Sign upLog in

Manager, Information Security

Blue Cross and Blue Shield Association

El Dorado Hills, CA

Apply
JOB DETAILS
SKILLS
Agile Modeling, Analysis Skills, Artificial Intelligence (AI), Automation, Backlog Prioritization, Best Practices, Budget Management, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Communication Skills, Computer Security, Delivery Management, Ecosystems, Emerging Technology, Establish Priorities, Forensic Science, GIAC - Global Information Assurance Certification, HIPAA (Health Insurance Portability and Accountability Act), Healthcare, Incident Management, Incident Response, Information Technology & Information Systems, Information/Data Security (InfoSec), Internet Security, Leadership, Machine Learning, Machine Tool, Maintain Compliance, Mentoring, Operations Security (OPSEC), PCI-DSS, People Management, Performance Analysis, Performance Metrics, Presentation/Verbal Skills, Product Engineering, Regulations, Risk Management, Security Attacks, Security Information and Event Management (SIEM), Security Monitoring, Service Level Agreement (SLA), Strategic Planning, Team Lead/Manager, Technical Strategy, Technical Support, Time Management, Time Tracking, U.S. National Institute of Standards and Technology (NIST), Writing Skills
LOCATION
El Dorado Hills, CA
POSTED
3 days ago

Your Role

The Information Security Threat Detection and Response team uses advanced technologies like

AI-driven threat detection and automated response platforms to monitor and respond to

cybersecurity threats in real time. It acts as the hub for defense strategies, security tool

integration, and rapid, data-driven decisions to protect the organization's digital ecosystem.

The Manager, Incident Response will report to the Senior Manager, Threat Detection & Response. In this role, as a forward-thinking leader, you will be responsible for evolving our Security Operations Center (SOC). This role is critical to our mission of safeguarding patient data, maintaining compliance, and ensuring the resilience of technology systems-through both traditional security operations and the strategic use of automation and AI-based security technologies.

Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow - personally, professionally, and financially. We are looking for leaders that are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning.

Your Knowledge and Experience

  • Bachelor''s degree or equivalent experience
  • At least 10-years prior relevant experience, including 4 years of management experience and at least 1 year of leading one or more critical cybersecurity functions
  • Requires strong knowledge of security operations, incident response, SIEM platforms, and threat detection technologies
  • Requires direct experience building and leading a high functioning 24x7 SOC operation, security incident management, and investigations & forensics function
  • Familiarity with frameworks such as MITRE ATT&CK, NIST, HIPAA, and CIS Controls
  • Requires exceptional communication skills with both technical teams and non-technical stakeholders
  • Industry certifications such as CISSP, CISM, GIAC, or equivalent highly desired
  • Strong understanding of Agile delivery models and backlog management
  • Ability to manage multiple complex workstreams and successfully interact with all levels of management
  • Experience with regulatory certifications such as HIPAA, SOC2, PCI-DSS and FedRAMP
  • Understanding of advanced management approaches such as scheduling for internal & external resources, prioritizing across competing requests, budget management and oversight, coaching & mentoring direct reports, risk management, and delegation
  • Excellent verbal / written communication, collaboration, analytical and presentation skills
  • Experience with AI/ML concepts and tools desired
  • Preferred experience working within the Healthcare industry

Hybrid

This role requires employees to be in - office based on our hybrid workplace model, balancing purposeful in - person collaboration with flexibility. For most teams, this means coming into the office two days each week.

Employees living more than 50 miles from an office location will work with their manager to determine in-office time based on business need.

#LI-CP4

Your Work

In this role, you will:

  • Execute information technology strategies, plans, and priorities for a comprehensive information security program

  • Create relationships within Blue Shield to understand business requirements and work with them to accomplish those requirements within the security framework

  • Manage staff in the planning, design, and support the security technology stack

  • Develop and maintain relationships with managers in business unit teams and the IT teams to drive security plans

  • Manage and escalate roadblocks that may jeopardize security monitoring operations, infrastructure, and SLAs

  • Lead and manage the 24/7 Security Operations Center (SOC), overseeing real-time monitoring, detection, and response to threats

  • Integrate and optimize AI-driven threat detection tools, machine learning models, and behavioral analytics to identify anomalies across systems and data

  • Develop and maintain automated playbooks for common security incidents to improve response times and reduce analyst fatigue. Continually enhance forensic and investigation capabilities to meet the needs of the organization

  • Track and report on performance metrics and KPIs for security operations, automation efficiency, and AI tool effectiveness

  • Serve as a security innovation leader, staying ahead of emerging technologies and

  • integrating them into SOC strategy

  • Drive continual maturation of our incident response program, consistent with proven industry best practices and maturity models.

  • Own end-to-end delivery status, ensuring transparency, operational excellence, accountability, and timely updates across stakeholders

  • Collaborate closely with external vendors, as well as internal product and engineering leads to coordinate and manage delivery when third-party solutions are part of the implementation

  • Remove blockers and ensure delivery stays aligned with roadmaps and business outcomes

Your Work

In this role, you will:

  • Execute information technology strategies, plans, and priorities for a comprehensive information security program

  • Create relationships within Blue Shield to understand business requirements and work with them to accomplish those requirements within the security framework

  • Manage staff in the planning, design, and support the security technology stack

  • Develop and maintain relationships with managers in business unit teams and the IT teams to drive security plans

  • Manage and escalate roadblocks that may jeopardize security monitoring operations, infrastructure, and SLAs

  • Lead and manage the 24/7 Security Operations Center (SOC), overseeing real-time monitoring, detection, and response to threats

  • Integrate and optimize AI-driven threat detection tools, machine learning models, and behavioral analytics to identify anomalies across systems and data

  • Develop and maintain automated playbooks for common security incidents to improve response times and reduce analyst fatigue. Continually enhance forensic and investigation capabilities to meet the needs of the organization

  • Track and report on performance metrics and KPIs for security operations, automation efficiency, and AI tool effectiveness

  • Serve as a security innovation leader, staying ahead of emerging technologies and

  • integrating them into SOC strategy

  • Drive continual maturation of our incident response program, consistent with proven industry best practices and maturity models.

  • Own end-to-end delivery status, ensuring transparency, operational excellence, accountability, and timely updates across stakeholders

  • Collaborate closely with external vendors, as well as internal product and engineering leads to coordinate and manage delivery when third-party solutions are part of the implementation

  • Remove blockers and ensure delivery stays aligned with roadmaps and business outcomes

About the Company

B

Blue Cross and Blue Shield Association

At the Blue Cross and Blue Shield Association (BCBSA), we provide business strategy, technical support and consulting expertise to 36 Blue Cross and Blue Shield companies across the nation, employing more than 1,000 of the best strategic thinkers in the industry. We are a Brand manager that sets quality control standards for the 36 independent companies that use the Blue Cross and Blue Shield Brands, and we serve as a trade association that represents these Blue companies. It is through our involvement that the Blues companies share a united vision and strategy while also benefiting from the local strength of all member companies.
COMPANY SIZE
2,000 to 2,499 employees
INDUSTRY
Insurance
WEBSITE
https://www.bcbs.com/about-us/careers