REMOTE CSIRT - Incident Response Coordinator (Information Security Senior Advisor)

Position Title:

REMOTE CSIRT - Incident Response Coordinator (Information Security Senior Advisor)

Job Description:

Location: This position will work a hybrid model (remote and office). Ideal candidates will live in the state of Indiana or within 50 miles of one of our Pulse Point locations.

REMOTE CSIRT - Incident Coordinator (Information Security Senior Advisor)

The Cybersecurity Incident Response Team (CSIRT) Incident Response Coordinator will exercise strong incident management techniques to coordinate security incident response to cybersecurity events or incidents stemming from suspected threats. Candidates for the role must have a strong technical background in Digital Forensics & Incident Response (DFIR), comprehension of incident response plans and coordination of activities. Foundational skills in incident response, incident management, chain of custody, forensics, event analysis, and hands on cybersecurity skills are essential.

How you will make an impact:

• Manage response efforts to cybersecurity incidents caused by internal and external threats that may involve nontraditional working hours.
• Conduct technical analysis to understand root cause of cybersecurity events.
• Serve as a liaison to different businesses and interface with fellow team members and colleagues on other security teams; manage relationships with business partners, management, vendors, and external parties, as needed.
• Drive integration with other corporate incident management programs to ensure consistency and alignment with peer support teams within IT.
• Develop and maintain incident response plans, play books and other incident management policies in support of business-level priorities.
• Document processes to ensure consistent and scalable response operations and ensure continuous improvement to the CSIRT's operational efficiency.
• Develop and coordinate quarterly incident response tabletop exercises.
• Develop and deliver metrics to leadership as requested.
• Create ready-to-go draft communications and ensure timely reports/updates to leadership during and after an event.
• Triage and manage cybersecurity incident reporting intake (i.e., shared mailbox, IR hotline, and ticketing systems).
• Must be willing to be on-call off hours in rotation with other team members.

Minimum Requirements:

• Requires BS/BA in information Technology or related field of study and a minimum of 8 years' experience in systems administration and security aspects of information systems, access management and network security technologies, network communications, computer networking, telecommunications, systems development and management, hardware, software, data, and people; experience with multiple technical and business disciplines required; requires broad-based experience to plan and design highly complex systems; or any combination of education and experience, which would provide an equivalent background.

Preferred Skills, Capabilities and Experiences:

• 5+ years' experience in at least two of the following roles strongly preferred:
  • Member of a Security Operations Center (SOC).
  • Security Incident Response Analyst or supporting function (2 years minimum).
  • eDiscovery or related role performing forensic functions.
• Must possess the ability to perform log analysis, endpoint forensic analysis and other technical analyses.
• Must have a deep understanding of both Windows and Unix/Linux based operating systems.
• Deep understanding of security threats, vulnerabilities, and incident response strongly preferred.
• Understanding of electronic investigation, forensic tools, and methodologies, including log correlation and analysis, forensically handling electronic data, knowledge of the computer security investigative processes, malware identification and analysis strongly preferred.
• Familiarity with a basic understanding of legalities surrounding electronic discovery and analysis strongly preferred.
• Understanding of regulatory stipulations regarding security incidents strongly preferred.
• Experience with SIEM technologies (i.e., Splunk) strongly preferred.
• Experience working with external forensics firms to coordinate complex investigations into cybersecurity events strongly preferred.
• Industry standard professional certifications such as GCFE, GCFA, GCIH, CISA, CISM, CISSP or CCIM are strongly preferred.
• Analyze findings in investigative matters and develop fact-based reports preferred.
• Ability to identify and articulate opportunities for improvement while helping drive lessons learned activities preferred.
• Knowledgeable in business industry standard security incident response process, procedures, and life-cycle preferred.
• Inquisitive approach to analysis and peer review; demonstrated integrity and judgment within a professional environment; application of emotional intelligence and calm under pressure; ability to work independently.
• Excellent organizational skills and strong attention to detail; excellent teaming skills; excellent social, communication, and writing skills; excellent customer service skills.
• Ability to anticipate obstacles, and decision-making skills to handle the fast-paced world of incident management.

For candidates working in person or remotely in the below locations, the salary* range for this specific position is $119,040 to $214,272.

Locations: California; Colorado; Nevada; Washington State; Jersey City, NJ; New York City, NY; Ithaca, NY and Westchester County, NY

In addition to your salary, Elevance Health offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). The salary offered for this specific position is based on a number of legitimate, non-discriminatory factors set by the company. The company is fully committed to ensuring equal pay opportunities for equal work regardless of gender, race, or any other category protected by federal, state, and local pay equity laws .

* The salary range is the range Elevance Health in good faith believes is the range of possible compensation for this role at the time of this posting. This range may be modified in the future and actual compensation may vary from posting based on geographic location, work experience, education and/or skill level. Even within the range, the actual compensation will vary depending on the above factors as well as market/business considerations. No amount is considered to be wages or compensation until such amount is earned, vested, and determinable under the terms and conditions of the applicable policies and plans. The amount and availability of any bonus, commission, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company's sole discretion, consistent with the law.

Job Level:

Non-Management Exempt

Workshift:

1st Shift (United States of America)

Job Family:

IFT > IT Security & Compliance

Be part of an Extraordinary Team

Elevance Health is a health company dedicated to improving lives and communities - and making healthcare simpler. A Fortune 20 company with a longstanding history in the healthcare industry, we are looking for leaders at all levels of the organization who are passionate about making an impact on our members and the communities we serve. You will thrive in a complex and collaborative environment where you take action and ownership to solve problems and lead change. Do you want to be part of a larger purpose and an evolving, high-performance culture that empowers you to make an impact?

We offer a range of market-competitive total rewards that include merit increases, paid holidays, Paid Time Off, and incentive bonus programs (unless covered by a collective bargaining agreement), medical, dental, vision, short and long term disability benefits, 401(k) +match, stock purchase plan, life insurance, wellness programs and financial education resources, to name a few.

The health of our associates and communities is a top priority for Elevance Health. We require all new candidates in certain patient/member-facing roles to become vaccinated against COVID-19. If you are not vaccinated, your offer will be rescinded unless you provide - and Elevance Health approves - a valid religious or medical explanation as to why you are not able to get vaccinated that Elevance Health is able to reasonably accommodate. Elevance Health will also follow all relevant federal, state and local laws.

Elevance Health has been named as a Fortune Great Place To Work in 2022, has been ranked for five years running as one of the 2023 World's Most Admired Companies by Fortune magazine, and is a growing Top 20 Fortune 500 Company. To learn more about our company and apply, please visit us at careers.ElevanceHealth.com. Elevance Health is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to age, citizenship status, color, creed, disability, ethnicity, genetic information, gender (including gender identity and gender expression), marital status, national origin, race, religion, sex, sexual orientation, veteran status or any other status or condition protected by applicable federal, state, or local laws. Applicants who require accommodation to participate in the job application process may contact [email protected] for assistance.

We offer a range of market-competitive total rewards that include merit increases, paid holidays, Paid Time Off, and incentive bonus programs (unless covered by a collective bargaining agreement), medical, dental, vision, short- and long-term disability benefits, 401(k) +match, stock purchase plan, life insurance, wellness programs and financial education resources, to name a few.

Elevance Health has been named as a Fortune Great Place To Work in 2021, is ranked as one of the 2021 World's Most Admired Companies among health insurers by Fortune magazine, and a Top 20 Fortune 500 Companies on Diversity and Inclusion. To learn more about our company and apply, please visit us at careers.ElevanceHealth.com. Elevance Health is an Equal Employment Opportunity employer, and all qualified applicants will receive consideration for employment without regard to age, citizenship status, color, creed, disability, ethnicity, genetic information, gender (including gender identity and gender expression), marital status, national origin, race, religion, sex, sexual orientation, veteran status or any other status or condition protected by applicable federal, state, or local laws. Applicants who require accommodation to participate in the job application process may contact [email protected] for assistance.