This job listing has expired and the position may no longer be open for hire.

Information Protection Advisor - Cyber Security Incident Response at 187 Express Scripts Services Co in St. Louis, Missouri

Posted in Information Technology 11 days ago.

Type: Full-Time

Job Description:

Position Summary

The Information Protection organization responds to cyber security incidents across Cigna business units. The ideal candidate will have excellent analytical and problem-solving skills, strong communication skills (written and verbal), and a competent technical skill set. This position will be responsible for providing operational support for Information Systems threats and managing security incidents.

About Cigna

Cigna is a global health service company dedicated to helping the people we serve improve their health, well-being, and peace of mind. But we don’t just care about your well –being, we care about your career health too. That’s why when you work with us, you can count on a different kind of career – you’ll make a difference, learn a ton and share in changing the way people think about healthcare. 


  • Conduct network forensics, host forensics, and log analysis in support of Incident Response investigations

  • Investigate security alerts to identify potential security incidents for remediation

  • Perform Basic Static and Dynamic Malware Analysis.

  • Participate in CSIRT investigations.

  • Effectively communicate investigative findings and strategy to technical staff, Management and Executive leadership.

  • Work with security and IT operations to implement remediation plans in response to incidents.

  • Work hand-in-hand with other Security Advisors and relevant stakeholders to identify, remediate and bring closure to potential security related threats

  • Document incident response investigation, SOPs and playbooks

  • Identify security monitoring gaps and enhancing detection capabilities or logic.

  • Identify gaps and recommend improvements to enterprise security technology products across all platforms, with a goal to enhance the overall security posture of Cigna.

  • Participate in Internal/External Compliance Audits

  • Participate and Develop Weekly/Monthly Security Incident Response metrics

  • Participate in Incident Response on-call rotation

  • Perform other duties as assigned


  • High School Diploma; Bachelor's degree preferred

  • Minimum 5 years of comparable experience

  • Strong understanding of enterprise security controls in Cloud, Active Directory, Windows and UNIX environments

  • Excellent verbal and written communication and presentation skills.

  • Understanding of information risk management concepts.

  • Experience leveraging the Cyber Kill Chain and MITRE Attack Framework

  • Ability to diagnose and troubleshoot technical issues, excellent problem solving skills

  • Preferred experience using incident response and analysis tools such as Volatility, wireshark, sysinternal, Splunk, Tanium, EnCase, F-Response, SIFT, REMnux,

  • Experience with one or more scripting languages such as Perl, Python, Bash and PowerShell highly desired.

  • Exceptional understanding of the cyber threat landscape, attack surfaces, and threats associated with each

  • Experience leading team members, directing staff priorities and completing reviews to ensure quality work products preferred

  • Ability to successfully interface with internal clients

  • Ability to document and explain technical details in a concise, understandable manner

  • Ability to manage and balance multiple tasks and work independently and as part of a team

This position is not eligible to be performed in Colorado.

About Cigna

Cigna Corporation exists to improve lives. We are a global health service company dedicated to improving the health, well-being and peace of mind of those we serve. Together, with colleagues around the world, we aspire to transform health services, making them more affordable and accessible to millions. Through our unmatched expertise, bold action, fresh ideas and an unwavering commitment to patient-centered care, we are a force of health services innovation. When you work with us, or one of our subsidiaries, you’ll enjoy meaningful career experiences that enrich people’s lives. What difference will you make?

Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.

If you require reasonable accommodation in completing the online application process, please email: for support. Do not email for an update on your application or to provide your resume as you will not receive a response.