Job Information
CareFirst Senior Cybersecurity Engineer (Remote) in Baltimore, Maryland
Resp & Qualifications
PURPOSE:
We are seeking a highly skilled and innovative Cybersecurity Engineer with a strong background in security automation and Python scripting to join our cybersecurity team. As a Sr. Cybersecurity Engineer, you will be responsible for designing, developing, and implementing automation solutions to enhance our security operations. You will play a key role in streamlining incident response, vulnerability management, threat intelligence integration, and cloud security initiatives.
Your ability to leverage automation tools, script with Python, and integrate various security technologies will be critical in scaling our security processes and improving the overall efficiency and effectiveness of the security team.
ESSENTIAL FUNCTIONS:
Assists with day-to-day support of security solutions.
Assists with engineering support and system administration of specialized cybersecurity solutions.
Solves complex problems and answers routine questions about the installation, operation, configuration, and customization of cybersecurity software.
Identifies potential conflicts with the implementation of any cybersecurity solutions.
Answers routine questions about the installation, operation, configuration, and customization of cybersecurity solutions.
Reviews and analyzes appropriate cybersecurity solution system logs for performance and functional anomalies.
Works with system design architects and project managers to provide security requirements.
SUPERVISORY RESPONSIBILITY:
Position does not have direct reports but is expected to assist in guiding and mentoring less experienced staff. May lead a team of matrixed resources.
QUALIFICATIONS:
Education Level: Bachelor's Degree in Computer Science, Information Technology, or related field OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.
Licenses/Certifications Upon Hire Required:
CISSP Certified Information Systems Security Professional or
CISM - Certified Information Security Manager or
Certified Ethical Hacker (CEH) or
Certified Information Systems Auditor (CISA)
Experience: 4 years related experience or cybersecurity certification and 3 years related experience
Knowledge, Skills and Abilities (KSAs)
Python Programming for Security Automation:
Proficiency in Python: Ability to write Python scripts to automate cybersecurity tasks, including threat detection, incident response, vulnerability scanning, and reporting.
Script Optimization: Writing efficient and scalable Python code to handle large datasets or automate workflows across distributed environments.
API Integration: Automating interactions with various security tools via their RESTful APIs using Python, such as integrating with SIEM systems, EDR tools, or ticketing platforms.
Automation of Security Workflows:
Script-based Automation: Automating manual and repetitive security tasks such as log parsing, incident alerting, patch management, and system hardening using Python.
Playbook Creation: Developing automated playbooks for responding to security events, e.g., quarantine an infected host, reset compromised credentials, or block malicious IP addresses.
Hands-on experience with SIEM platforms (e.g., Splunk, Sentinel), endpoint detection and response (EDR), and vulnerability management tools.
Experience with automation frameworks like Ansible, Terraform, or SaltStack.
Experience with Security Orchestration, Automation, and Response (SOAR) platforms.
Data Analysis and Threat Intelligence Automation:
Log Parsing and Analysis: Automating parsing, normalization, and analysis of logs from various sources (e.g., firewalls, SIEM, web servers) to detect patterns of malicious activity.
Threat Intelligence Automation: Automating threat intelligence gathering and enrichment processes, such as querying VirusTotal, Shodan, or AbuseIPDB for indicators of compromise (IoCs).
Data Visualization: Using Python libraries like Matplotlib or Plotly to visualize and communicate security metrics, threat trends, or investigation results.
Salary Range: $98,208 - $195,052
Salary Range Disclaimer
The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the work is being performed. This compensation range is specific and considers factors such as (but not limited to) the scope and responsibilites of the position, the candidate's work experience, education/training, internal peer equity, and market and business consideration. It is not typical for an individual to be hired at the top of the range, as compensation decisions depend on each case's facts and circumstances, including but not limited to experience, internal equity, and location. In addition to your compensation, CareFirst offers a comprehensive benefits package, various incentive programs/plans, and 401k contribution programs/plans (all benefits/incentives are subject to eligibility requirements).
Department
Cybersecurity Operations
Equal Employment Opportunity
CareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.
Where To Apply
Please visit our website to apply: www.carefirst.com/careers
Federal Disc/Physical Demand
Note: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.
PHYSICAL DEMANDS:
The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.
Sponsorship in US
Must be eligible to work in the U.S. without Sponsorship
#LI-MK1
REQNUMBER: 20317