Independence Blue Cross · 6 hours ago
Sr Information Security Analyst (Cloud/Enterprise Security) - Hybrid (PA/NJ/DE)
Philadelphia, PA
Full-time
Hybrid
Senior Level
5+ years expIndependence Blue Cross is seeking a passionate Information Security Analyst to strengthen their security posture across on-premises and cloud environments. The role involves serving as a subject matter expert, implementing security solutions, and collaborating with various teams to ensure the protection of information assets.
Health CareHealth InsuranceInsuranceMedical
Responsibilities
Serve as SME on security fundamentals, techniques, and technologies across Azure, AWS, GCP, and on‑prem environments
Guide cloud security architecture: IAM, encryption/key management, network controls, data protection, workload hardening
Implement process improvements aligned to security frameworks (NIST CSF/800‑53, ISO 27001) and business needs; optimize technology to improve customer experience
Implement and monitor controls for unusual and suspicious activity across endpoints, networks, and cloud platforms
Perform advanced monitoring, data/log analysis, threat hunting, and forensic investigations; contribute to SOC/IR workflows
Plan, contribute to, and participate in incident plan exercises and tabletop scenarios
Draft or revise local policies, standards, guidelines, and procedures to supplement enterprise frameworks; identify and remediate gaps based upon NIST standards
Interface with internal/external auditors and examiners; maintain vendor management standards, questionnaires, and regulatory documentation (HITRUST, PCI, NIST, HIPAA, SOC2)
Review contracts and provide security guidance; support project scoping, costing, and cost–benefit analyses
Act as a liaison for the security team; clearly communicate business risk as it relates to information security
Create technical documentation (reports, white papers, technical notes, implementation/configuration guides)
Use visual aids to convey complex topics to large, diverse audiences; communicate clearly in high‑pressure, high‑visibility situations
Recommend new security solutions and improvements that do not impede innovation
Stay current with the evolving threat landscape; consistently learn and grow to remain a step ahead of attackers
Qualification
Required
5–8 years of relevant information security experience (or 3–5 years in IT systems administration with strong security responsibilities)
Expertise in incident response, system monitoring/analysis, and risk assessments aligned with compliance and privacy laws
Knowledge with compliance requirements: HITRUST, PCI, NIST, HIPAA, SOC2
Knowledge across multiple platforms: Windows, Linux/Unix, macOS; networks and endpoints
Experience with vulnerability assessment and penetration testing engagements
Experience with change management and project management
Excellent technical writing and presentation skills; ability to translate technical risk to business impact
Preferred
CCSP preferred; other certs: AZ‑500, AWS Security Specialty, GCP Professional Cloud Security Engineer
Experience securing Azure, AWS, GCP in enterprise/hybrid environments
Familiarity with NIST CSF, ISO 27001, CIS Benchmarks, MITRE ATT&CK
Company
Independence Blue Cross
The leading health insurer in southeastern Pennsylvania. It is a sub-organization of Independence Blue Cross.
5001-10000 employees
H1B Sponsorship
Independence Blue Cross has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (16)
2024 (2)
2023 (6)
2022 (2)
2021 (6)
2020 (1)
Funding
Current Stage
Late StageLeadership Team
Alexandra Jorgensen
Senior Vice President Human Resources
Joe Geist
SVP & Market President, National
Recent News
Home Health Care News
2026-01-14
Company data provided by crunchbase