- Bachelor's Degree or direct and applicable work experience
- Minimum 4 years' experience working with a wide variety of technologies
- Within an IT environment
- At least 1 year of experience should be within in a role where IT security was a primary responsibility
- Knowledge of identifying and managing risk. Understanding of how business risk affects business strategy
- Proven ability to be analytical and think critically to obtain relevant information/identify essential elements, and examine issues or inconsistencies; further, identify causes and key factors; relate and compare data from different sources, and identify alternative solutions
- Demonstrated ability to communicate clearly, concisely, and transparently when in a stressful situation. Provide advice and council with stakeholders within the organization.
- Adept at viewing situations from the stakeholder's perspective to better address their needs and expectations.
- Demonstrated ability to break down problems and identify all of their facets, including hidden or tricky aspects, to find root-cause of problems. Generate a range of solutions and courses of action with benefits, costs, and risks associated with each. Probe appropriate sources for answers, and think 'outside the box' to find options. Test proposed solutions against the reality of likely effects before going forward
- Ability to accomplish tasks and processes accurately and completely; detail oriented
- Ability to generate innovative solutions in work situations; tries different and novel ways to deal with work problems and opportunities
- Knowledge of report writing to meet business reporting needs
- Travel required up to 5%
- Bachelor's Degree
- 4+ years' experience with Linux, Windows (server and desktop)
- IT Certifications - Certified Information Systems Security Professional (CISSP) - (ISC)2, Microsoft Certified Professional (MCP) - Microsoft, Security/Forensic specific certifications (SANS) - Global Information Assurance Certification (GIAC)
-
Security Analyst
1 week ago
Rose International Des Moines, United StatesDate Posted: 06/11/2024 · Hiring Organization: Rose International · Position Number: 465609 · Job Title: Security Analyst · Job Location: Des Moines, IA, USA, 50319 · Work Model: Hybrid · Shift: 1st shift 8:00 am to 4:30 PM. Working Monday, Tuesday, Friday, Saturday and Su ...
-
Security Analyst
1 week ago
Maven Workforce INC Des Moines, United StatesJob Description · Job DescriptionJob Title: Security Analyst · Location: Des Moines, IA · Summary:The Security Analyst (SA) has an understanding of all aspects of computer and network security, including such areas as firewall administration, encryption technologies and network p ...
-
Security Analyst
1 week ago
Argyllinfotech Des Moines, United StatesJob Description · Job Description- Job Title: Security Analyst (SA) · - Department: State of Iowa's Office of the Chief Information Officer (OCIO), Security Operations Center (SOC) · - Key Responsibilities: · - Provide tier one triage for information security incidents and occasi ...
-
Cyber Security Analyst
1 week ago
Principal Financial Group Des Moines, United StatesWhat You'll Do · We're looking for an experienced Cyber Security Analyst to join our Threat Intelligence Security team. In this role, you'll have the chance to help mature our threat intelligence service to support operational and tactical decision-making across the organization ...
-
Information Security Analyst
2 weeks ago
Wellmark, Inc. Des Moines, United StatesJob Description · Job DescriptionCompany Description · Why Wellmark: We are a mutual insurance company owned by our policy holders across Iowa and South Dakota, and we've built our reputation on over 80 years' worth of trust. We are not motivated by profits. We are motivated by t ...
-
Security Operations Center Analyst
3 days ago
ARK Solutions, Inc. Des Moines, United StatesPosition: Tier One Security Operations Center (SOC) Support · Purpose: · • Provide tier-one triage for information security incidents and occasional after-hours IT issues · • Serve as the first line of contact for the SOC · • Participate in incident handling processes (discovery, ...
-
Wellmark Des Moines, United StatesJob Description · About the Career: In this role, you will be crucial member of the security team that focuses on continuous monitoring of Wellmark's environment. You will monitor and triage threats as well as provide technical analysis and insight in threat and vulnerability man ...
-
Information Security Analyst
1 week ago
Holmes Murphy & Associates Waukee, United StatesHolmes Murphy has always believed that investing in our employees, the spaces in which they work, and the environment that we provide are all critical to our culture, purpose, and the services we offer. After all, we know that employees who feel appreciated and recognized for the ...
-
SOC Analyst
1 day ago
Global Pharma Tek Des Moines, United States ContractJob Title: SOC Analyst · Location: Des Moines, IA (Hybrid) · Duration: Months Contract (With a possible extension) · Job Description: · The purpose of this position is to provide tier two triage for information technology issues and information security incidents. · Serve as ...
-
Security Specialist
4 days ago
Soho Square Solutions Des Moines, United StatesJob Title: Technical Specialist (Security) · Location: Des Moines, IA (Hybrid) · Duration: 12 Months · NOTE: · 2nd Shift 4:00 PM - 12:30 AM CST · Wednesday through Sunday work days. Monday and Tuesday off · Job Description: · Candidate Requirements: · Systems Security Certified ...
-
Desktop Support Analyst
2 weeks ago
Palmer Group Des Moines, United StatesA growing local company is looking to add a Desktop Support Analyst to their team. This individual will need an advanced understanding of desktop computing and the implementation of Windows and Mac operating systems. If you have a strong work ethic and are interested in this posi ...
-
Security Protection Specialist
2 weeks ago
EMC Insurance Companies Des Moines, United States Full timeAt EMC, you'll put your skills to good use as an important member of our team. You can count on gaining valuable experience while contributing to the company's success. EMC strives to hire and retain the best people by engaging, developing and rewarding employees. · Performs foot ...
-
EMS Analyst
3 days ago
World Wide Technology Des Moines, United StatesPosition: EMS Analyst · Location: Des Moines, IA · Duration: 6+ Months with high possibility of Extensions · Responsibilities/Job Duties/Job Description/Qualifications: · Manage user support and client facing EMS/SCADA database and other key systems used to operate and control th ...
-
Software Developer III
2 weeks ago
ATHENE West Des Moines, United States Full timeWe are Athene. At Athene, we are driven to do more. We are a leading retirement services company that issues, reinsures and acquires retirement savings products designed for the increasing number of individuals and institutions seeking to fund retirement needs. We see every day a ...
-
Business Systems Analyst
23 hours ago
Aureon Consulting Des Moines, United StatesDIRECT APPLICANTS ONLY – NO 3RD PARTY INQUIRIES PLEASE · Aureon Consulting has an immediate need for an experienced Business Systems Analyst (BSA) to join a consulting effort that will involve enhancing healthcare interoperability through the implementation of FHIR and HL7 standa ...
-
Principal Financial Group, Inc. Des Moines, United States Full timeWhat You'll Do · In the Sr. Director, Private Markets Business Development Operations role, you'll be part of the Private Markets division covering Private Real Estate, Direct Lending, Infrastructure, Private Placements with plans to expand into Private ABS, Private Equity, etc.S ...
-
Configuration Analyst II
1 day ago
Principal Financial Group, Inc. Des Moines, United States Full timeWhat You'll Do · The Configuration Analyst II is a multi-functional role working directly with business and IT teams to craft, build and maintain critical processes within configurable systems. This role will be responsible for providing technical solutions, configuration, and co ...
-
Business Systems Analyst
3 weeks ago
MercyOne Des Moines, United States Full timeJOB DESCRIPTION Employment Type: · Full time Shift: · Day Shift Description: · As an integral member of MercyOne's PHSO department, the PHSO Business and Application Analyst assists the PHSO team in the planning, coordinating and execution of project implementatio ...
-
Financial Analyst III- Corporate Finance
1 week ago
Principal Financial Group Des Moines, United StatesWhat You'll Do · We're looking for a dedicated individual with an exceptional work ethic to join our Enterprise Financial Planning & Analysis team at Principal Financial Group as a Financial Analyst III. In this role, you'll have the opportunity to leverage analytical thinking, ...
-
soc analyst 1
1 week ago
TalentBridge Des Moines, United StatesJob Title: Security Analyst (SA) · Position: SOC Analyst 1 · Position Overview: The Security Analyst (SA) is responsible for understanding all aspects of computer and network security, including firewall administration, encryption technologies, and network protocols. This role su ...
Information Security Analyst - Des Moines, United States - Wellmark
![Default job background](https://contents.bebee.com/public/img/bg-user-ex-1.jpg)
Description
Company DescriptionWhy Wellmark: We are a mutual insurance company owned by our policy holders across Iowa and South Dakota, and we've built our reputation on over 80 years' worth of trust. We are not motivated by profits. We are motivated by the well-being of our friends, family, and neighbors-our members. If you're passionate about joining an organization working hard to put its members first, to provide best-in-class service, and one that is committed to sustainability and innovation, consider applying today
Why Wellmark Technology? Wellmark is building innovative, modern solutions using cutting edge technology. We are driving organizational transformation and business strategy by empowering our technology team to innovate new and elegant solutions to enhance the customer experience. Together, we are leaning into the future, owning the outcome, and driving organizational change to transform how we work.
More about our unique benefit offerings here.
More about working at Wellmark here.
Job Description
About the Career: In this role, you will be crucial member of the security team that focuses on continuous monitoring of Wellmark's environment. You will monitor and triage threats as well as provide technical analysis and insight in threat and vulnerability management, across multiple security disciplines such as networks, servers, desktops, applications, and databases. You are responsible for programming, supporting, and maintaining complex security systems, software programs and hardware devices. Under general guidance, you will collaborate with stakeholders across Technology to formulate, define, and implement procedures that are necessary to ensure the safety of information systems assets, protecting them from intentional or inadvertent access or destruction.
Our Ideal Candidate: You feel strong when you can remain calm and communicate essential information in tense situations. You build trusting relationships with your peers and can easily determine the best course to escalate items, quickly and efficiently. The ideal individual will have an aptitude and passion for creative problem solving across a diverse technology stack.
Qualifications
Required:
a. Analyze and manage multiple security and/or access control models in a planned, conscious manner following defined security lifecycle. Measure and report on effectiveness of security controls to Corporate Information Security (CIS) leadership, as well as to team members, IT leadership and IT staff.
b. Vulnerability Scanning Systems - Perform daily scanning of network, system, application and database assets across the enterprise. Reports results to InfoSec Engineers. Work with other IT teams as directed by the InfoSec Engineers or at the direction of CIS leadership.
c. Firewall Rule Analysis System - Review firewall rules alerts and report identified risk to InfoSec Engineers.
d. Security Configuration Hardening Processes - Work with InfoSec Engineers or at their direction with IT technical teams to ensure defined security configurations are applied across the enterprise. Review and recommend updates to security configurations as appropriate.
e. Work with CIS leadership to interpret information security policies, standards, and other requirements as they relate to a specific internal information system, and make recommendations with the implementation of these and other information security requirements.
f. Under direction of InfoSec Engineers or CIS Leadership serve as a representative of the security control structure; ensure key methodologies and concepts are applied and documentation in place to satisfy corporate, department, and internal and external auditor review. Solve complex security issues such as bypassed controls, disrupting security measures and technology changes; provides a continual balance of applied security safeguards and business usability.
g. Evaluate information system bug reports, security exploit reports, laws and regulations, and other information security notices issued by information system vendors, government agencies, universities, professional associations, and other organizations, and as needed, makes recommendations to internal management and technical staff to take precautionary steps.
h. Perform daily monitoring and analysis of host and network alerts from the data loss prevention product(s) and investigation outputs. Monitor and respond to data loss events and escalate when necessary. Engage with business contacts and IT to identify sensitive data and monitor for unauthorized disclosures.
i. Maintain capabilities and solutions, or preventative/remediation controls to protect proprietary/confidential data and systems. Collaborate, partner and influence business stakeholders across Wellmark to identify and define their most sensitive data assets.
j. Serve as an active member of the Security Incident Response Team (SIRT) and participates in security incident response efforts by, among other things, having an in-depth knowledge of common security exploits, vulnerabilities and countermeasures. Respond to security incidents, and advises on risk remediation plans, provide - security reports to Corporate Information Security management team. Act as a technical consultant on information security incident investigations and forensic technical analysis.
k. Maintain up-to-date detailed knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors. Research and recommend new emerging technologies, techniques and tools that will add value to the organization.
l. Perform ad-hoc penetration tests on Wellmark systems and applications and report found issues to leadership.
m. Other duties as assigned.
All your information will be kept confidential according to EEO guidelines.
An Equal Opportunity Employer
The policy of Wellmark Blue Cross Blue Shield is to recruit, hire, train and promote individuals in all job classifications without regard to race, color, religion, sex, national origin, age, veteran status, disability, sexual orientation, gender identity or any other characteristic protected by law.
Applicants requiring a reasonable accommodation due to a disability at any stage of the employment application process should contact us at
Please inform us if you meet the definition of a "Covered DoD official".