Information Security Specialist

About Capital Blue Cross

At Capital Blue Cross, we promise to go the extra mile for our team and our community. This promise is at the heart of our culture, and it’s why our employees consistently vote us one of the “Best Places to Work in PA.”

The Role

The Information Security Specialist will be responsible for protecting systems, network, and data from cyber threats. Monitors security events, investigates incidents, and leads vulnerability management efforts. Works closely with IT and business teams to reduce risk, improve security posture, and support compliance with industry standards.

Responsibilities

• Monitor and analyze security events using SIEM tools to detect and respond to threats in real-time.
• Investigate security incidents, perform root cause analysis, and document findings for remediation and reporting.
• Manages the full vulnerability lifecycle across enterprise systems, including identifying security weaknesses, assessing and prioritizing risk, coordinating remediation efforts, and validating that issues are resolved. Works closely with IT and business teams to ensure vulnerabilities are addressed in a timely manner based on risk, impact, and relevant threat intelligence.
• Analyze logs from endpoints, servers, network devices, and cloud platforms to identify suspicious activity.
• Support incident response activities including containment, eradication, and recovery.
• Manage vendor security assessment reviews to enable informed decision-making related to third party engagements.
• Participate in threat hunting activities to proactively identify hidden threats in the environment.
• Perform other functions as assigned by Information Security management.

Skills

• Results oriented, with demonstrated problem-solving and decision-making skills.
• Ability to effectively listen and communicate in order to present technical concepts to audiences of all levels both verbally and in writing. Communication may include oral presentations and/or written documents.
• Ability to prioritize and complete assignments independently in a rapidly changing and dynamic work environment along with good organizational skills.

Knowledge

• Strong understanding of cybersecurity principles, threat detection, risk management, and industry security frameworks.

Experience

• 3-5 years of experience in information security, cybersecurity, or a related IT role.
• Hands-on experience monitoring and responding to security events using a SIEM platform such as Splunk or similar.
• Experience with incident response, including investigation, containment, and recovery.
• Proven experience with vulnerability management tools such as Tenable, or Nessus.
• Experience analyzing logs from endpoints, servers, network devices and cloud services.
• Familiarity with endpoint detection and response (EDR) tools and network security technologies (firewalls, IDS/IPS)

Education and Certifications

• A Bachelor’s degree in Computer Science, Business Administration or related field; or a minimum of five years of practical related experience; or an equivalent combination of experience and education.
• Preferred security certifications including, CISSP, CISM, CRISC or equivalent

Physical Demands

• While performing the duties of the job, the employee is frequently required to sit, use hands and fingers, talk, hear, and see.
• The employee must be able to work over 40 hours per week.
• The employee must occasionally lift and/or move up to 5 pounds.

Benefits & Culture

We recognize that work is a part of life, not separate from it, and foster a flexible environment where your health and wellbeing are prioritized. At Capital you will work alongside a caring team of supportive colleagues, and be encouraged to volunteer in your community. We value your professional and personal growth by investing heavily in training and continuing education, so you have the tools to do your best as you develop your career.

And by doing your best, youll help us live our mission of improving the health and well-being of our members and the communities in which they live.

Capital Blue Cross offers a comprehensive benefits packaging including Medical, Dental & Vision coverage, a Retirement Plan, generous time off including Paid Time Off, Holidays, and Volunteer time off, an Incentive Plan, Tuition Reimbursement, and more.