Resp & Qualifications
PURPOSE:
You will be responsible for managing CareFirsts Cybersecurity Architecture team, with a strong emphasis on cloud, identity, and infrastructure security. Working with Cybersecurity Strategy, you will develop the CareFirst Cybersecurity strategic roadmap to reduce risk and to continuously deliver new functionality with security, privacy, and data protection by design. Additionally, you will be responsible for planning, developing, mentoring, leading, and monitoring work of the department and its staff.
You will oversee the development and design of security protocols within our cloud and cloud environments, ensuring compliance with all requirements and regulations. Additionally, you will provide security control design of AI and Generative AI (GENAI) capabilities, identifying potential risks and recommending mitigation strategies. Staying updated on the latest security trends, technologies, and regulations will be necessary to ensure the companys security measures are current and effective.
This position requires a strong architecture background, solid leadership skills, and a deep understanding of secure design, secure coding standards and enterprise infrastructure security.
ESSENTIAL FUNCTIONS:
Cybersecurity Solutions Catalog Management
- Lead the development and maintenance of the Cybersecurity Solutions Catalog.
- Ensure that the catalog aligns with organizational goals, industry standards, and compliance requirements.
- Collaborate with stakeholders to identify and incorporate new cybersecurity solutions and technologies.
Strategic Alignment:
- Align cybersecurity capabilities with multi-year cybersecurity and strategic roadmaps.
- Work closely with the Cybersecurity Strategy team to integrate cybersecurity initiatives with business objectives.
- Provide insights and recommendations for enhancing the cybersecurity posture based on strategic goals.
Cybersecurity Framework:
- Proactively develop and maintain a comprehensive Cybersecurity Pattern Library.
- Document approved cybersecurity workflows, solutions, and best practices.
- Ensure the library reflects current threats, vulnerabilities, emerging technologies and business requirements.
Team Leadership and Development:
- Manage and mentor a team of cybersecurity architects and analysts.
- Foster a collaborative and innovative team environment.
- Provide guidance and support for professional development and career growth.
Stakeholder Engagement:
- Engage with internal and external stakeholders to understand their cybersecurity needs and requirements.
- Communicate complex cybersecurity concepts and strategies effectively to non-technical stakeholders.
- Facilitate workshops and training sessions on cybersecurity architecture and solutions.
Continuous Improvement:
- Stay abreast of industry trends, emerging threats, and new technologies.
- Continuously assess and improve cybersecurity architectures and solutions.
- Promote a culture of continuous improvement within the team.
SUPERVISORY RESPONSIBILITY:
This position manages people - 1-5
QUALIFICATIONS:
Education Level: Bachelor's Degree in Computer Science, Information Technology, or related field OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.
Licenses/Certifications:
- CISSP Certified Information Systems Security Professional Upon Hire Preferred or
- Certified Information Security Manager (CISM) Upon Hire Preferred
- CompTIA Advanced Security Practitioner (CASP) Upon Hire Preferred
Experience:
- 5 years Related professional experience.
- 1 year Supervisory experience or demonstrated progressive leadership experience.
Knowledge, Skills and Abilities (KSAs)
- Ability to multitask and manage multiple IT vendor relationships.
- Ability to lead and work as part of a team.
- Ability to execute technology and tool automation processes.
- Deep knowledge of risk treatment and mitigation strategies.
- Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity.
- Thorough understanding of cyber threats and vulnerabilities.
- Must be able to meet established deadlines and handle multiple customer service demands from internal and external customers, within set expectations for service excellence. Must be able to effectively communicate and provide positive customer service to every internal and external customer, including customers who may be demanding or otherwise challenging.
Salary Range: $143,120 - $265,667
Salary Range Disclaimer
The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the work is being performed. This compensation range is specific and considers factors such as (but not limited to) the scope and responsibilites of the position, the candidate's work experience, education/training, internal peer equity, and market and business consideration. It is not typical for an individual to be hired at the top of the range, as compensation decisions depend on each case's facts and circumstances, including but not limited to experience, internal equity, and location. In addition to your compensation, CareFirst offers a comprehensive benefits package, various incentive programs/plans, and 401k contribution programs/plans (all benefits/incentives are subject to eligibility requirements).
Department
Cybersecurity Engineering
Equal Employment Opportunity
CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.
Where To Apply
Please visit our website to apply: www.carefirst.com/careers
Federal Disc/Physical Demand
Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.
PHYSICAL DEMANDS:
The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.
Sponsorship in US
Must be eligible to work in the U.S. without Sponsorship
#LI-HS1