Information Security Advisor
About the role
The Information Security Advisor role requires associates to be in-office 1 - 2 days per week, fostering collaboration and connectivity, while providing flexibility to support productivity and work-life balance. This role combines structured office engagement with the autonomy of virtual work, promoting a dynamic and adaptable workplace.
Responsibilities
- Maintain enterprise information security policies, technical standards, guidelines, procedures, and other elements of an infrastructure necessary to support information security in compliance with established company policies, regulatory requirements, and generally accepted information security controls.
- Deliver strategic network security, access control, and secure transaction/messaging solutions.
- Ensure security solutions involving the use of technologies are well-conceived, designed, and implemented in compliance with enterprise standards.
- Provide first level engineering design functions and trouble resolution.
- Serve as point of technical escalation on complex problems.
- Lead or plan implementations for access management and network security technologies.
- Develop testing plans to ensure quality of implementation.
- Lead the investigation and reporting of data security events and incidents.
- Provide system and network architecture support for information and network security technologies.
- Provide technical support to business and technology associates in risk assessments and implementation of appropriate information security procedures, standards, and technologies.
- Maintain security incident response plans.
- Represent major upgrades and business system replacements in change control.
- Oversee Enterprise mix of vendor services.
- Recommend changes and updates to strategy.
- Act as key contact for setting vendor strategy.
- Design & engineer repetitive technical solutions based on business requirements and defined technology standards.
- Develop support procedures and performance metrics reports.
- Lead level 1 & 2 incident recoveries.
- Organize the efforts of other analysts as part of incident recovery.
- Lead root cause analysis efforts.
- Must be capable of providing top-tier support for 4 or more of the information security technology common body of knowledge skill sets: 1) Access Control, 2) Application Security, 3) Business Continuity and Disaster Recovery Planning, 4) Cryptography, 5) Information Security and Risk Management 6) Legal, Regulations, 7) Compliance and Investigations, 8) Operations Security, 9) Physical (Environmental) Security, 10) Security Architecture and Design, 11) Telecommunications and Network Security.
Requirements
- Requires BS/BA degree in Information Technology or related field of study and a minimum of 5 years’ experience in systems support, system administration, system engineering, system security, access management, network security, network communications, computer networking, telecommunications, systems development and management, hardware, software, and/or data; or any combination of education and experience, which would provide an equivalent background.
- Experience in planning and designing highly complex systems.
- Experience with multiple technical and business disciplines strongly preferred.
- Security Certifications: CISSP or other technical security certifications (e.g. Systems Security Certified Practitioner, Certification and Accreditation Professional) strongly preferred.
- IAM experience preferred.
- Okta experience preferred.
- SAML experience preferred.
- OIDC experience preferred.
Qualifications
- Minimum Requirements: Requires BS/BA degree in Information Technology or related field of study and a minimum of 5 years’ experience in systems support, system administration, system engineering, system security, access management, network security, network communications, computer networking, telecommunications, systems development and management, hardware, software, and/or data; or any combination of education and experience, which would provide an equivalent background.
Skills
- Must be capable of providing top-tier support for 4 or more of the information security technology common body of knowledge skill sets: 1) Access Control, 2) Application Security, 3) Business Continuity and Disaster Recovery Planning, 4) Cryptography, 5) Information Security and Risk Management 6) Legal, Regulations, 7) Compliance and Investigations, 8) Operations Security, 9) Physical (Environmental) Security, 10) Security Architecture and Design, 11) Telecommunications and Network Security.
Benefits
If this job is assigned to any Government Business Division entity, the applicant and incumbent fall under a 'sensitive position' work designation and may be subject to additional requirements beyond those associates outside Government Business Divisions. Requirements include but are not limited to more stringent and frequent background checks and/or government clearances, segregation of duties principles, role specific training, monitoring of daily job functions, and sensitive data handling instructions. Associates in these jobs must follow the specific policies, procedures, guidelines, etc. as stated by the Government Business Division in which they are employed.
For candidates working in person or virtually in the below location(s), the salary* range for this specific position is $112,160 to $201,888. Locations: New York; Virginia
In addition to your salary, Elevance Health offers benefits such as a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements).
The salary offered for this specific position is based on a number of legitimate, non-discriminatory factors set by the Company. The Company is fully committed to ensuring equal pay opportunities for equal work regardless of gender, race, or any other category protected by federal, state, and local pay equity laws.
The salary range is the range Elevance Health in good faith believes is the range of possible compensation for this role at the time of this posting. This range may be modified in the future and actual compensation may vary from posting based on geographic location, work experience, education and/or skill level.
No amount is considered to be wages or compensation until such amount is earned, vested, and determinable under the terms and conditions of the applicable policies and plans.
The amount and availability of any bonus, commission, benefits, paid time off, stock, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law.
Please be advised that Elevance Health only accepts resumes for compensation from agencies that have a signed agreement with Elevance Health. Any unsolicited resumes, including those submitted to hiring managers, are deemed to be the property of Elevance Health.