New

Senior Security Engineer

Blue Cross Blue Shield Association
vision insurance, 401(k)
United States, D.C., Washington
1310 G Street Northwest (Show on map)
Aug 29, 2025
The hiring range for this role is: 151,694.71 - 233,752.33 This is the lowest to highest salary we, in good faith, believe we would pay for this role at the time of this posting. We may ultimately pay more or less than the hiring range and this hiring range may also be modified in the future. A candidate's position within the hiring range may be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, relevant experience, skills, seniority, performance, shift, travel requirements, and business or organizational needs.This job is also eligible for annual bonus incentive pay. We offer a comprehensive package of benefits including paid time off, 11 holidays, medical/dental/vision insurance, generous 401(k) matching, lifestyle spending account and many other benefits to eligible employees. Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, or any other form of compensation that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company's sole discretion, consistent with the law. This role will be a technical expert with deep knowledge of various security domains and underlying technologies. This role will provide strategic and operational leadership in security architecture and engineering, risk analysis, and regulatory compliance. This position will collaborate with stakeholders to enhance the organization's security posture, align security efforts with business objectives, and drive security architecture discipline across the organization. Provide security consulting, design reviews, and recommendations for IT projects and initiatives. Collaborate with stakeholders to ensure secure design and implementation of technical solutions. Partner with Enterprise Architecture to define and promote architecture processes, standards, and patterns. 40% Provide leadership in specific security domains/programs, manage multiple related projects, generate roadmaps, drive operational excellence, optimize costs, and enhance security risk visibility. 30% Participate in the development and implementation of security architecture principles and standards. Develop and maintain security architecture program metrics for continual improvement. 20% Assist stakeholders with research, analysis, development, and implementation of security capabilities focusing on protection, detection, and response. Participate in domain-related incident response efforts and manage domain-specific security tools. 10% Job Overview: This role will be a technical expert with deep knowledge of various security domains and underlying technologies. This role will provide strategic and operational leadership in security architecture and engineering, risk analysis, and regulatory compliance. This position will collaborate with stakeholders to enhance the organization's security posture, align security efforts with business objectives, and drive security architecture discipline across the organization. Essential Functions Provide security consulting, design reviews, and recommendations for IT projects and initiatives. Collaborate with stakeholders to ensure secure design and implementation of technical solutions. Partner with Enterprise Architecture to define and promote architecture processes, standards, and patterns. Provide leadership in specific security domains/programs, manage multiple related projects, generate roadmaps, drive operational excellence, optimize costs, and enhance security risk visibility. Participate in the development and implementation of security architecture principles and standards. Develop and maintain security architecture program metrics for continual improvement. Assist stakeholders with research, analysis, development, and implementation of security capabilities focusing on protection, detection, and response. Participate in domain-related incident response efforts and manage domain-specific security tools. Qualifications Education Required High School/GED Required Bachelor's Degree ; or equivalent experience Experience 7+ Years various security domains, including security engineering and information security - Required Experience driving the integration of advanced network security and resiliency across the technology engineering and operations function - Required Experience enabling and supporting platforms such as Zscaler, Microsoft 365, AWS Cloud and AWS Cloud Security, Akamai, and modern data protection and network security solutions - Required Knowledge Skills and Abilities Advanced understanding of security controls and regulatory compliance frameworks (NIST, ISO, HITRUST, HIPAA) Proficiency in scripting languages (Python preferred), API integrations, and process automation Expertise in web application security, cryptographic algorithms, PKI, and networking fundamentals Excellent communication and presentation skills for both technical and non-technical audiences Advanced analytical and problem-solving skills, with the ability to manage multiple projects successfully Ability to influence and solve problems effectively across project teams and senior management Demonstrated ability to make operational decisions, monitor progress, and report results Extra Posting information: Minimum 7 years in various security domains, including security engineering and information security