• People focused, realizing it is all about our consumers and each other.
• Collaborative with a strong team spirit, happy to work together to achieve greater results.
• Intuitive and creative, generating ideas and solutions to transform the hearing care ecosystem.
• Full of grit, wanting to work hard to achieve success.
• A growth mentality, eager to adapt and be flexible in an ever-changing environment

SUMMARY

The SR IT Security Analyst role will be responsible for building and coordinating cyber-defense and incident response capabilities at Birdsong Health Benefits. The role will manage associated vendors, build, and implement processes, manage incident response activities, and develop protocols for blue and red team activities.

• Perform forensics on hardware, logs, and malware
• Manage relationship with SOC vendor and provide management and guidance to those resources
• Demonstrate intuitive problem-solving skills and communicate incidents to the appropriate stakeholders for remediation
• Collaborate in containment, eradication, and remediation efforts with vendors, technical staff, and leadership team by detecting, analyzing, and performing remediation on attacks that deny the use of authorized applications
• Develop and accumulate lessons learned documentation from incidents to identify controls to prevent identified malicious activity from reoccurring
• Analyze network flow data for anomalies and detect malicious network activity and perform network incident investigations to determine the root cause of the security incident and preserving evidence for potential legal action
• Perform network incident investigations to determine the root cause of the security incident and preserving evidence for potential legal action
• Partner with technical personnel and additional teams as required to contain, eradicate, and remediate incidents to drive incidents to closure as part of the incident response life cycle
• Appropriately inform and advise team members and leadership on incidents and incident prevention
• Document, communicate, collaborate, and transition incident details to responsible teams
• Lead the development of sound incident response capabilities and processes
• Participate in attack and penetration testing exercises of company infrastructure and assets to improve and ensure confidentiality, integrity, and availability of Birdsong Health Benefits systems and data.
• Plan and develop tabletop and incident response exercises to test readiness of teams and processes
• Develop and produce metrics on incidents and associated data for the BHB enterprise
• Coordinate with Managed Security Services for critical incident response
• Facilitate pentesting third party and internal tools

PROFESSIONAL EXPERIENCE/QUALIFICATIONS

• 4+ years of experience in an incident response role
• In-depth knowledge of SIEM tuning
• Usage of threat intelligence sources
• Scripting skills for automation
• Excellent written and verbal communication
• Penetration testing and forensics skills a plus