Security Analyst Senior




Location: This position will work a hybrid model (remote and in office 1 - 2 days per week). Ideal candidates will live within 50 miles of one of our Pulse Point locations in Atlanta, GA or Indianapolis, IN. Alternate locations may be considered.


The Security Analyst Senior is responsible for managing the delivery of information and network security systems and/or technology services, which may include server, desktop, software, network, database, helpdesk components.



How you will make an impact:

• Onboards applications to SSO & MFA platforms such as Okta, Ping and SiteMinder.
  
  


• Updates all relevant documentation such as design documents and tickets.
  
  


• Works with customers and/or application teams and track incidents through final resolution.
  
  


• Builds relationships with other Elevance business units to strengthen security posture throughout the organization.
  
  


• Ensures monitoring events and incidents are detected and escalated in a timely manner.
  
  


• Provides analysis and investigation to determine if alerts or issues warrant incident classification.
  
  


• Performs incident triage which includes determining scope, urgency, and potential impact and then escalates incidents to applicable Elevance entities for remediation.
  
  


• Provides trouble resolution on complex problems and leads implementations for system and Identity and Access Management security technologies.
  
  


• Provides system and network architecture support for information and network security technologies.
  
  


• Provides technical support to business and technology associate in risk assessments and implementation of appropriate information security procedures, standards, and technologies; represents major upgrades and reconfigurations in change control.
  
  


• Designs and analyzes mix of vendor services meeting business and information security requirements.
  
  


• Determines and performs complex configuration changes to meet business and information security requirements.
  
  


• Supervises and implements preventative maintenance.
  
  


• Represents infrastructure security support in significant projects and performs the most complex operations and administration tasks.
  
  


• Respond to level 3 & 4 change and problem requests without supervision.
  
  


• Leads level 1 & 2 incident recoveries and root cause analysis.
  
  

• Requires a bachelor's degree or equivalent combination of education and experience that would provide the knowledge to perform such work.
  
  


• Experience must include a minimum of 3 years' experience in a support & operations or design & engineering role in any of the following areas: access management or network security technologies, servers, networks, Network communications, telecommunications, operating systems, middleware, disaster recovery, collaboration technologies, hardware/software support or other infrastructure services role; or any combination of education and experience, which would provide an equivalent background.
  
  


• Requires experience providing top-tier support for 3 or more of the information security technology areas: 1) Access Control, 2) Application Security, 3) Business Continuity and Disaster Recovery Planning, 4) Cryptography, 5) Information Security and Risk Management 6) Legal, Regulations, 7) Compliance and Investigations, 8) Operations Security, 9) Physical (Environmental) Security, 10) Security Architecture and Design, 11) Telecommunications and Network Security.
  
  

• Technical security certifications (e.g. Systems Security Certified Practitioner) strongly preferred.
  
  


• BA/BS degree in Information System and Computer Science or related field of study strongly preferred.
  
  


• Understanding Information Security, Compliance, Assurance, and/or other security industry leading practices and principles strongly preferred.
  
  


• Understanding of Identity and Access Management principles strongly preferred.
  
  


• Expertise in Web Security concepts such as SAML, OAuth, and OIDC strongly preferred.
  
  


• Expertise in Access Management suite of products (SailPoint, Oracle, ForgeRock, Ping, Okta, CA, Active Directory, Azure AD, GCP, AWS) and of their design and implementation strongly preferred.
  
  


• Understanding of LDAP or Active Directory strongly preferred.
  
  


• Experience in any one of the programming/scripting language skills in Java, Python, Terraform or PowerShell strongly preferred.
  
  


• Experience executing tests and reporting results related to risk management and resiliency plans strongly preferred.
  
  


• Troubleshooting connectivity and access issues for applications, databases, and LDAP systems strongly preferred.
  
  


• Experience in reporting and creating presentations to help enable informed decision making strongly preferred.
  
  


• Demonstrated attention to detail in both written and verbal communication, as well as organizational and documentation skills strongly preferred.
  
  


• Understanding of IoT protocols, REST APIs, and WS Security preferred.
  
  


• Understanding operations involving Information Security or Cyber Security preferred.
  
  


• Operating or deploying Cyber Security programs using industry frameworks and methodologies preferred.