Job Location : all cities,AK, USA
Resp & Qualifications
PURPOSE:
To ensure the organization's data remains protected from inappropriate access, disclosure and/or damage. To advocate for, and execute the processes and practices of, the Cybersecurity team while supporting business and customer needs.
ESSENTIAL FUNCTIONS:
The Cybersecurity Officer will be responsible for supporting the development, implementation, and maintenance of cybersecurity measures to protect CareFirst. This role will work in partnership with various business and functions to integrate Cybersecurity into business strategies and processes as appropriate.
Under the supervision of the Director, Cybersecurity Strategy, accountabilities include, but are not limited to the following:
Developing and maintaining an in-depth understanding of the business areas, technologies, partners, subsidiaries, systems, processes, data, and customers in alignment with the CareFirst Cybersecurity Framework
Partner with business stakeholders, IT, and product teams to integrate cybersecurity into solutions, services, and M&A activities early and throughout all phases of development and implementation.
Promote and implement the CareFirst Cybersecurity Framework across all business areas to ensure awareness and adoption, further supporting the overall engagement model.
Provide expert security guidance for projects, systems, and vendor engagements.
Oversee implementation of technical security measures, ensuring the right teams and capabilities are engaged.
Partnering with the Legal, Risk, Privacy, Compliance, and IT resources to establish an effective working relationship that enhances the cybersecurity program effectiveness.
Overseeing, communicating, and ensuring that the technical implementations of solutions required for security for the objectives of the business are carried out by making sure the proper cybersecurity teams and capabilities are engaged.
Apply technology and processes to ensure the enterprise is protected and secured in the following areas:
Proven track record of developing and implementing cybersecurity strategies and processes.
In-depth knowledge of cybersecurity principles, practices, and technologies. Familiarity with current threats, vulnerabilities, and mitigation strategies.
Interact with other IT Operations teams to develop tactical and strategic programs to address processes, controls, and infrastructure to manage Cybersecurity related concerns.
Work with intra/interdepartmental technical and business personnel in a dynamic environment.
SUPERVISORY RESPONSIBILITY:
This position has no direct reports, however, may informally lead teams in a matrix environment.
QUALIFICATIONS:
Education Level: Bachelor's Degree in Computer Science, Information Technology, or related field OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.
Experience: 10 years related experience or cybersecurity certification and 8 years related experience
Preferred Qualifications:
Professional certification such as CISSP, CRISC, CISA, CISM or equivalent preferred.
Familiarity with relevant standards and regulation , i.e. ISO27001, HIPAA Security Rule, and other relevant compliance requirements. The candidate will possess a high level of expertise in Cybersecurity concepts, Cybersecurity policies and system architecture concepts and have experience in process definition, workflow design, and process mapping.
Excellent analytical and problem-solving skills.
Strong organizational and communication skills.
Ability to work independently and collaboratively as part of a team.
Salary Range: $146,400 - $261,690
Salary Range Disclaimer
The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the work is being performed. This compensation range is specific and considers factors such as (but not limited to) the scope and responsibilites of the position, the candidate's work experience, education/training, internal peer equity, and market and business consideration. It is not typical for an individual to be hired at the top of the range, as compensation decisions depend on each case's facts and circumstances, including but not limited to experience, internal equity, and location. In addition to your compensation, CareFirst offers a comprehensive benefits package, various incentive programs/plans, and 401k contribution programs/plans (all benefits/incentives are subject to eligibility requirements).
Department
Cybersecurity Strategy
Equal Employment Opportunity
CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.
Where To Apply
Please visit our website to apply: www.carefirst.com/careers
Federal Disc/Physical Demand
Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.
PHYSICAL DEMANDS:
The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.
Sponsorship in US
Must be eligible to work in the U.S. without Sponsorship
#LI-MK1
REQNUMBER: 21218