Posted:
11/11/2024, 4:00:00 PM
Location(s):
Illinois, United States ⋅ Chicago, Illinois, United States
Experience Level(s):
Senior
Field(s):
IT & Security
The hiring range for this role is:
$150,000.00 - $180,000.00This is the lowest to highest salary we, in good faith, believe we would pay for this role at the time of this posting. We may ultimately pay more or less than the hiring range and this hiring range may also be modified in the future. A candidate’s position within the hiring range may be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, relevant experience, skills, seniority, performance, shift, travel requirements, and business or organizational needs. This job is also eligible for annual bonus incentive pay.
We offer a comprehensive package of benefits including paid time off, 11 holidays, medical/dental/vision insurance, generous 401(k) matching, lifestyle spending account and many other benefits to eligible employees.
Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, or any other form of compensation that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law.
Responsibilities include but are not limited to:
Provide strategic and operational leadership in a specific security domain/program and manages multiple projects related to it.
Cross-functionally partner with key stakeholders and other teams to enhance our overall security posture, align security efforts with business objectives and facilitate communication between technical and non-technical stakeholders.
Generate roadmaps, drive operational excellence, optimize costs, and enhance security risk visibility.
Establish frameworks for best practices, define OKRs and KPIs, and deliver reports on relevant metrics and compliance
Participate in domain related incident response efforts as needed, maintain defined security architecture, and manage domain specific security tools.
Required Education, Certifications and Experience
High School Diploma/GED
Bachelor’s degree in Computer Science, Information Technology, or related field or equivalent experience.
Minimum 7 years of information security experience.
Experience implementing risk remediation prioritization and collaboration with key stakeholders to understand risk drivers and remediation blockers.
Experience building and maintaining a comprehensive domain specific security program, developing policies and guidelines, collaborate cross-functionally, aggregate results, prioritize data, and facilitate remediation plans where needed.
Experience monitoring and tracking remediation efforts, staying abreast of emerging threats, and leading the design, implementation, and maintenance of domain specific toolsets.
Excellent communication skills
Excellent presentation skills that cater to technical and non-technical audiences.
Strong analytical and problem-solving skills and ability to manage multiple projects successfully, ensuring timely and budget-friendly completion.
Strong interpersonal skills, and the ability to influence and solve problems effectively.
Solid understanding of HIPAA/HITRUST requirements, cloud-first security practices, and various security tools and technologies.
Proficiency in scripting languages (preferably Python), API integrations, and process automation (for Vulnerability Management domain)
Preferred Education, Certifications and Experience
Certified Information Systems Security Professional (CISSP)
People Management No
#LI-HYBRID
Website: https://bcbs.com/
Headquarter Location: Chicago, Illinois, United States
Employee Count: 501-1000
Year Founded: 1929
IPO Status: Private
Industries: Communities ⋅ Insurance