Sr Cyber Incident Response Engineer

We are looking for a seasoned professional who thrives under pressure and is eager to take charge during critical incidents. Ideal candidates for the Senior Cyber Incident Response Engineer role will be able to enhance our detection and response capabilities, utilizing knowledge and experience gained from continuous self-learning.

In this role, you'll lead collaborative response efforts across various teams, ensuring swift and effective resolution.  When you’re not in the heat of an incident, you’ll be working to make a tangible impact on our security posture through development and automation.

Our team is composed of individuals from various backgrounds and experiences, fostering a rich and inclusive culture where everyone’s voice is heard and valued.  Every day brings new and exciting challenges. You’ll have the opportunity to tackle complex problems, think creatively, and push the boundaries of what’s possible in cybersecurity.

Job Responsibilities 

• Establish and maintain strong working relationships with all teams required to support cyber incident response including other enabling areas of business
• Maintains rotating on-call availability for a 24x7x365 coverage
• Provides technical services needed for cyber incident response investigations including, containment, eradication and remediation activities.
  • Assists in determination of incident severity.
  • Assists in assessing scope of incident.
• Responsible for maintaining documentation throughout a cyber incident
• Assist in the drafting of post-incident reports to senior leadership to convey impact, origin, root cause, and remediation.
• Oversee or perform digital forensic services including, but not limiting to, collection, documentation, preservation and analysis of incident evidence.
• Mentor junior engineers in security knowledge and experience in technologies and methodologies as it relates to operating systems, firewalls, proxies, access controls, encryption, networking, programming/scripting, auditing, vulnerability assessments, intrusion management and operations management to assist the Threat and Vulnerability Management team with effective research, data gathering, analysis, metrics reporting and communications.
• Provide guidance using specialized knowledge and toolsets to operational teams during enterprise-wide crisis scenarios, e.g. large-scale production service outages, outside of the routine change management process.

Job Qualifications

Education 

• Bachelors in related field or equivalent years of experience is required. (Equivalent years of experience are determined as one year of technical experience for every year of college requested).

Experience

• 5 years - Experience in related field required.
• Technical Training Experience
• Advanced experience in forensics and e-discovery
• Advanced experience with event and log correlation
• Advanced experience with Networking components (routers, switches, load balancers, wireless access points, etc.)
• Advanced experience with intrusion management and its components

Skills/Certifications

• Comprehensive understanding of Security Methodologies 
• Detailed knowledge of Cyber Incident Response services
• Enriches team value by creating training and knowledge sharing opportunities
• Comprehensive knowledge of firewalls, proxies, mail servers and web servers
• Comprehensive knowledge of client/server relationships
• Comprehensive knowledge of relational databases and structured query language
• Comprehensive understanding of encryption algorithms and ciphers
• Comprehensive knowledge of malicious code (worms, viruses, spyware, etc.)

Number of Openings Available:

Worker Type:

Company:

Applying for this job indicates your acknowledgement and understanding of the following statements:

BCBST is an Equal Opportunity employer (EEO), and all employees and applicants will be entitled to equal employment opportunities when employment decisions are made. BCBST will take affirmative action to recruit, hire, train and promote individuals in all job classifications without regard to race, religion, color, age, sex, national origin, citizenship, pregnancy, veteran status, sexual orientation, physical or mental disability, gender identity, or any other characteristic protected by applicable law.

Further information regarding BCBST's EEO Policies/Notices may be found by reviewing the following page:

BCBST's EEO Policies/Notices

BlueCross BlueShield of Tennessee is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at BlueCross BlueShield of Tennessee via-email, the Internet or any other method without a valid, written Direct Placement Agreement in place for this position from BlueCross BlueShield of Tennessee HR/Talent Acquisition will not be considered. No fee will be paid in the event the applicant is hired by BlueCross BlueShield of Tennessee as a result of the referral or through other means.

Tobacco-Free Hiring Statement

To further our mission of peace of mind through better health, effective 2017, BlueCross BlueShield of Tennessee and its subsidiaries no longer hire individuals who use tobacco or nicotine products (including but not limited to cigarettes, cigars, pipe tobacco, snuff, chewing tobacco, gum, patch, lozenges and electronic or smokeless cigarettes) in any form in Tennessee and where state law permits. A tobacco or nicotine free hiring practice is part of an effort to combat serious diseases, as well as to promote health and wellness for our employees and our community. All offers of employment will be contingent upon passing a background check which includes an illegal drug and tobacco/nicotine test.  An individual whose post offer screening result is positive for illegal drugs or tobacco/nicotine  and/or whose background check is verified to be unsatisfactory, will be disqualified from employment, the job offer will be withdrawn, and they may be disqualified from applying for employment for six (6) months from the date of the post offer screening results.

Resources to help individuals discontinue the use of tobacco/nicotine products include smokefree.gov or 1-800-QUIT-NOW.