Infrastructure Engineering Senior Advisor- Threat and Vulnerability Management - Evernorth Health Services - Hybrid

The Cigna Group
NJ, Morris Plains, 115 Tabor Rd
Full-time

POSITION SUMMARY

Unique opportunity for the ideal candidate with 3+ years’ experience in and understanding of Database and Big Data environments with affinity for cybersecurity / vulnerability and risk management.

This role resides within the Infrastructure Governance Strategy / Vulnerability Management (IGS / VM) team supporting overall Global Infrastructure teams.

We partner and work directly with our Information Protection organization in support of a vast array of infrastructure technology teams all sharing the common goal to continuously improve our security posture through proactive risk assessments, analysis and solutions.

The team’s mission is to identify system weaknesses with the ultimate purpose of reducing risk in a prioritized manner.

The ideal candidate will identify security issues and drive mitigation prioritization through excellent analytical, engineering, communication, and technical skills, partner with asset owners to ensure the stability of our infrastructure and drive continuous improvement in our patching and lifecycle processes.

This role will be required to display engineering excellence utilizing and maintaining a diverse set of vulnerability assessment tools and techniques.

In addition to performing assessments the role requires active participation in the vulnerability management process, collaborating with key stakeholders to drive secure design and solutions.

ESSENTIAL FUNCTIONS

  • Partner with Infrastructure Database and Big Data teams to address vulnerabilities discovered during assessments and scans.
  • Provide recommendations on opportunities to automate, orchestrate, or otherwise improve established security processes, including detection and assessment of vulnerabilities.
  • Enable infrastructure, platform, and application teams to drive a stronger security posture, by leveraging security and vulnerability management tools like ServiceNow SecOps, Tenable, Prisma, Guardium and others such as GSC platforms such as OnSpring.
  • Understanding of vulnerability assessments across all layers of the network / host / application / database stack.
  • Ability to think like an attacker and partner with key stakeholders to develop defensive controls and hardening configurations.
  • Provide vulnerability scanning and remediation guidance, false positive validation, compliance scanning and policy and standard creation.
  • Demonstrate strong technical / analytical skills while providing accurate analysis of security-related findings.
  • Collaborate with Stakeholders, Tech lead and Team members to discuss the vulnerabilities and risk and implement remediation and / or mitigating controls in an efficient way.
  • Report on risk / vulnerability metrics and trending patterns to drive remediation and / or mitigating controls.

QUALIFICATIONS

  • In depth knowledge of vulnerability, configuration management platforms, such as Tenable.SC, Tenable.IO, ServiceNOW SecOps, Prisma, Guardium, Nexpose, Qualys, ForeScout etc.
  • Strong knowledge and experience with relational, non-relational and big data databases such as Oracle, MongoDB, PostgreSQL, MSSQL, DB2 z / OS, DB2LUW, Teradata, Hadoop, etc.
  • Experience with automation, scripting, and API integrations.
  • Understand operational maintenance of production systems, troubleshooting and performance tuning.
  • Develop and coach team members and peers at different skill levels.
  • Ability to work in an agile culture and manage time effectively.
  • Certification in information security (CISSP, OSCP, GWAPT or equivalent) preferred.
  • Bachelor’s degree in computer related field preferred.
  • 3+ years of relevant working experience; 1+ years of experience focused on cybersecurity, vulnerability / configuration management, risk management, or similar experience.

ABOUT THE DEPARTMENT

Do you enjoy the challenge of defending an enterprise from security breaches? Come put your skills to work at an organization trusted to protect client, patient and company data amid the ever-changing landscape of cyber security threats and risks.

Our cyber defenders are challenged and trusted with maintaining our secure infrastructure day in and day out, while delivering an enterprise computing environment that is resilient to breaches and disruptions.

If you’re as passionate about data security as we are and want to be at the center of our noble mission to make healthcare safer and more affordable, explore our opportunities.

30+ days ago
Related jobs
Promoted
Always Best Care Senior Services - Morris, NJ
Mount Olive Township, New Jersey

NJ Certified Home Health Aides are invited to APPLY NOW to join our outstanding team!. If you are a NJ Certified Home Health Aide who is dedicated and passionate about making a positive difference in the lives of others, we invite you to APPLY NOW to join our exceptional team! We are a top-rated age...

The Cigna Group
Morris Plains, New Jersey

Strategic Guidance: Collaborate with IT and business leaders to catalyze sustainable and impactful change, evaluating and shaping organizational design, structure, and culture. Coaching and Development: Mentor and upskill team members across the organization, from portfolio to team level, ...

PricewaterhouseCoopers Advisory Services LLC
Florham Park, New Jersey

Demonstrates thorough knowledge of leading or facilitating relevant project management or client consultations in the areas of Risk Management credit risk processes, credit analysis, risk rating, risk management policies and risk management organization structures, including security analysis and ri...

The Cigna Group
Morris Plains, New Jersey

As a Senior Advisor focused on ensuring the Enterprise Architecture organization operates effectively, this role will be responsible for various functions in the areas of talent management, financial management, supplier management, communications management and project management. This position lea...

Mondelēz International
Remote Worker, New Jersey, USA
Remote

We have corporate offices, sales, manufacturing and distribution locations throughout the to ensure our iconic brands—including and cookies, , and crackers, and and confectionery products —are close at hand for our consumers across the country. You will be expected to partner with cross-functional ...

Deloitte
Morristown, New Jersey

Our Wealth Management Advisory Practice combines a cross-functional group of practitioners to provide a suite of operational, technology, and regulatory offerings and expertise to serve the spectrum of wealth management clients, including retail broker-dealers, retail and private banks, investment a...

CohnReznick
Parsippany-Troy Hills, New Jersey

As one of the nation’s top Professional Services and Business Advisory firms, we foster teams in Advisory, Assurance, and Tax services that value innovation and collaboration in everything they do! . Exceptional client service and communication skills with a demonstrated ability to develop and maint...

Jacobs Management Group
Parsippany-Troy Hills, New Jersey

Are you ready to impact how cutting-edge, non-opioid pain management solutions reach the world? My client is seeking a Senior Director of Regulatory Affairs Advertising & Promotion who will play a pivotal role in shaping the future of external product communications. In this key leadership posit...

WTW
Millburn, New Jersey

Engaging specialist resources and subject matter experts in health management, absence and disability management, pharmacy, data analytics and compliance. You will substantially contribute to the management of projects, leveraging your experience as a benefits expert to make recommendations on plan ...

DirectEmployers
Maplewood, New Jersey

In the Health and Social Services Manager role, you will lead a team of Health and Social Services Coordinators, while overseeing day-to-day clinical operations, in the state of New Jersey, and participating in business development activities. You will manage a program or region, including team and ...