Sr Cyber Incident Response Engineer

This position will have oversight and responsibility over the Cyber Incident Response program at BCBST. Detailed knowledge of incident response services required. Ability to develop relationships throughout the organization to assist the Cyber Security team in accomplishing directive of protecting the organization.

Job Description:

Job Responsibilities 

• Establish and maintain strong working relationships with all teams required to support cyber incident response including other enabling areas of business
• Maintains rotating on-call availability for a 24x7x365 coverage
• Provides technical services needed for cyber incident response investigations including, containment, eradication and remediation activities.
  • Assists in determination of incident severity.
  • Assists in assessing scope of incident.
• Responsible for maintaining documentation throughout a cyber incident
• Assist in the drafting of post-incident reports to senior leadership to convey impact, origin, root cause, and remediation.
• Oversee or perform digital forensic services including, but not limiting to, collection, documentation, preservation and analysis of incident evidence.
• Mentor junior engineers in security knowledge and experience in technologies and methodologies as it relates to operating systems, firewalls, proxies, access controls, encryption, networking, programming/scripting, auditing, vulnerability assessments, intrusion management and operations management to assist the Threat and Vulnerability Management team with effective research, data gathering, analysis, metrics reporting and communications.
• Provide guidance using specialized knowledge and toolsets to operational teams during enterprise-wide crisis scenarios, e.g. large-scale production service outages, outside of the routine change management process.

Job Qualifications

 

Education 

• Bachelors in related field or equivalent years of experience is required. (Equivalent years of experience are determined as one year of technical experience for every year of college requested).

Experience

• 5 years - Experience in related field required.
• Technical Training Experience
• Advanced experience in forensics and e-discovery
• Advanced experience with event and log correlation
• Advanced experience with Networking components (routers, switches, load balancers, wireless access points, etc.)
• Advanced experience with intrusion management and its components

Skills/Certifications

• Comprehensive understanding of Security Methodologies 
• Detailed knowledge of Cyber Incident Response services
• Enriches team value by creating training and knowledge sharing opportunities
• Comprehensive knowledge of firewalls, proxies, mail servers and web servers
• Comprehensive knowledge of client/server relationships
• Comprehensive knowledge of relational databases and structured query language
• Comprehensive understanding of encryption algorithms and ciphers
• Comprehensive knowledge of malicious code (worms, viruses, spyware, etc.)

Job Specific Requirements: 

Preferred Skills:

Number of Openings Available:

1

Worker Type:

Employee

Company:

BCBST BlueCross BlueShield of Tennessee, Inc.

Applying for this job indicates your acknowledgement and understanding of the following statements:

BCBST is an Equal Opportunity employer (EEO), and all employees and applicants will be entitled to equal employment opportunities when employment decisions are made. BCBST will take affirmative action to recruit, hire, train and promote individuals in all job classifications without regard to race, religion, color, age, sex, national origin, citizenship, pregnancy, veteran status, sexual orientation, physical or mental disability, gender identity, or any other characteristic protected by applicable law.

Further information regarding BCBST's EEO Policies/Notices may be found by reviewing the following page:

BCBST's EEO Policies/Notices

BlueCross BlueShield of Tennessee is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at BlueCross BlueShield of Tennessee via-email, the Internet or any other method without a valid, written Direct Placement Agreement in place for this position from BlueCross BlueShield of Tennessee HR/Talent Acquisition will not be considered. No fee will be paid in the event the applicant is hired by BlueCross BlueShield of Tennessee as a result of the referral or through other means.

Tobacco-Free Hiring Statement

To further our mission of peace of mind through better health, effective 2017, BlueCross BlueShield of Tennessee and its subsidiaries no longer hire individuals who use tobacco or nicotine products (including but not limited to cigarettes, cigars, pipe tobacco, snuff, chewing tobacco, gum, patch, lozenges and electronic or smokeless cigarettes) in any form in Tennessee and where state law permits. A tobacco or nicotine free hiring practice is part of an effort to combat serious diseases, as well as to promote health and wellness for our employees and our community. All offers of employment will be contingent upon passing a background check which includes an illegal drug and tobacco/nicotine test.  An individual whose post offer screening result is positive for illegal drugs or tobacco/nicotine  and/or whose background check is verified to be unsatisfactory, will be disqualified from employment, the job offer will be withdrawn, and they may be disqualified from applying for employment for six (6) months from the date of the post offer screening results.

Resources to help individuals discontinue the use of tobacco/nicotine products include smokefree.gov or 1-800-QUIT-NOW.