PitchMeAI
PitchMeAI
Home›Jobs›Information Security Specialist
Capital Blue Cross

Information Security Specialist

Capital Blue Cross · Harrisburg, PA

  • Hybrid
  • Full-time
  • $95,000 / year
  • Harrisburg, PA

Job highlights

  • Protect systems, network, and data from cyber threats.
  • Monitor security events using SIEM tools.
  • Investigate incidents and manage vulnerability lifecycle.
  • Collaborate with IT and business teams on risk reduction.
  • Analyze logs and support incident response activities.

About the role

About Capital Blue Cross

We recognize that work is a part of life, not separate from it, and foster a flexible environment where your health and wellbeing are prioritized. At Capital you will work alongside a caring team of supportive colleagues, and be encouraged to volunteer in your community. We value your professional and personal growth by investing heavily in training and continuing education, so you have the tools to do your best as you develop your career. And by doing your best, you’ll help us live our mission of improving the health and well-being of our members and the communities in which they live. Capital Blue Cross is an independent licensee of the Blue Cross Blue Shield Association. We are an equal opportunity employer and do not discriminate on the basis of race, color, religion, national origin, gender, sexual orientation, gender identity, age, genetic information, physical or mental disability, veteran status, or marital status, or any other status protected by applicable law.

Position Overview

Base pay is influenced by several factors including a candidate’s qualifications, relevant experience, and anticipated contributions to meet the needs of the business, along with internal pay equity and external market driven rates. The salary range displayed has not been adjusted for geographical location. This range has been created in good faith based on information known to Capital Blue Cross at the time of posting and may be modified in the future. Capital Blue Cross offers a comprehensive benefits packaging including Medical, Dental & Vision coverage, a Retirement Plan, generous time off including Paid Time Off, Holidays, and Volunteer time off, an Incentive Plan, Tuition Reimbursement, and more.

At Capital Blue Cross, we promise to go the extra mile for our team and our community. This promise is at the heart of our culture, and it’s why our employees consistently vote us one of the “Best Places to Work in PA.”

Responsibilities

  • Monitor and analyze security events using SIEM tools to detect and respond to threats in real-time.
  • Investigate security incidents, perform root cause analysis, and document findings for remediation and reporting.
  • Manages the full vulnerability lifecycle across enterprise systems, including identifying security weaknesses, assessing and prioritizing risk, coordinating remediation efforts, and validating that issues are resolved.
  • Works closely with IT and business teams to ensure vulnerabilities are addressed in a timely manner based on risk, impact, and relevant threat intelligence.
  • Analyze logs from endpoints, servers, network devices, and cloud platforms to identify suspicious activity.
  • Support incident response activities including containment, eradication, and recovery.
  • Manage vendor security assessment reviews to enable informed decision-making related to third party engagements.
  • Participate in threat hunting activities to proactively identify hidden threats in the environment.
  • Perform other functions as assigned by Information Security management.

Qualifications

  • Results oriented, with demonstrated problem-solving and decision-making skills.
  • Ability to effectively listen and communicate in order to present technical concepts to audiences of all levels both verbally and in writing. Communication may include oral presentations and/or written documents.
  • Ability to prioritize and complete assignments independently in a rapidly changing and dynamic work environment along with good organizational skills.

Knowledge

  • Strong understanding of cybersecurity principles, threat detection, risk management, and industry security frameworks.

Experience

  • 3-5 years of experience in information security, cybersecurity, or a related IT role.
  • Hands-on experience monitoring and responding to security events using a SIEM platform such as Splunk or similar.
  • Experience with incident response, including investigation, containment, and recovery.
  • Proven experience with vulnerability management tools such as Tenable, or Nessus.
  • Experience analyzing logs from endpoints, servers, network devices and cloud services.
  • Familiarity with endpoint detection and response (EDR) tools and network security technologies (firewalls, IDS/IPS).

Education And Certifications

  • A Bachelor’s degree in Computer Science, Business Administration or related field; or a minimum of five years of practical related experience; or an equivalent combination of experience and education.
  • Preferred security certifications including, CISSP, CISM, CRISC or equivalent.

Physical Demands

  • While performing the duties of the job, the employee is frequently required to sit, use hands and fingers, talk, hear, and see.
  • The employee must be able to work over 40 hours per week.
  • The employee must occasionally lift and/or move up to 5 pounds.

Key Skills/ Competency

  • Information Security Specialist
  • Cybersecurity
  • SIEM Tools
  • Incident Response
  • Vulnerability Management
  • Risk Management
  • Threat Detection
  • Log Analysis
  • EDR Tools
  • Network Security

Skills & topics

  • Information Security Specialist
  • Cybersecurity
  • SIEM
  • Incident Response
  • Vulnerability Management
  • Risk Management
  • Threat Detection
  • Log Analysis
  • EDR
  • Network Security

How to get hired

  • Tailor your resume: Highlight your 3-5 years of information security experience, SIEM, incident response, and vulnerability management skills.
  • Showcase technical knowledge: Emphasize your understanding of cybersecurity principles, threat detection, risk management, and security frameworks.
  • Demonstrate communication skills: Prepare to explain technical concepts clearly to diverse audiences, both verbally and in writing.
  • Research Capital Blue Cross: Understand their culture, mission, and commitment to community and employee growth.
  • Prepare for interviews: Be ready to discuss your problem-solving abilities and how you handle dynamic work environments.

Technical preparation

Master SIEM tools like Splunk.,Practice incident response scenarios.,Familiarize with vulnerability scanners.,Review common security frameworks.

Behavioral questions

Describe a complex security issue you solved.,How do you handle high-pressure incidents?,Explain a technical concept simply.,How do you prioritize tasks in a dynamic environment?

Frequently asked questions

What is the primary responsibility of an Information Security Specialist at Capital Blue Cross?
The Information Security Specialist at Capital Blue Cross is primarily responsible for protecting systems, networks, and data from cyber threats. This involves monitoring security events, investigating incidents, managing vulnerability lifecycles, and collaborating with IT and business teams to enhance security posture and ensure compliance.
What kind of experience is required for the Information Security Specialist role at Capital Blue Cross?
Capital Blue Cross requires 3-5 years of experience in information security or a related IT role. Specific experience with SIEM platforms (like Splunk), incident response, vulnerability management tools (like Tenable or Nessus), and log analysis is essential.
What educational background is preferred for an Information Security Specialist at Capital Blue Cross?
A Bachelor’s degree in Computer Science, Business Administration, or a related field is preferred. Alternatively, a minimum of five years of practical related experience or an equivalent combination of experience and education is acceptable. Preferred security certifications like CISSP, CISM, or CRISC are also a plus.
How does Capital Blue Cross support professional growth for its Information Security Specialists?
Capital Blue Cross invests heavily in training and continuing education for its employees. They encourage professional and personal growth, providing the tools needed for employees to excel in their careers and develop their skills in the field of information security.
What are the key skills needed to succeed as an Information Security Specialist at Capital Blue Cross?
Key skills include strong problem-solving and decision-making abilities, excellent verbal and written communication for presenting technical concepts, and the capacity to work independently in a dynamic environment with good organizational skills. A solid understanding of cybersecurity principles is also critical.
Does Capital Blue Cross offer remote work options for the Information Security Specialist position?
The job description does not explicitly state if the Information Security Specialist role is remote, hybrid, or on-site. Given the nature of the work and the mention of prioritizing health and well-being in a flexible environment, it's possible that hybrid or remote arrangements could be considered, but this should be confirmed during the application process.

Similar roles

Open positions we recommend based on this role.

  • SOC Security Analyst L2

    BlueVoyant · Remote