Information Security Analyst

Ready to help us transform healthcare? Bring your true colors to blue. What We Need The Information Security Analyst will provide expertise in the areas of IT security monitoring, investigation, and incident response. The Analyst will be the primary resource responsible for analyzing and responding to alerts generated by various security tools including SIEM, endpoint anti-virus and anti-malware, and data-loss prevention technologies, and others. The Analyst will be expected to become familiar with all security tooling and to aid in its management and tuning. The Analyst will contribute to strategic planning by offering insight into the current state of security operations and recommending ways to improve its effectiveness. In addition, The Analyst will be expected to seek ways to automate the incident response process and to implement technical automation improvements. The Analyst will work to resolve additional security tickets not related to incident response. These would include such tasks as ensuring new servers are configured with appropriate security tooling and that decommissioned servers are appropriately reconciled in our security inventory. The Analyst may be called to facilitate or assist in other IT security domains including vulnerability management, penetration testing, digital certificate management, and privileged access management.

Day-to-Day
Serve as a deeply skilled and knowledgeable resource for the corporate SIEM. In addition to analyzing and responding to alerts generated by the SIEM, the analyst will be expected to tune the SIEM to reduce false positives, create custom rules in the SIEM, and advance the capabilities of the SIEM to make it a more effective enterprise security solution.
Document and track security incidents and breaches using the corporate GRC platform.
Develop dashboards and metrics to help track current state of security tooling. Use these artifacts to guide advancements to the corporate security program.
Create playbooks which describe standard incident response procedures and the operation of security tooling.
Work with security engineering personnel to take over operational duties for new and existing security tools deployed to the environment.
Recommend and implement ways to automate the incident response process through the corporate SIEM/SOAR platforms.

Key Competencies
Technically competent
Deep understanding of information security frameworks, security operations, standard IT processes and challenges.
Intimate with technical security solutions, their common uses and capabilities.
Process threat feeds to incorporate security intelligence into our threat monitoring capabilities.
Stay up to date on information technology trends and security standards.

Adaptability & Growth
Recognizes opportunities for automation and, either directly or working with engineering personnel, implements changes into our SOAR platform.
Develops and demonstrates intimacy and understanding of the BCBSMA environment.
Capable of working with others to follow through on cross-functional tasks.

Analyzing Needs & Proposing Solutions
Owns problems and solutions as a creative problem solver.
Recommends changes to our security posture based on emerging threats to the environment.

Fostering Teamwork & Collaboration
Able to work independently but seeks input for colleagues and others, drives partnering relationships.

Communicating Effectively
Overall effective communication skills providing a crisp, concise message, specifically tailored for the intended audience to maximize impact and drive change.

Acting with Urgency
Understands the impact of high severity security alerts and prioritizes to ensure these alerts are actioned in a timely and effective manner.
Recognizes the importance of the role and understands that The Analyst provides one of the first lines of defense to the organization.

What We're Looking For & What You Bring:
BS in Technology or Computer Science related field with 3+ years of experience required.
SANS Institute, CEH, or CISSP certification preferred.
Experience with leading edge SIEM/SOAR platforms, endpoint protection, CASB/DLP, privileged access management systems, and certificate management.
Familiarity with networking and various computer operating systems.
Expert knowledge in operating within a standard industry recognized framework.

#LI-Remote

Minimum Education Requirements:
High school degree or equivalent required unless otherwise noted above

Location Hingham Time Type Full time

Salary Range: $79,110.00 - $96,690.00

The job posting range is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. We may ultimately pay more or less than the posted range, and the range may be modified in the future. An employee’s pay position within the salary range will be based on several factors including, but limited to, relevant education, qualifications, certifications, experience, skills, performance, shift, travel requirements, sales or revenue-based metrics, and business or organizational needs and affordability.

This job is also eligible for variable pay.

We offer comprehensive package of benefits including paid time off, medical/dental/vision insurance, 401(k), and a suite of well-being benefits to eligible employees.

Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, or any other form of compensation that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law.

WHY Blue Cross Blue Shield of MA?
We understand that the confidence gap and imposter syndrome can prevent amazing candidates coming our way, so please don’t hesitate to apply. We’d love to hear from you. You might be just what we need for this role or possibly another one at Blue Cross Blue Shield of MA. The more voices we have represented and amplified in our business, the more we will all thrive, contribute, and be brilliant. We encourage you to bring us your true colors, , your perspectives, and your experiences. It’s in our differences that we will remain relentless in our pursuit to transform healthcare for ALL.

As an employer, we are committed to investing in your development and providing the necessary resources to enable your success. Learn how we are dedicated to creating an inclusive and rewarding workplace that promotes excellence and provides opportunities for employees to forge their unique career path by visiting our Company Culture page. If this sounds like something you’d like to be a part of, we’d love to hear from you. You can also join our Talent Community to stay “in the know” on all things Blue.

At Blue Cross Blue Shield of Massachusetts, we believe in wellness and that work/life balance is a key part of associate wellbeing. We provide a flexible hybrid work model in which roles are designated as resident (on site 4-5 days/week), mobile (on site 1-3 days/week), or eworker (on site 0-3 days/month).