Cyber Defense Analyst I at Excellus Health Plan Inc. in Rochester, New York

Job Description:

Job Description:

Summary:

The Cyber Defense Analyst role develops, maintains, and coordinates the Organization's cyber defense activities in support of the Lifetime Healthcare Companies' information security program. This position provides technical Cyber Defense services and supports the Organization's lines of business and further, may provide information security consulting and support to all levels of the Organization's management in support of the information security program. The Cyber Defense services discipline range from cyber defense, cyber assurance and compliance services, information and data security and eDiscovery.

Essential Accountabilities:

Level I

• Provides timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities.

• Continual monitors and analyzes systems to identify malicious activity and potential threats.

• Assists in the maintenance and operational support for cyber defense technologies in defense against modern cybersecurity threats.

• Respond to requests within defined SLAs relating to various information security systems, programs, and processes.

• Participates in rotation of 24/7/365 on call coverage.

• Integrates cyber defense tools and appropriate controls into new and existing systems and applications.

• Assists in department self-audits, internal audits, external audit reviews.

• Consistently demonstrates high standards of integrity by supporting the Lifetime Healthcare Companies' mission and values, adhering to the Corporate Code of Conduct, and leading to the Lifetime Way values and beliefs.

• Maintains high regard for member privacy in accordance with the corporate privacy policies and procedures.

• Regular and reliable attendance is expected and required.

• Performs other functions as assigned by management.

• Assists in the development, implementation and administration of documentation retention policy and standards to ensure proper management of electronic records.

• Assists with the eDiscovery and data collection services, including day-to-day operations, the preparation of status reports and the development of eDiscovery training & awareness programs for all employees as well as peers across Enterprise Cybersecurity Office (ECO) who are involved in eDiscovery and/or data collection work.

Level II (in addition to Level I Accountabilities)

• Make recommendations for hardening the security ecosystem through ongoing threat intelligence assessment.

• Performs as the Subject Matter Expert for at least one cyber defense technology, processes, and practices internally to the Health Plan - including making recommendations relating to this technology and currency.

• Trains and provides technical support and mentoring to on cyber defense systems.

• Provides consultation and facilitation support services to the Organization and its subsidiaries in information security matters and ensures compliance with the Organization's information security policies and standards.

• Participate in incident response activities, including event detection, triage, response, remediation and post-incident analysis.

• Integrates security tools and appropriate controls into new systems and applications, leveraging security workflow automation and enhancing security processes.

• Function as an internal consulting resource on eDiscovery including interaction with cross-functional departments to manage eDiscovery objectives. Assists with the development and support of defensible approaches to eDiscovery issues.

• Assists with the develop and implement standards and requirements for end-to-end data life cycle including archiving, data mapping and defensible disposition as it relates to eDiscovery.

• Works closely with Ethics, Human Capital Management, Legal, and other departments to support eDiscovery and employee ethics evidence collection for corporate investigations.

Level III (in addition to Level II Accountabilities)

• Performs as the Subject Matter Expert for at least two information security technologies, processes, and practices internally to Health Plan.

• Designs, develops, integrates, tests, evaluates, and maintains cybersecurity technology products.

• Performs cyber defense incident triage, including determining scope, urgency, and potential impact, and identifying the specific vulnerability.

• Works with Stakeholders to develop and implement standards and requirements for end-to-end data life cycle including archiving, data mapping and defensible disposition as it relates to eDiscovery.

• Leads the entire eDiscovery services program, including day to day operations, and provides leadership to resources supporting the eDiscovery and ethics data discovery functions.

• Advises on requirements and prudential concerns relating to eDiscovery, data preservation, data privacy, data security and other information issues; advises the organization on the latest developments in discovery rules and case law.

• Leads the development of defensible approaches to eDiscovery issues.

Minimum Qualifications:

NOTE: We include multiple levels of classification differentiated by demonstrated knowledge, skills, and the ability to manage increasingly independent and/or complex assignments, broader responsibility, additional decision making, and in some cases, becoming a resource to others. In addition to using this differentiated approach to place new hires, it also provides guideposts for employee development and promotional opportunities.

All Levels

• Bachelor's degree in Computer Science, Information Technology, or relevant field. In lieu of degree, six (6) cumulative years of related experience required.

• Hands on experience with the following operating systems preferred: Windows, and UNIX (Linux, AIX, Solaris, etc.).

• Basic knowledge of a minimum of one concept and/or tool listed below:

o Cloud infrastructure including IaaS, SaaS and PaaS.

o Network and application security, and related firewalls (Palo Alto Networks, Imperva, etc.)

o AD, Entra ID, LDAP, and various authentication implementations

o Virus detection and end point security.

o Vulnerability scanner and pen testing tools.

o IDS/IPS and related tools

o Cloud Native Security tools including SIEM, Cloud Applications and Cloud Security Posture Management (CSPM), (Microsoft Sentinel, Microsoft Log analytics workspace.)

o Common query techniques including Kusto query language, and Python.

• Excellent communications skills with the ability to present clear and concise information to all level and technical ability. written communication skills.

• Excellent organization and multi-tasking skills.

Level II (in addition to Level I Qualifications)

• Three (3) of related work experience, and basic knowledge of a minimum of two (2) concepts and/or tools listed above (under Level I).

• Experience with security controls for operating systems, applications, and database management systems.

• Experience with security automation, including associated reporting and notification.

• Knowledge of network regulations, industry standards and operational constraints of networks systems.

Level III (in addition to Level II Qualifications)

• Five (5) years of related work experience, and basic knowledge of a minimum of three (3) concepts and/or tools listed above (under Level I).

• CISSP, CISA, CISM or other relevant security certification, or equivalent experience, and knowledge preferred.

• Experience providing work direction for one or more individual's specific projects and initiatives.

• Experience providing guidance and mentorship to more junior team members.

• Knowledge of Security Frameworks and translating aspects into enhancing security postures.

Physical Requirements:

• Ability to work prolonged periods sitting and/or standing at a workstation and working on a computer.

• Ability to travel across the Health Plan service region for meetings and/or trainings as needed.

• Ability to work in a home office for continuous periods of time for business continuity.

************

One Mission. One Vision. One I.D.E.A. One you.

Together we can create a better I.D.E.A. for our communities.

At the Lifetime Healthcare Companies, we're on a mission to make our communities healthier, and we can't do it without you. We know diversity helps fuel our mission and that's why we approach our work from an I.D.E.A. mindset (Inclusion, Diversity, Equity, and Access). By activating our employees' experiences, skills, and perspectives, we take action toward greater health equity.

We aspire to reflect the communities we live in and serve, and strongly encourage people of color, LGBTQ+ people, people with disabilities, veterans, and other underrepresented groups to apply.

OUR COMPANY CULTURE:

Employees are united by our Lifetime Way Values & Behaviors that include compassion, pride, excellence, innovation and having fun! We aim to be an employer of choice by valuing workforce diversity, innovative thinking, employee development, and by offering competitive compensation and benefits.

In support of the Americans with Disabilities Act, this job description lists only those responsibilities and qualifications deemed essential to the position.

Equal Opportunity Employer

Compensation Range(s):

Grade 206 Minimum - $ 58,500 Maximum $ 93,267

Grade 207 Minimum - $ 60,070 Maximum $ 111,114

Grade 209 Minimum - $ 75,816 Maximum $ 140,254

The salary range indicated in this posting represents the minimum and maximum of the salary range for this position. Actual salary will vary depending on factors including, but not limited to, budget available, prior experience, knowledge, skill and education as they relate to the position's minimum qualifications, in addition to internal equity. The posted salary range reflects just one component of our total rewards package. Other components of the total rewards package may include participation in group health and/or dental insurance, retirement plan, wellness program, paid time away from work, and paid holidays.

Please note: There may be opportunity for remote work within all jobs posted by the Excellus Talent Acquisition team. This decision is made on a case-by-case basis.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.