Security Incident Lead

The Security Incident Lead is responsible for managing and coordinating the response to security incidents within the organization.

This role involves leading the incident response team, developing and implementing incident response plans, and ensuring that security incidents are handled efficiently and effectively to minimize impact on the organization.

Location and Workplace Flexibility : We have offices in Atlanta GA, Boston MA, Morristown NJ, Plano TX, St. Louis MO, St.

Petersburg FL, and Hyderabad, India. We foster a hybrid and remote friendly culture and all of our employee's work locations are based on the needs of the position and determined by the Leadership team.

In-office work and activities, if applicable, vary based on the work and team objectives in accordance with Company policies.

Key Responsibilities :

• Lead and coordinate the response to security incidents, including detection, analysis, containment, eradication, and recovery.
• Lead, mentor, and develop a team of security incident handlers, fostering a culture of continuous improvement and professional growth.
• Conduct thorough investigations of security incidents to determine root causes and identify potential vulnerabilities.
• Serve as the primary point of contact for security incidents, communicating with internal stakeholders, external partners, and regulatory bodies as necessary.
• Maintain detailed records of security incidents, including timelines, actions taken, and lessons learned.
• Develop and update incident response policies, procedures, and playbooks to ensure a consistent and effective response to security incidents.
• Analyze incident data to identify trends and areas for improvement and implement changes to enhance the organization's security posture.
• Ensure that incident response activities comply with relevant laws, regulations, and industry standards.

Qualifications :

• Bachelor's degree in computer science, Information Security, or a related field or 6+ years performing incident management
• Prior experience leading 24 / 7 cyber security operations, including in-depth knowledge of cyber incident handling, documentation, process development, program enhancement, and metrics and key performance indicator generation
• Strong knowledge of incident response methodologies and best practices.
• Excellent analytical and problem-solving skills to identify root cause of security incidents leveraging endpoint, cloud and network security tools.
• Strong communication and interpersonal skills.
• Ability to coach and lead others and effectively leverage diverse ideas, experiences, thoughts and prospective to benefit the organization.
• Demonstrated ability to make effective, timely decisions under pressure, balancing risk and impact while ensuring swift and decisive actions during critical situations.
• Experience with cloud security and incident response in cloud environments.

Preferred Qualifications :

• Industry relevant certifications such as CISSP, CISM, GCIH, GDSA, etc.
• Knowledge of the cyber kill chain and the ATT&CK framework
• Experience with agile development methodologies.
• Deep expertise with cloud security stacks preferred.
• Applied Experience with several of the following :
• Cyber Security Operations Analysis and Incident Response Management
• Threat Hunting
• Experience with managing people offshore
• Automation and Engineering
• Cyber Threat Intelligence

Working Conditions :

This position may require occasional on-call availability and the ability to respond to security incidents outside of regular business hours.

Zelis is modernizing the healthcare financial experience by providing a connected platform that bridges the gaps and aligns interests across payers, providers, and healthcare consumers.

This platform serves more than 750 payers, including the top 5 national health plans, BCBS insurers, regional health plans, TPAs and self-insured employers, and millions of healthcare providers and consumers.

Zelis sees across the system to identify, optimize, and solve problems holistically with technology built by healthcare experts - driving real, measurable results for clients.

Commitment to Diversity, Equity, Inclusion, and Belonging

At Zelis, we champion diversity, equity, inclusion, and belonging in all aspects of our operations. We embrace the power of diversity and create an environment where people can bring their authentic and best selves to work.

We know that a sense of belonging is key not only to your success at Zelis, but also to your ability to bring your best each day.

Equal Employment Opportunity

Zelis is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

We encourage members of traditionally underrepresented communities to apply, even if you do not believe you 100% fit the qualifications of the position, including women, LGBTQIA people, people of color, and people with disabilities.

Accessibility Support

We are dedicated to ensuring our application process is accessible to all candidates. If you are a qualified individual with a disability or a disabled veteran and require a reasonable accommodation with any part of the application and / or interview process, please email TalentA redacted .

SCAM ALERT : There is an active nationwide employment scam which is now using Zelis to garner personal information or financial scams.

This site is secure, and any applications made here are with our legitimate partner. If you're contacted by a Zelis Recruiter, please ensure whomever is contacting you truly represents Zelis Healthcare.

We will never asked for the exchange of any money or credit card details during the recruitment process. Please be aware of any suspicious email activity from people who could be pretending to be recruiters or senior professionals at Zelis.