IS Security Analyst

Summary
Researches, analyzes and troubleshoots information systems compliance and security issues. Identifies, validates and reports on security incidents and events based on enterprise policies and procedures. Performs forensic information security investigations involving enterprise computers, servers and/or networking infrastructure. Assists in providing security infrastructure and support for enterprise systems.
Description

Logistics: BlueCross BlueShield of South Carolina

Location: This hybrid position is full-time (40-hours/week) Monday-Friday in a typical office environment. You will work an 8-hour shift scheduled during our normal business hours of 8:00AM-5:00PM with rotational on-call duties. It may be necessary, given the business need to work occasional overtime. This role is located at 2501 Faraway Drive, Columbia, SC 29223.

• Government Clearance: This position requires the ability to obtain a security clearance, which requires applicants to ====.
• Sponsorship: This position is not eligible for sponsorship now or in the future.

Position Purpose:

Researches, analyzes and troubleshoots information systems compliance and security issues. Identifies, validates and reports on security incidents and events based on enterprise policies and procedures. Performs forensic information security investigations involving enterprise computers, servers and/or networking infrastructure. Assists in providing security infrastructure and support for enterprise systems.

What You'll Do:

• Responsible for analyzing compliance and technical control validation data to determine and report baseline variance for all applicable technology environments.
• Interfaces with internal and external audit staff to ensure appropriate and accurate responses to audit queries are satisfied in a timely fashion.
• Assists in researching and evaluating systems and procedures for the prevention, detection, containment and correction of information security breaches. Assists in advising management and users regarding security procedures and compliance policies.
• Utilizing technologically advanced software, performs system monitoring evaluations and audits to ensure compliance with the corporate security policies and standards.
• Prepares and analyzes compliance information to develop mitigation priorities, milestones and audit responses.
• Participates in the evaluation of products and/or procedures to enhance productivity and effectiveness of information security across the organization.
• Assists architects and security specialists to ensure adequate security solutions are in place throughout IT systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements.

Work Environment: Fast paced, multi-platformed environment which may require action and response 24X7 to support the technical business needs of the customer.

To Qualify, You'll Need:

Required Education:

• Bachelor's degree in a job-related field

Degree Equivalency:

• 8 total years of job-related work experience

OR

• Associate's degree in a job-related field plus 2 additional years of job-related work experience for a total of 6 years of job-related work experience.

Required Experience:

• 4 years of job-related technical experience.

Required Skills and Abilities:

• Strong data analysis and correlation abilities.
• Strong organizational, interpersonal and communication skills.
• Strong knowledge of administrative, procedural and technical controls used to reduce security risks.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Strong knowledge of enterprise data architecture, systems engineering and data communications as applied to the automated storage and retrieval of information, using multiple platforms and protocols with the inherent security risks of each.
• Strong understanding of the organization's goals and objectives.
• Strong familiarity with threat analysis risk management, configuration management, business continuity and contingency planning as it applies to IT.
• Ability to troubleshoot multi-vendor Security issues.
• Able to work in a team-oriented, collaborative environment.
• Excellent attention to detail.

Required Software and Tools:

• Strong proficiency with applicable IT Security tools (software and hardware).
• Microsoft Office.

We Prefer that You Have:

Preferred Work Experience:

• Experience in network security (Cisco ASA, IPS, VPN, RSA SecurID, PKI, cryptography), security controls for LAN/WANs, client server, web-based systems, and databases.
• Experience with configuration of security devices such as firewalls, intrusion prevention, patch deployment, and risk assessment/ vulnerability scanners.
• Level 1 SOC Experience

Preferred Software Tools:

• Intrusion Detection/Prevention systems
• SIEM Monitoring tools
• Endpoint Detection and Response software
• Forensics Analysis tools
• Tennable Nessus scanning software

Preferred Licenses and Certificates: CompTIA Security +, OSCP, GIAC (GSEC, GCIH), CISA, NSA, CISM, CISSP

What we Can Do for You:

Our comprehensive benefits package includes:

• 401(k) retirement savings plan with company match
• Subsidized health plans and free vision coverage
• Life insurance
• Paid annual leave - the longer you work here, the more you earn.
• Nine paid holidays
• On-site cafeterias and fitness centers in major locations
• Wellness programs and a healthy lifestyle premium discount
• Tuition assistance
• Service recognition

What to Expect Next:

After submitting your application, our recruiting team members will review your resume to ensure you meet the qualifications. This may include a brief telephone interview or email communication with our recruiter to verify resume specifics and salary requirements. Management will be conducting interviews with those candidates who qualify with prioritization given to those candidates who demonstrate the preferred qualifications.

Equal Employment Opportunity Statement

BlueCross BlueShield of South Carolina and our subsidiary companies maintain a continuing policy of nondiscrimination in employment to promote employment opportunities for persons regardless of age, race, color, national origin, sex, religion, veteran status, disability, weight, sexual orientation, gender identity, genetic information or any other legally protected status. Additionally, as a federal contractor, the company maintains affirmative action programs to promote employment opportunities for individuals with disabilities and protected veterans. It is our policy to provide equal opportunities in all phases of the employment process and to comply with applicable federal, state and local laws and regulations.

We are committed to working with and providing reasonable accommodations to individuals with disabilities, pregnant individuals, individuals with pregnancy-related conditions, and individuals needing accommodations for sincerely held religious beliefs, provided that those accommodations do not impose an undue hardship on the Company.

If you need special assistance or an accommodation while seeking employment, please email or call , ext. 47480 with the nature of your request. We will make a determination regarding your request for reasonable accommodation on a case-by-case basis.

We participate in E-Verify and comply with the Pay Transparency Nondiscrimination Provision. We are an Equal Opportunity Employer. Here's more information .

Some states have required notifications. Here's more information .