Cybersecurity Analyst (Risk) - Remote

The Cybersecurity Analyst (Risk) position at Florida Blue develops and implements a comprehensive information security program including defining security policies, processes and standards. They perform audit assessments and define processes and standards to ensure that security configurations are maintained.

Unlock your potential at Florida Blue, a company who champions career growth and is driven by its mission of helping people and communities achieve better health. In addition to career growth opportunities within our 2000+ employee IT organization, you will enjoy competitive salariesandbenefits, work-life balance,flexible work arrangements, opportunities for growth and development, and a great place to workacross our family of companies!

Key Responsibilities

• Serves as a liaison with IT and business area partners to identify, understand, document and advise on security requirements, impacts and risks.
• Develops and maintains documentation for security systems, procedures and security diagrams
• Analyzes, proposes and implements solutions concerning residual risk, vulnerabilities and other security exposures.
• Participates on IT projects to ensure that security issues are addressed throughout the project life cycle.
• Participates in initiatives to identify, select and implement technical controls.
• Develops information security processes, policies and procedures. Advises on service level agreements and works to ensure that security controls are managed and maintained.
• Researches, evaluates and recommends information security related hardware and software including development of businesses cases for security investments.
• Serves as a liaison and lead on audit-related initiatives managing relationships, collection of data, progression tracking, assessment and remedial activities.
• Assists and supports the development of security architecture.

Required Experience

• 5+ years' experience in IT, IT Infrastructure and/or Cybersecurity
• Experience in IT Risk Management and Reporting
• Experience with Governance, Risk and Compliance (GRC) tools (ie, Archer)
• Certified Information Systems Security Professional (CISSP) certification or Certified in Risk and Information Systems Control (CRISC) certification, or ability to obtain within 180 Days of employment
• Knowledge of information security principles, including risk assessment and management, threat, and vulnerability management
• Experience developing, documenting, and maintaining security procedures
• Knowledge of operating systems and security applications, as well as a working knowledge of basic network protocols and tools.
• Proven leadership abilities including effective knowledge sharing, conflict resolution, facilitation of open discussions, fairness and displaying appropriate levels of assertiveness.
• Ability to communicate highly complex technical information clearly and articulately for all levels and audiences.
• Strong customer focus with ability to manage customer expectations and experience and build long-term relationships.
• Strong team-oriented interpersonal skills with the ability to interface with a broad range of people and roles including vendors and IT-business personnel.
• High critical thinking skills to evaluate alternatives and recommend solutions that are consistent with business objectives and strategy
• Bachelor's degree or equivalent work experience

Preferred Qualifications

• Experience using Agile methodology

General Physical Demands

Sedentary work: Exerting up to 10 pounds of force occasionally to move objects. Jobs are sedentary if traversing activities are required only occasionally.

We are an Equal Opportunity/Protected Veteran/Disabled Employer committed to creating a diverse, inclusive and equitable culture for our employees and communities.