Bringing peace of mind through better health to our customers and communities
Senior Cyber Security Engineer
Location
United States
Posted
3 days ago
Salary
0
Seniority
Senior
Job Description
Senior Cyber Security Engineer
BlueCross BlueShield of Tennessee
Role Description We are hiring a Senior Cyber Security Engineer to join the Cyber Security Engineering team at BCBST! In this role, you’ll operate as a hands-on security engineer with broad influence across the enterprise, embedding security into solution design, deployment, and modernization efforts. This is not a siloed Information Security role—you’ll partner directly with engineering, platform, and business teams to shape secure outcomes across a diverse technology landscape. Day to day, you’ll provide practical security guidance, assess risk in real-world implementations, and help ensure that new tools, platforms, and integrations are designed and deployed securely. You’ll contribute across multiple areas including security tooling, cloud security, and emerging domains such as AI, helping the organization adopt new technologies safely and confidently. This role is intentionally broad and dynamic. Success requires the ability to context switch, balance advisory and engineering responsibilities, and deliver practical, scalable solutions rather than theoretical guidance. To be successful, you’ll bring strong security engineering fundamentals and the ability to operate across a wide range of technologies. We’re looking for candidates who: - Have experience securing solutions in at least one major cloud platform - Understand data and database security concepts and their real-world implications - Can assess and secure architectures without being tied to a single technology stack - Are comfortable navigating ambiguity and partnering with diverse teams - Experience with AI security, particularly evaluating risks across different vendors and platforms, is a strong plus. This role is ideal for someone who enjoys solving complex problems, influencing technical direction, and building security into systems as they are designed, not after the fact. Note: This is a remote, work‑from‑home position, but the final round of interviews will take place on‑site in our Chattanooga, TN office. Sponsorship is not available for this role. This role includes an on‑call rotation approximately once every 7–8 weeks, covering a full week. Core working hours align to Eastern Time (EST). Qualifications - Bachelor's Degree or equivalent work experience required. Equivalent experience is defined as 4 years of professional work experience in a corporate environment. - 5 years - Experience as an information security engineer or in related field required. - Comprehensive experience configuring and leveraging SSO and step-up authentication to support authorization, including federation services. - Intimate understanding of cloud security technologies and platforms. - Evident knowledge of cloud security frameworks and compliance standards. Requirements - Demonstrated ability to lead, document, and meet deadlines for projects from milestones to tasks and identify ownership per project with implementation knowledge and expectations. - Demonstrated ability to interpret and translate technical and/or complex concepts into information meaningful to IAM team members and/or business personnel. - Proficient in Microsoft Office (Outlook, Word, Excel and PowerPoint). - Proven analytical and problem-solving skills and ability to perform non-routine analytical tasks. - Proven ability to provide Security integration, automation, and configuration efforts with Security oversight for software in the BCBST environment. - Proven ability to determine Technical Security Baselines and ensure the baselines meet BCBST Policy and Standards. - Proficient understanding of troubleshooting approaches, including knowledge of underlying security tools, networking, server, application, and cloud environments. - Windows scripting and automation methodology (PowerShell, VBScript, Perl, Batch programming). - Well-developed understanding of APIs, databases, and file connections for application connections. - Proven ability to plan, prioritize, organize, configure, and coordinate across multiple applications and systems. - Ability to work independently with minimal supervision or function in a team environment sharing responsibility, roles, and accountability. - Certifications such as Certified Cloud Security Professional (CCSP), AWS Certified Security, Microsoft Azure, CISSP, CISA, CRISC or SANS – Specialty, or equivalent are preferred. Company Description
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Information System Security Manager – ISSM
Game Plan TechMission-driven engineering firm helping government teams innovate.
• Own the full RMF lifecycle from system categorization through ATO and continuous monitoring • Author and maintain SSPs, POA&Ms, SARs, and SCTM documentation • Coordinate with government AOs, SCAs, and ISSOs across programs • Manage NIST SP 800-53 control implementation, testing, and evidence collection • Govern the security posture of AI and ML systems operating within classified enclaves • Assess novel risks introduced by LLMs and agentic workflows in DoW environments • Apply DISA STIGs and DoW cloud SRG requirements across IL4–IL6 deployments • Support JSIG and ICD 503 requirements where SAP/SCI accreditation applies • Interpret evolving guidance — CMMC 2.0, NSM-8, DoW AI Ethics Principles — and translate into action before it becomes mandatory • Define security approval pathways for AI tools where none yet exist • Build lightweight security review processes that enable engineering teams rather than blocking them • Serve as the primary liaison with government ISSOs, AOs, and DCSA representatives • Communicate risk clearly to non-security audiences including engineers and program leads • Mentor junior ISSOs and build security-awareness culture across the organization
• Design, deploy, and manage enterprise network security solutions • Configure and administer Fortinet, SonicWall, and Palo Alto firewalls • Implement and maintain VPNs, IPS/IDS, web filtering, NAT, ACLs, and segmentation policies • Monitor security events using SIEM, XDR, and SOC monitoring platforms • Investigate security incidents, perform threat analysis, and support incident response activities • Manage firewall policies, security rules, and compliance controls • Implement Zero Trust Network Access (ZTNA) and identity-based security controls • Support cloud security initiatives across AWS, Azure, and hybrid infrastructure • Configure and support SD-WAN and Secure Access Service Edge (SASE) solutions • Conduct vulnerability assessments and remediation activities • Collaborate with infrastructure, cloud, and application teams to secure enterprise environments • Maintain security documentation, diagrams, SOPs, and audit records • Participate in on-call rotations and critical incident handling
• Develop and maintain a comprehensive understanding of CrowdStrike's hybrid networks spanning public cloud (AWS, GCP, Azure) and physical data centers, continuously assessing attack surface and identifying security gaps. • Design and architect new network connection patterns and zone segmentation strategies that reduce risk while enabling product scalability. • Build scalable monitoring, alerting, and automation solutions targeting network security risks across a fast-moving, dynamic environment. • Lead threat modeling efforts focused on network architecture, data flows, and connectivity patterns across platform services. • Evaluate current threat landscape and business priorities to effectively sequence and drive the highest-impact security improvements. • Lead complex, cross-team security initiatives with broad impact across the product group. • Contribute to medium-term strategic direction for network security; proactively identify areas of greatest need and develop actionable plans to address them. • Provide architectural and design expertise that accounts for the broader platform picture, not just point-in-time solutions. • Serve as an internal authority on network security architecture within CrowdStrike's product organization. • Volunteer for and lead working groups and initiatives that have impact at the Product team level or broader industry level. • Partner closely with product engineering, infrastructure, and platform teams to understand scaling requirements and translate them into secure-by-design network architectures. • Work across organizational boundaries to facilitate alignment on security requirements, driving consensus on complex and ambiguous problems. • Clearly communicate decisions and architectural direction to both technical and non-technical stakeholders once alignment is reached. • Serve as a role model for security culture and best practices within your functional area. • Multiply the effectiveness of the broader team by facilitating cross-team knowledge sharing and collaboration. • Guide and develop technical talent through coaching, code reviews, and architectural deep-dives. • Contribute to the growth of the security organization by mentoring team members and helping refine technical interviewing standards.
• Build detections and security signal pipelines in Datadog. • Serve as the subject matter expert on AWS Cloud and on-prem infrastructure security. • Define and set up AWS and on-prem Security Monitoring/Best Practices Strategy. • Act as the technical lead during security incidents, including investigation and remediation. • Improve Terraform Modules and Infrastructure as Code (IaC) to follow security best practices. • Develop and implement a vulnerability monitoring strategy and integrate it into CI/CD pipelines. • Build security automation using Python, scripting, and APIs. • Partner with Infrastructure on AWS security engineering, including IAM, KMS, and network segmentation. • Operate SOC 2 Type 2 evidence collection and audit response. • Drive ISO 27001 implementation work, including risk assessments and control mapping. • Ensure infrastructure compliance with regulatory requirements. • Run vendor and subprocessor risk reviews. • Respond to customer security questionnaires and external inquiries. • Mentor and enable other team members to improve their security posture.
