security principles. Must be able to adapt quickly to understand rapidly changing threat landscape in order to correctly scope and prioritize security events. The incumbent must also be able to achieve certification across multiple domains such as networking, security, development languages, etc.
Department: InfoSec - CyberSecurity Engine
Equal Employment Opportunity
CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.
Hire Range Disclaimer
Actual salary will be based on relevant job experience and work history.
Where To Apply
Please visit our website to apply: www.carefirst.com/careers
Please apply before: 5/12/2020
Federal Disc/Physical Demand
Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on federal health care programs.
The physical demands described here are representative of those that must be met by an associate to perform the essential duties and responsibilities of the position successfully. Requirements may be modified to accommodate individuals with disabilities.
The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights of up to 10 pounds are occasionally lifted.
Sponsorship in US
Must be eligible to work in the U.S. without Sponsorship