Anticipated End Date:

2025-02-08

Position Title:

Senior Cybersecurity Engineer – ZTNA, SASE, CASB (Information Security Senior Advisor)

Job Description:

Senior Cybersecurity Engineer – ZTNA, SASE, CASB (Information Security Senior Advisor)

Location: This position will work a hybrid model (remote and in office 1 - 2 days per week).  Ideal candidates will live or be willing to relocate to within 50 miles of one of our Pulse Point locations in Indianapolis, IN, Atlanta, GA, and Mason, OH.

The Senior Cybersecurity Engineer – ZTNA, SASE, CASB (Information Security Senior Advisor) will lead the technical implementation and expansion of our Zero-Trust Network Access (ZTNA), Secure Access Service Edge (SASE), and Cloud Access Security Broker (CASB) initiatives.  In this role, the selected candidate will leverage Netskope and other security solutions to enhance our zero-trust and secure access capabilities. This is a hands-on, highly technical position that collaborates with vendors, business units, and IT teams to ensure visibility and control over sanctioned cloud utilization at Elevance Health.

How you will make an impact:

Leads the development of requirements, system architecture, and software design of security products and services; leads the development of strategies for discovery, evaluation and response to new networking attacks.

Develops security incident response plans and strategies. Provides trouble resolution and serves as point of technical escalation on complex problems. 

Creates presentations and seeks IT management approval and acceptance of significant replacements or reconfigurations of major security systems serving the Enterprise. Sets vendor strategy and direction. 

Designs and engineers comprehensive access management and network security technical solutions based on business requirements and defined technology standards; works with architecture to update technology direction and strategy. 

Develops reports supporting strategy and direction for management. 

Capable of serving as technical merger and acquisition lead. 

Acts as a subject matter expert among peers, with manager and senior management. 

Must be capable of providing top-tier support for 5 or more of the information security technology common body of knowledge skill sets: 1) Access Control, 2) Application Security, 3) Business Continuity and Disaster Recovery Planning, 4) Cryptography, 5) Information Security and Risk Management 6) Legal, Regulations, 7) Compliance and Investigations, 8) Operations Security, 9) Physical (Environmental) Security, 10) Security Architecture and Design, 11) Telecommunications and Network Security. 

Leads the design, deployment, and administration of secure web gateways, Zero Trust Network Access (ZTNA), cloud firewalls, remote browser isolation, and SASE solutions using Netskope.

Develops security architectures aligned with business objectives and cloud strategies (AWS, Azure, GCP). Establishes security standards and procedures to protect data and ensure regulatory compliance.

Configures and troubleshoots Netskope solutions (CASB, SWG, ZTNA, SASE), including client/publisher deployments for private access, and resolves multi-cloud/hybrid environment issues.

Performs risk assessments, collaborates with cross-functional teams, and implements operational procedures to support security assessments and threat modeling.

Serves as a primary SME on ZTNA, SASE, and CASB best practices across the enterprise.

Mentors junior team members and provides guidance to key security stakeholders.

Develops and maintains comprehensive documentation—such as knowledge bases, runbooks, and reference architectures—to facilitate best practices and streamline operations.

Monitors emerging security threats and actively contributes to enhancing the organization’s enterprise security strategy.

Designs and analyzes testing plans to ensure security guardrails are resilient against potential compromises.

Serves as a cross-organization collaborator with excellent communication skills, effectively engaging with various stakeholders to ensure seamless integration and alignment of cybersecurity measures during mergers and acquisitions.

Minimum Requirements:

Requires BS/BA in information Technology or related field of study and a minimum of 8 years’ experience in systems administration and security aspects of information systems, access management and network security technologies, network communications, computer networking, telecommunications, systems development and management, hardware, software, data, and people; experience with multiple technical and business disciplines required; requires broad-based experience to plan and design highly complex systems; or any combination of education and experience, which would provide an equivalent background. 

Preferred Skills, Capabilities and Experiences:

Certifications: NCCSA, NCCSI, CISSP, CCSK, AWS, Azure, and GCP strongly preferred.

At least 3 years of IT experience focused on enterprise network security strongly preferred.

Deep proficiency in Netskope solutions (CASB, SWG, ZTNA), including client/publisher deployments, real-time protection, and policy configuration strongly preferred.

Strong grasp of security principles across AWS, Azure, and GCP, including identity and access management (IAM) strongly preferred.

Experience with routing protocols (BGP, OSPF), WAN/LAN architectures, and familiarity with SD-WAN, SDN, or DevSecOps strongly preferred..

Advanced understanding of data processing controls and relevant hardware, software, and communications strongly preferred.

Proficiency in Python, Java, or C# and experience with Terraform or CloudFormation (JSON) strongly preferred.

Proven ability to diagnose and resolve issues in multi-cloud and hybrid environments preferred.

Excellent communication skills for mentoring teams, presenting to stakeholders, and assisting with audit responses preferred.

Extensive experience with automated security validation, event-driven automation, and DevSecOps practices preferred.

Experience integrating security solutions with ticketing and asset management systems preferred.

Job Level:

Non-Management Exempt

Workshift:

1st Shift (United States of America)

Job Family:

IFT > IT Security & Compliance

Please be advised that Elevance Health only accepts resumes for compensation from agencies that have a signed agreement with Elevance Health. Any unsolicited resumes, including those submitted to hiring managers, are deemed to be the property of Elevance Health.

Who We Are

Elevance Health is a health company dedicated to improving lives and communities – and making healthcare simpler. We are a Fortune 25 company with a longstanding history in the healthcare industry, looking for leaders at all levels of the organization who are passionate about making an impact on our members and the communities we serve.

How We Work

At Elevance Health, we are creating a culture that is designed to advance our strategy but will also lead to personal and professional growth for our associates. Our values and behaviors are the root of our culture. They are how we achieve our strategy, power our business outcomes and drive our shared success - for our consumers, our associates, our communities and our business.

We offer a range of market-competitive total rewards that include merit increases, paid holidays, Paid Time Off, and incentive bonus programs (unless covered by a collective bargaining agreement), medical, dental, vision, short and long term disability benefits, 401(k) +match, stock purchase plan, life insurance, wellness programs and financial education resources, to name a few.

Elevance Health operates in a Hybrid Workforce Strategy. Unless specified as primarily virtual by the hiring manager, associates are required to work at an Elevance Health location at least once per week, and potentially several times per week. Specific requirements and expectations for time onsite will be discussed as part of the hiring process. Candidates must reside within 50 miles or 1-hour commute each way of a relevant Elevance Health location.

The health of our associates and communities is a top priority for Elevance Health. We require all new candidates in certain patient/member-facing roles to become vaccinated against COVID-19 and Influenza. If you are not vaccinated, your offer will be rescinded unless you provide an acceptable explanation. Elevance Health will also follow all relevant federal, state and local laws.

Elevance Health is an Equal Employment Opportunity employer, and all qualified applicants will receive consideration for employment without regard to age, citizenship status, color, creed, disability, ethnicity, genetic information, gender (including gender identity and gender expression), marital status, national origin, race, religion, sex, sexual orientation, veteran status or any other status or condition protected by applicable federal, state, or local laws. Applicants who require accommodation to participate in the job application process may contact elevancehealthjobssupport@elevancehealth.com for assistance. Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state, and local laws, including, but not limited to, the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act.