Workforce Classification:

About the role of the Cybersecurity Threat Intelligence Engineer II

In a world that depends on data, The Cybersecurity Threat Intelligence Engineer II is a member of Premera’s Threat Intelligence, reporting to the Manager of threat Intelligence.  This Engineer is responsible for responding to cyber security incidents, using critical thinking skills and forensic analysis to ensure that cyber security threats are proactively stopped from the Premera network.

These threats include actors from Nation State, Cyber-criminal organizations, and Insider Threats. This position is instrumental in the overall Security Awareness Program where written communication and public speaking to all employees is common.

• Are you motivated to find the threat in the haystack? Are you passionate about making Healthcare safer?
• Do you want to be part of an elite team that hunts and defends Cyber threats?
• Hungry to become a subject matter expert in Cyber Security Forensic Analysis and Threat Response?
• Our unique combination of medical records and financial data make us an attractive target for Cyber Criminals.

If any of the above describe your passion for preventing cyber threats, and you want to become a Cyber Security Subject Matter Expert, this might be the role for you!!

This is a hybrid role, located on our campus in Mountlake Terrace, Washington.

What you’ll do:

• Applies advanced understanding HITURST engineering and controls standards.
• Performs risk and severity assessment on cybersecurity events and incidents and then properly escalate or handle in accordance with experience and current processes.
• Act as a technical contributor with advanced knowledge and experience in one or more areas:
  • PICERL (Planning, Investigation, Containment, Eradication, Lessons Learned) process
  • HR related Investigative and Legal Processes
  • Conflict resolution and Clear Partnership
  • Analyzing gaps found in hunting exercises and minimizing the overall threat landscape
  • Set the tempo, priorities, and proper workflow of the team in the day-to-day operations.
• Reviews and report out to the team IT security threat assessments for major changes to systems, applications, and networks.  This requires applying knowledge of vulnerability assessment and penetration testing tools.
• Maintains current expertise in security hacks and network penetration methods. Defines and documents defensive tactics. Defines and oversees implementation plans for security configuration changes.
• Provides advanced technical analysis and evidence capture as Level 3 technical support for security incident response.
• Defines IT policies, standards, and procedures to assure technical compliance with enterprise security policies and promote consistent use of best practices in information security. This includes regulatory standards such as SOX, HIPAA, PCI, GLBA, and various state and federal privacy laws.
• Mentor and guide junior Information Security Engineers in day-to-day operations and tasks.
• Exhibit skills of leadership and be able to perform duties with little or no supervision. 
• Perform other duties as assigned.

What you’ll bring:

• Your dedication to the focus on preventing Cyber threats.
• Your passion for hunting and investigating Cyber threats.
• Your understanding that Cyber threats don’t happen between normal business hours.
• Your natural curiosity around threat analysis and investigation.
• Bachelor’s degree in Information Systems or Business Administration or four (4) years’ experience. (Required)
• Three (3) years’ experience designing, implementing, and troubleshooting networked computer systems, including: systems integration, hardware requirements and network design planning; vendor negotiations for hardware and software; which must include: 
  • Two (2) years’ experience with secure network and systems architecture, design and implementation, intrusion detection, defense and incident response, security configuration management, access controls design and implementation and security policy and standards development. (Required)
• Demonstrated understanding of health plan operations and applicable security & privacy legislation. (Preferred)
• Knowledge of business continuity planning practices. (Preferred)
• Knowledge of applicable practices and laws relating to data privacy and protection. (Preferred)
• In-depth knowledge of the following technologies and protocols:  ARP, TCP/UDP, IP, NetBIOS, Radius, 802.1x, Bind/DNS and Active Directory, LDAP, SMTP, DHCP, SSH, SFTP, FTP, TFTP, SNMP, SSL/HTTPS, NTP, Sun, Syslog, VoIP, QoS, VLANs; Wireless protocols: 802.11 specs, WPA/2, WEP, TTLS, PEAP; Routing protocols: RIP/2, OSPF, EIGRP, Frame-relay, and MPLS.  Database systems: SQL Server, Oracle, and MySQL. (Preferred)
• Demonstrated understanding of Operating System architecture as it relates to the functions of the following components: OS kernel, OS kernel modules and device drivers, memory management, inter-process communication, security subsystem, user account rights, user group rights, system logs, I/O functions, network services, file-system permissions, and application interaction with the Operating System. (Preferred)

Premera total rewards

Our comprehensive total rewards package provides support, resources, and opportunities to help employees thrive and grow. Our total rewards are more than a collection of perks, they're a reflection of our commitment to your health and well-being. We offer a broad array of rewards including physical, financial, emotional, and community benefits, including:

• Medical, vision, and dental coverage with low employee premiums.

• Voluntary benefit offerings, including pet insurance for paw parents.

• Life and disability insurance.

• Retirement programs, including a 401K employer match and, believe it or not, a pension plan that is vested after 3 years of service.

• Wellness incentives with a wide range of mental well-being resources for you and your dependents, including counseling services, stress management programs, and mindfulness programs, just to name a few.

• Generous paid time off to reenergize.

• Looking for continuing education? We have tuition assistance for both undergraduate and graduate degrees.

• Employee recognition program to celebrate anniversaries, team accomplishments, and more.

For our hybrid employees, our on-campus model provides flexibility to create your own routine with access to on-site resources, networking opportunities, and team engagement.

• Commuter perks make your trip to work less impactful on the environment and your wallet.

• Free convenient on-site parking.

• Subsidized on-campus cafes make lunchtime connections with colleagues fun and affordable.

• Participate in engaging on-site activities such as health and wellness events, coffee connects, disaster preparedness fairs and more.

• Our complementary fitness & well-being center offers both in-person and virtual workouts and nutritional counseling.

• Need a brain break? Challenge someone to a game of shuffleboard or ping pong while on campus.

The pay for this role will vary based on a range of factors including, but not limited to, a candidate’s geographic location, market conditions, and specific skills and experience.

The salary range for this role is posted below; we generally target up to and around the midpoint of the range.

National Plus Salary Range:

*National Plus salary range is used in higher cost of labor markets including Western Washington and Alaska.

We’re happy to discuss compensation further during the interview because we believe that open communication leads to better outcomes for all. We’re committed to creating an environment where all employees are celebrated for their unique skills and contributions.