Resp & Qualifications

PURPOSE:

Executes and implements the Information Security Strategy to reduce risk and provide an appropriate level of information security to address business needs in the most cost effective and reliable methods possible. Responsible for planning, developing, mentoring, leading, and monitoring work of the department and its staff.

ESSENTIAL FUNCTIONS:

• Manage initiatives within the full Information Security Program including directly overseeing the evaluation, development and implementation of secuity programs. Consults with internal stakeholders to meet client delivery, quality, and cost goals.

• Manages subordinate staff members in the day-to-day operations of cybersecurity in a highly remote environment.

• Creates a system of measurable metrics to effectively monitor the impact of the cybersecurity program. This position is directly supervising the cybersecurity incident/event response program. Must be able to oversee and provide metrics relevant to cybersecurity event detection and response.

• Manage the daily operations of the CSOC, ensuring alerts and investigations are handled properly and according to SLA.

• Ensures organizational procedures are aligned to maintain compliance with industry and regulatory standards.

• Monitors trends to ensure organizational efficiency in cybersecurity applications.

SUPERVISORY RESPONSIBILITY:

This position manages people.

QUALIFICATIONS:

Education Level: Bachelor's Degree Computer Science, Information Technology, or related field OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.

Licenses/Certifications Upon Hire Preferred:

CISSP Certified Information Systems Security Professional OR

Certified Information Security Manager (CISM)

CompTIA Advanced Security Practitioner (CASP)

Experience:

• 5 years Related professional experience.

• 1 year Supervisory experience or demonstrated progressive leadership experience. Must have leadership experience in a SOC.

Knowledge, Skills and Abilities (KSAs)

• Ability to multitask and manage multiple IT vendor relationships.

• Ability to lead and work as part of a remote and/or hybrid team.

• Ability to execute technology and tool automation processes.

• Knowledge of risk treatment and mitigation strategies.

• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity.

• Thorough understanding of cyber threats and vulnerabilities.

• Must be able to meet established deadlines and handle multiple customer service demands from internal and external customers, within set expectations for service excellence. Must be able to effectively communicate and provide positive customer service to every internal and external customer, including customers who may be demanding or otherwise challenging.

Salary Range: $137,920 - $256,014

Salary Range Disclaimer

The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the work is being performed. This compensation range is specific and considers factors such as (but not limited to) the scope and responsibilites of the position, the candidate's work experience, education/training, internal peer equity, and market and business consideration. It is not typical for an individual to be hired at the top of the range, as compensation decisions depend on each case's facts and circumstances, including but not limited to experience, internal equity, and location. In addition to your compensation, CareFirst offers a comprehensive benefits package, various incentive programs/plans, and 401k contribution programs/plans (all benefits/incentives are subject to eligibility requirements).

Department

Cyber Operations

Equal Employment Opportunity

CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.

Where To Apply

Please visit our website to apply: www.carefirst.com/careers

Federal Disc/Physical Demand

Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.

PHYSICAL DEMANDS:

The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.

Sponsorship in US

Must be eligible to work in the U.S. without Sponsorship

#LI-RC1

REQNUMBER: 19529