Senior Cybersecurity Analyst (Remote)

PurposeResp & QualificationsWere seeking a skilled Cybersecurity Analyst to join our dynamic team. In this role, youll be at the forefront of our security efforts, coordinating Penetration and Red Team tests, and working closely with infrastructure and application owners to address and resolve findings. Your responsibilities will include project management, technical oversight, and collaboration with various stakeholders to ensure that vulnerabilities are identified, assessed, and remediated effectively.Essential FunctionsPenetration Testing Coordination:• Plan, schedule, and manage penetration testing and red team engagements.• Collaborate with external vendors and internal teams to ensure tests are conducted efficiently and effectively.• Define scope, objectives, and methodologies for testing in alignment with organizational goals and compliance requirements.Project Management• Lead and oversee Penetration and Red Team testing projects, ensuring timely delivery of results and adherence to quality standards.• Track and manage progress, deliverables, and timelines for multiple concurrent projects.• Facilitate communication between testing teams, infrastructure owners, and application developers.Technical Oversight• Understand and interpret the technical details and findings of Penetration Tests.• Review and analyze reports from Red Team assessments and Penetration Tests.• Provide technical guidance on the remediation of vulnerabilities and security issues identified during testing.Stakeholder Collaboration• Work closely with infrastructure and application owners to communicate findings and prioritize remediation efforts.• Coordinate remediation activities and verify that vulnerabilities are effectively addressed.• Act as a liaison between technical teams and management to ensure alignment and understanding of security issues.Documentation And Reporting• Prepare comprehensive reports and documentation detailing test results, risk assessments, and remediation actions.• Maintain accurate records of testing activities, findings, and resolution status.Continuous Improvement• Stay current with the latest cybersecurity trends, threats, and technologies.• Recommend and implement improvements to testing methodologies and processes based on industry best practices and lessons learned.Supervisory ResponsibilityPosition does not have direct reports but is expected to assist in guiding and mentoring less experienced staff. May lead a team of matrixed resources.QualificationsEducation Level: Bachelor's Degree in Computer Science, Information Technology, or related field OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.Experience: 5 years related experience or cybersecurity certification and 3 years related experience.Knowledge, Skills And Abilities (KSAs)• Ability to explain technical information to technical and nontechnical personnel.• Knowledge of cybersecurity trends and industry best practices.• Knowledge of network architecture and firewall security.• Understanding of business needs and commitment to delivering high-quality, prompt, and efficient service.• Knowledge of cybersecurity risk management techniques, frameworks, best practices and industry/regulatory requirements.Licenses/Certifications Upon Hire Preferred• PMP - Project Management Professional• CISSP Certified Information Systems Security Professional• CISM - Certified Information Security ManagerSalary Range: $89,496 - $177,749Salary Range DisclaimerThe disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the work is being performed. This compensation range is specific and considers factors such as (but not limited to) the scope and responsibilites of the position, the candidate's work experience, education/training, internal peer equity, and market and business consideration. It is not typical for an individual to be hired at the top of the range, as compensation decisions depend on each case's facts and circumstances, including but not limited to experience, internal equity, and location. In addition to your compensation, CareFirst offers a comprehensive benefits package, various incentive programs/plans, and 401k contribution programs/plans (all benefits/incentives are subject to eligibility requirements).DepartmentCybersecurity EngineeringEqual Employment OpportunityCareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.Where To ApplyPlease visit our website to apply: www.carefirst.com/careersFederal Disc/Physical DemandNote: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.Physical DemandsThe associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.Sponsorship in USMust be eligible to work in the U.S. without Sponsorship.