Director of Threat, Vulnerability and Incident Response
Chattanooga, TN
BlueCross BlueShield of Tennessee
In the role of Director - Threat, Vulnerability and Incident Response, you will leverage your deep understanding of both existing and emerging threat actors (as well as experience identifying rapidly changing tools, tactics and procedures of attackers).
Job Responsibilities:
- Manage engagements with a focus on incident response and forensics
- Direct litigation support efforts by acquiring, minimizing, searching and producing electronic evidence for legal counsel as well as serving as an expert witness as needed
- Assist with scoping prospective engagements, participating in engagements from kickoff through full remediation, and mentoring less experienced staff
- Supervise staff, including providing development and coaching
- Identify improvements to business processes and methodologies
- Successfully interface with clients (internal and external)
- Document and explain technical details in a concise, understandable manner
- Provide public speaking engagements or present to an audience
- Lead multiple projects and manage tight deadlines
- Leverage project management skills to effectively budget, scope, and execute engagements
Job Qualifications
Education
- Bachelors Degree in Cybersecurity (or related field) or equivalent work experience required. Equivalent years of experience are determined as one year of technical experience for every year of college requested.
Experience
- 10 years of incident response and/or information security experience
- 5 years of management and consulting experience
- Technical experience in the following:
- Windows disk and memory forensics
- Network Security Monitoring (NSM), network traffic analysis, and log analysis
- Unix or Linux disk and memory forensics
- Static and dynamic malware analysis
- Forensic and malware analysis
- Threat management/hunting
- Threat analysis
- Vulnerability management and analysis
- Experience with a Managed Security Services (MSS)
- Experience leading security incident response investigations that involve computer crimes and require log, forensic and malware analysis
Skills\Certifications
- Applied knowledge in at least one scripting or development language (such as Python)
- Thorough understanding of enterprise security controls in Active Directory / Windows environments
- Must be able to see the big picture, understanding evolving attacker behavior and motivations, participate and direct large projects, and help to train/mentor other security team members
- Possess sound business acumen, strong consulting skills, current technical skills and be adept in leading multiple projects under tight deadlines
- CISSP or CISA certifications
Number of Openings Available:
1Worker Type:
EmployeeCompany:
BCBST BlueCross BlueShield of Tennessee, Inc.Applying for this job indicates your acknowledgement and understanding of the following statements:
BCBST is an Equal Opportunity employer (EEO), and all employees and applicants will be entitled to equal employment opportunities when employment decisions are made. BCBST will take affirmative action to recruit, hire, train and promote individuals in all job classifications without regard to race, religion, color, age, sex, national origin, citizenship, pregnancy, veteran status, sexual orientation, physical or mental disability, gender identity, or any other characteristic protected by applicable law.
Further information regarding BCBST's EEO Policies/Notices may be found by reviewing the following page:
BlueCross BlueShield of Tennessee is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at BlueCross BlueShield of Tennessee via-email, the Internet or any other method without a valid, written Direct Placement Agreement in place for this position from BlueCross BlueShield of Tennessee HR/Talent Acquisition will not be considered. No fee will be paid in the event the applicant is hired by BlueCross BlueShield of Tennessee as a result of the referral or through other means.
Tobacco-Free Hiring Statement
To further our mission of peace of mind through better health, effective 2017, BlueCross BlueShield of Tennessee and its subsidiaries no longer hire individuals who use tobacco or nicotine products (including but not limited to cigarettes, cigars, pipe tobacco, snuff, chewing tobacco, gum, patch, lozenges and electronic or smokeless cigarettes) in any form in Tennessee and where state law permits. A tobacco or nicotine free hiring practice is part of an effort to combat serious diseases, as well as to promote health and wellness for our employees and our community. All offers of employment will be contingent upon passing a background check which includes an illegal drug and tobacco/nicotine test. An individual whose post offer screening result is positive for illegal drugs or tobacco/nicotine and/or whose background check is verified to be unsatisfactory, will be disqualified from employment, the job offer will be withdrawn, and they may be disqualified from applying for employment for six (6) months from the date of the post offer screening results.
Resources to help individuals discontinue the use of tobacco/nicotine products include smokefree.gov or 1-800-QUIT-NOW.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory CISA CISSP Forensics Incident response Linux Log analysis Malware Monitoring Network security NSM Python Scripting UNIX Vulnerability management Windows
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.