Mainframe Security Analyst - CDS
Columbia, South Carolina
BlueCross BlueShield of South Carolina
Summary
About Us:
Companion Data Services provides leading IT solutions and managed services. We operate multiple geographically disperse data centers, including two of the nation’s largest healthcare data centers – both rated among the top five percent of data centers worldwide by MIPS.
With three U.S. locations and decades of experience in government, commercial and education markets, our innovative solutions and reliable services allow clients to focus on core business and improve outcomes.
Our data centers host applications process billions of transactions, supporting state, federal and commercial business.
Description
Position Purpose:
Researches, analyzes and troubleshoots information systems compliance and security issues on the mainframe. Identifies, validates and reports on security incidents and events based on enterprise policies and procedures. Performs forensic information security investigations involving enterprise computers, servers and/or networking infrastructure. Assists in providing security infrastructure and support for enterprise systems.
What You'll Do:
Responsible for analyzing compliance and technical control validation data to determine and report baseline variance for all applicable technology environments.
Interfaces with internal and external audit staff to ensure appropriate and accurate responses to audit queries are satisfied in a timely fashion.
Assists in researching and evaluating systems and procedures for the prevention, detection, containment and correction of information security breaches. Assists in advising management and users regarding security procedures and compliance policies.
Utilizing technologically advanced software, performs system monitoring evaluations and audits to ensure compliance with the corporate security policies and standards.
Prepares and analyzes compliance information to develop mitigation priorities, milestones and audit responses.
Participates in the evaluation of products and/or procedures to enhance productivity and effectiveness of information security across the organization.
Assists architects and security specialists to ensure adequate security solutions are in place throughout IT systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements.
Work Environment: Fast paced, multi-platformed environment which may require action and response 24X7 to support the technical business needs of the customer.
To Qualify for This Position, You'll Need:
Required Education:
Bachelor's degree in a job-related field
Degree Equivalency:
4 years job related work experience OR
Associate's degree and 2 years job-related work experience
Required Experience:
4 years of job-related technical experience.
Required Skills and Abilities:
Strong data analysis and correlation abilities.
Strong organizational, interpersonal and communication skills.
Strong knowledge of administrative, procedural and technical controls used to reduce security risks.
Ability to effectively prioritize and execute tasks in a high-pressure environment.
Strong knowledge of enterprise data architecture, systems engineering and data communications as applied to the automated storage and retrieval of information, using multiple platforms and protocols with the inherent security risks of each.
Strong understanding of the organization’s goals and objectives.
Strong familiarity with threat analysis risk management, configuration management, business continuity and contingency planning as it applies to IT.
Ability to troubleshoot multi-vendor Security issues.
Able to work in a team-oriented, collaborative environment.
Excellent attention to detail.
Required Software and Tools:
Strong proficiency with applicable IT Security tools (software and hardware).
Microsoft Office.
We Prefer that You Have:
Experience in supporting the infrastructure / application environment within a CMS Claims Processing Environment for Part A, Part B and DME Claims
Mainframe Infrastructure and Application skills such as but not limited to z/OS, CICS, RACF, JCL, Vanguard and/or z/Secure Security Tools
Strong background in Mainframe Security across several areas, IE: RACF, USS, CICS, z/OS.
Strong knowledge of all the RACF commands, dataset class, and the RACF general resource classes.
Strong knowledge of the mainframe DISA STIG.
Ability to run SMF reports (utilizing zSecure) to analyze access to resources.
Ability to work with Auditors and to produce required reports for artifacts and to address findings.
Ability to follow change control and to carefully plan and implement any high-risk security changes.
Ability to work numerous RACF incidents and requests in a given day and ability to update the tickets clearly.
Knowledge of utilizing the SYSLOG, SMF reports, and the RACF database to diagnose security errors.
Knowledge of the RACDCERT command the ability to implement and renew certificates and manipulate rings on the mainframe.
Knowledge of the use of the Vanguard Compliance Manager software.
Knowledge of the use of the z/Secure Admin & Audit software.
A plus to write REXX code to post-process SMF and Database reports.
Ability to work closely in a team environment to help one another and share ideas.
What We Can Do for You:
Our comprehensive benefits package includes:
401(k) retirement savings plan with company match
Subsidized health plans and free vision coverage
Life insurance
Paid annual leave - the longer you work here, the more you earn
Ten paid holidays
On-site cafeterias and fitness centers in major locations
Wellness programs and a healthy lifestyle premium discount
Tuition assistance
Service recognition
What to Expect Next:
After submitting your application, our recruiting team members will review your resume to ensure you meet the qualifications. This may include a brief telephone interview or email communication with our recruiter to verify resume specifics and salary requirements. Management will be conducting interviews with those candidates who qualify with prioritization given to those candidates who demonstrate the preferred qualifications.
We participate in E-Verify and comply with the Pay Transparency Nondiscrimination Provision. We are an Equal Opportunity Employer.
Some states have required notifications. Here's more information.
Equal Employment Opportunity Statement
BlueCross BlueShield of South Carolina and our subsidiary companies maintain a continuing policy of nondiscrimination in employment to promote employment opportunities for persons regardless of age, race, color, national origin, sex, religion, veteran status, disability, weight, sexual orientation, gender identity, genetic information or any other legally protected status. Additionally, as a federal contractor, the company maintains Affirmative Action programs to promote employment opportunities for minorities, females, disabled individuals and veterans. It is our policy to provide equal opportunities in all phases of the employment process and to comply with applicable federal, state and local laws and regulations.
We are committed to working with and providing reasonable accommodations to individuals with physical and mental disabilities.
If you need special assistance or an accommodation while seeking employment, please e-mail mycareer.help@bcbssc.com or call 1-800-288-2227, ext. 47480 with the nature of your request. We will make a determination regarding your request for reasonable accommodation on a case-by-case basis.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance DISA Mainframe Monitoring Risk management
Perks/benefits: 401(k) matching Health care Insurance Team events Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.