Description
SHIFT: Day Job
SCHEDULE: Full-time
Be part of an extraordinary team.
We are looking for leaders at all levels of the organization who are passionate about making an impact on our members and the communities we serve. You will thrive in a complex and collaborative environment where you take action and ownership to solve problems and lead change. Do you want to be part of a larger purpose and an evolving, high-performance culture that empowers you to make an impact?
The Cyber Security Senior Advisor - Detection Engineering (SIEM Content / Use Case Development) develops, recommends, and implements enterprise information security policies, technical standards, guidelines, procedures, and other elements of an infrastructure necessary to support information security in compliance with established company policies, regulatory requirements, and generally accepted information security controls. Responsible for maintaining current threat management capabilities that support our 24/7 Cyber Security Operations Center. This position will be developing and maintaining threat detection content across multiple security platforms that are operationalized by the Cyber Security Operations Center.
Primary duties may include, but are not limited to:
Develop SIEM and Security Use Case Logic (Detection Engineering) for security threat models
Conduct threat hunting exercises using industry best practices
Document standard practices for metrics collection and reporting
Maintain and develop documentation for CSOC use cases
Align work products to Mitre ATT&CK framework and apply detection opportunities driven by threat hunting and threat intelligence.
Development, testing, and management of CSOC use cases.
Creation of custom logic to detect unique or previously undetectable attacks on Anthem's information assets.
Deliver recommendations to close identified security gaps.
Develop solutions to manage data in a cross-platform environment leveraging scripting and automation.
Maintain accurate records of signal and detection logic in EDR, IDS, SIEM.
Qualifications
Minimum Requirements:
Preferred Qualifications:
Security Certifications: CISSP and other advanced technical security certifications (e.g. Information Systems Security Architecture Professional, Information Security Engineering Professional, Certification and Accreditation Professional, or equivalent certifications) strongly preferred.
EDR Signal development SIEM content management.
Development background working with a code repository and managing content programmatically.
Proficient in scripting languages and API usage (python, javascript, powershell, yara).
If this job is assigned to any Government Business Division entity, the applicant and incumbent fall under a 'sensitive position' work designation and may be subject to additional requirements beyond those associates outside Government Business Divisions. Requirements include but are not limited to more stringent and frequent background checks and/or government clearances, segregation of duties principles, role specific training, monitoring of daily job functions, and sensitive data handling instructions. Associates in these jobs must follow the specific policies, procedures, guidelines, etc. as stated by the Government Business Division in which they are employed.
We offer a range of market-competitive total rewards that include merit increases, paid holidays, Paid Time Off, and incentive bonus programs (unless covered by a collective bargaining agreement), medical, dental, vision, short and long term disability benefits, 401(k) +match, stock purchase plan, life insurance, wellness programs and financial education resources, to name a few. The health of our associates and communities is a top priority for Anthem. We require all new candidates to become vaccinated against COVID-19. If you are not vaccinated, your offer will be rescinded unless you provide - and Anthem approves - a valid religious or medical explanation as to why you are not able to get vaccinated that Anthem is able to reasonably accommodate. Anthem will also follow all relevant federal, state and local laws. Anthem, Inc. has been named as a Fortune Great Place To Work in 2021, is ranked as one of the 2021 World's Most Admired Companies among health insurers by Fortune magazine, and a Top 20 Fortune 500 Companies on Diversity and Inclusion. To learn more about our company and apply, please visit us at careers.antheminc.com. Anthem is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to age, citizenship status, color, creed, disability, ethnicity, genetic information, gender (including gender identity and gender expression), marital status, national origin, race, religion, sex, sexual orientation, veteran status or any other status or condition protected by applicable federal, state, or local laws. Applicants who require accommodation to participate in the job application process may contact ability@icareerhelp.com for assistance.
REQNUMBER: PS71364-Virginia
