Wellmark is seeking an experienced security professional to drive complex initiatives that safeguard the organization's sensitive data and critical systems.
The role involves leading the design and implementation of advanced security protocols and working closely with cross-functional teams to uphold and enforce enterprise-wide security standards.
The position is crucial in protecting member information and ensuring compliance with industry regulations in an ever-evolving threat landscape.
Responsibilities include reviewing escalations from junior team members, serving as an active member of the Cyber Security Incident Response Team (C-SIRT), and driving the investigation and response to security events and incidents.
The role also involves building and configuring infrastructure for vulnerability scanning, monitoring for known exploited vulnerabilities, and collaborating with technical stakeholders to assess and remediate escalated vulnerabilities.
Additional tasks include designing security exercises, defining key performance indicators, gathering data for reporting dashboards, and developing security awareness materials for the workforce.
The position is eligible for remote work, allowing flexibility in the work environment.
Requirements:
A Bachelor's degree or direct and applicable work experience is required.
A minimum of 7 years of experience working with a variety of technologies within an IT environment is necessary, with at least 5 years in a role where IT security was a primary responsibility.
Candidates must have experience designing and configuring solutions in multiple security domains.
An understanding of the OWASP, the MITRE ATT&CK framework, the Cyber Kill Chain, and the software development lifecycle (SDLC) is essential.
Strong Windows and *nix support skills, along with network and cyber security knowledge, are required.
Extensive knowledge of security technologies, compliance frameworks, and industry best practices is necessary.
Experience configuring SIEM systems, threat intelligence platforms, SOAR, IDS/IPS, DLP, and other networking and system monitoring tools is required.
Candidates should have experience configuring solutions within a cloud platform (e.g., AWS, Azure, GCP).
Proficiency in scripting languages such as Python, PowerShell, or Bash is necessary.
Excellent communication skills, both written and verbal, are required, with the ability to explain complex technical issues to non-technical stakeholders.
Strong organization skills with the ability to manage multiple tasks simultaneously are essential.
The ability to work independently and as part of a team in a fast-paced environment is required.
Strong attention to detail with the ability to accomplish tasks and processes accurately and completely is necessary.
Candidates should have the ability to generate innovative solutions and proven experience in troubleshooting and performing root cause analysis.
Preferred qualifications include recognized security certifications (e.g., CISSP, OSCP).
Benefits:
The position offers the flexibility to work fully remote, with the option to come into a Wellmark office if desired.
Employees may be asked to come into the office occasionally for specific meetings or important events.
Wellmark is committed to providing a supportive work environment and values diversity and inclusion in its hiring practices.
The company offers a comprehensive benefits package, although specific details about the benefits are not provided in the job description.
