Blue Cross and Blue Shield of Louisiana Manager, IT-Cybersecurity Identity & Access Management Technologies in Baton Rouge, Louisiana
We take great strides to ensure our employees have the resources to live well, be healthy, continue learning, develop skills, grow professionally and serve our local communities. We invite you to apply for a career with Blue Cross.
Please note that effective Jan. 4, 2022, Blue Cross and Blue Shield of Louisiana will require any employee who enters any of our offices or who interacts in person with anyone for company business purposes to be fully vaccinated for COVID‑19, unless legally entitled to a reasonable accommodation related to religious or medical exemptions. Please note this is subject to change at any point in time to ensure compliance with company policy or government mandates.
Residency in or relocation to Louisiana is preferred for all positions.
Responsible for managing & directing the enterprise identity & access management engineering functions. Responsible for the identification, interpretation, and clarification of business requirements and the management of technology which supports multiple business units. Manages the development, maintenance, continual improvement and integration of internal, and external, and cloud identity & access management technologies to meet future business operations and IT requirements. Accountable for complying with all laws and regulations associated with duties and responsibilities.
NATURE AND SCOPE
This role directly manages 6 - 8 workers
This role reports to this job: Director, Security Infrastructure & Operations
Necessary Contacts: In order to effectively fulfill this position the incumbent must be in contact with the all levels of management and staff, provider administration, other Blue Cross plans, vendors, federal and state agencies and healthcare associations; inter-company personnel to determine user needs; divisional personnel to discuss status of projects; meets with providers, service bureaus, professional groups.
Bachelor's in Computer Science, Business Administration, or related field required. Four years of related experience can be used in lieu of a degree. Two years of military experience and training specific to Information Technology may substitute for a degree
Four years of related experience can be used in lieu of a Bachelor’s degree.
5 years of related work experience in the cybersecurity area required
2 years of leadership experience required
Experience can run concurrently
Large scale operations experience preferred
Requires in-depth knowledge of enterprise class identity & access management systems. Prior experience with Ping, Sailpoint, and Microsoft technologies preferred. Prior experience with cloud security identity & access management platforms and practices preferred.
Skills and Abilities
Must have proven experience working with commercial enterprise identity access management products, including development of solutions for identity management, user provisioning, single sign-on, role based access, and web access management.
Experience in defining, developing and/or monitoring security operations metrics is required.
Must have experience in gathering, documenting, and analyzing business requirements and developing security solution options.
Experience in training and/or evaluating technical staff required.
Working knowledge of NIST, and ITIL frameworks and industry best practices is required.
Licenses and Certifications
- Information Security Industry certification required (e.g. ISC2, GIAC, ISACA).
ACCOUNTABILITIES AND ESSENTIAL FUNCTIONS
Manages the development, deployment and execution of controls and defenses to ensure the security and risk mitigation of company infrastructure technology, information systems and digital payment systems. Analyzes business needs and establishes priorities for protection of critical systems and operational policies. Establishes and implements appropriate standards and criteria for hardware, software, email and web firewall, access verification and encryption requirements. Evaluates potential business impacts from security breaches and provides strategic and tactical guidance to business decision-makers. Develops and executes security systems compliance procedures. Identifies Cyber Security architecture, goals, objectives and metrics consistent with corporate strategic plan. Develops, implements and maintains the corporate Cyber Security policies, guidelines and procedures. Oversees incident response planning and the investigation of Cyber Security breaches. Monitors Cyber Security vulnerabilities, threats and events. Leads the information security team in vulnerability audits and forensic investigations. Responsible for identifying, evaluating and reporting Cyber Security risk to executive team. Selects, develops and evaluates personnel to ensure the efficient operation of the function. Responsible for output of key discipline within a function. Utilizes professional knowledge and experience to set departmental goals which align with functional strategy
Manages the development, deployment and execution of enterprise Identity & Access Management (IAM) technology controls to protect the organization’s digital assets. Directs the activities of CyberSecurity workforce resources responsible for on-prem and cloud-based IAM technology engineering. Analyzes business needs and establishes priorities for enterprise identity & access management hardware, software, solutions, and services. Evaluates potential business impacts and provides strategic and tactical guidance to business decision-makers. Evaluates security strategies and requirements, identifies integration issues and prepares cost estimates. Analyzes and investigates IAM security engineering tasks and prepares security specifications and recommendations. Identifies areas of security risk for IAM technologies and assists in reducing those risks. Keeps up-to-date on IAM and healthcare industry developments to offer solutions that provide the greatest security for the organization and its customers' privacy and confidentiality
Directs the activities of technical staff & contractors and provides performance evaluations and recommendations within established policies and guidelines, including training new workforce members. Works with management at all levels in other divisions and business units to ensure that business needs are properly identified and prioritized. Effectively collaborates internally and externally to ensure that proper resources are aligned to meet the business demand. Develops, manages, and builds strong relationships/partnerships with stakeholders, vendors, peers/other teams, and staff to ensure a high level of personal and team understanding of the stakeholder business operations, support needs, and service expectations. Demonstrates effective and timely communication to stakeholders, management, teams and vendors as applicable regarding status, issues, project plans, procedures, processes, systems and architecture to meet client needs and expectations. Utilizes professional knowledge and experience to set departmental goals which align with functional strategy. Focuses on achievement of departmental goals and plays a significant part in achieving functional goals. Maintains cost controls and budgetary planning. Delivers regular reports to Director, CyberSecurity Engineering & Operations
Additional Accountabilities and Essential Functions
The Physical Demands described here are representative of those that must be met by an employee to successfully perform the Accountabilities and Essential Functions of the job. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential functions
Perform other job-related duties as assigned, within your scope of responsibilities.
Job duties are performed in a normal and clean office environment with normal noise levels.
Work is predominately done while standing or sitting.
The ability to comprehend, document, calculate, visualize, and analyze are required.
An Equal Opportunity Employer
All BCBSLA EMPLOYEES please apply through Workday Careers.
PLEASE USE A WEB BROWSER OTHER THAN INTERNET EXPLORER IF YOU ENCOUNTER ISSUES (CHROME, FIREFOX, SAFARI)
Please be sure to monitor your email frequently for communications you may receive during the recruiting process. Due to the high volume of applications we receive, only those most qualified will be contacted. To monitor the status of your application, please visit the "My Applications" section in the Candidate Home section of your Workday account.
If you are an individual with a disability and require a reasonable accommodation to complete an application, please contact firstname.lastname@example.org for assistance.
In support of our mission to improve the health and lives of Louisianians, Blue Cross encourages the good health of its employees and visitors. We want to ensure that our employees have a work environment that will optimize personal health and well-being. Due to the acknowledged hazards from exposure to environmental tobacco smoke, and in order to promote good health, our company properties are smoke and tobacco free.
Blue Cross and Blue Shield of Louisiana performs background and pre-employment drug screening after an offer has been extended and prior to hire for all positions. As part of this process records may be verified and information checked with agencies including but not limited to the Social Security Administration, criminal courts, federal, state, and county repositories of criminal records, Department of Motor Vehicles and credit bureaus. Pursuant with sec 1033 of the Violent Crime Control and Law Enforcement Act of 1994, individuals who have been convicted of a felony crime involving dishonesty or breach of trust are prohibited from working in the insurance industry unless they obtain written consent from their state insurance commissioner.
Additionally, Blue Cross and Blue Shield of Louisiana is a Drug Free Workplace. A pre-employment drug screen will be required and any offer is contingent upon satisfactory drug testing results.
JOB CATEGORY: IT, Telecom & Internet