Senior Offensive Security & Exposure Management Analyst

Location: This role requires associates to be in-office 1 - 2 days per week, fostering collaboration and connectivity, while providing flexibility to support productivity and work-life balance. This approach combines structured office engagement with the autonomy of virtual work, promoting a dynamic and adaptable workplace. Alternate locations may be considered if candidates reside within a commuting distance from an office.

Please note that per our policy on hybrid/virtual work, candidates not within a reasonable commuting distance from the posting location(s) will not be considered for employment, unless an accommodation is granted as required by law.

The Senior Security Analyst will operate and evolve continuous penetration testing capabilities to uncover exploitable attack paths, simulate adversary behavior, and drive measurable risk reduction. You’ll partner closely with engineering, cloud, and security teams to turn findings into action and improve our overall security posture.

How You Will Make an Impact:

• Provides trouble resolution on complex problems and leads implementations for system and network security technologies.
• Operate and optimize continuous penetration testing across on-prem, cloud, and hybrid environments.
• Coordinates and prepares the reporting of data security events and incidents.
• Provides system and network architecture support for information and network security technologies.
• Provides technical support to business and technology associates in risk assessments and implementation of appropriate information security procedures, standards, and technologies.
• Represents major upgrades and reconfigurations in change control.
• Analyze attack paths and prioritize risk based on exploitability and impact.
• Track risk reduction and report on trends and outcomes.
• Translate findings into actionable insights for technical and business stakeholders
• Determine and perform complex configuration changes to meet business and information security requirements.
• Identify control gaps; recommend and implement improvements.
• Serve as the technical escalation for exposure management challenges
• Respond to level 3 & 4 change and problem requests without supervision.
• Lead level 1 & 2 incident recoveries and root cause analysis

Minimum Requirements

• Requires a bachelor’s degree or equivalent combination of education and experience that would provide the knowledge to perform such work. Experience must include a minimum of 3 years experience in a support & operations or design & engineering role in any of the following areas: access management or network security technologies, servers, networks, Network communications, telecommunications, operating systems, middleware, disaster recovery, collaboration technologies, hardware/software support or other infrastructure services role; or any combination of education and experience, which would provide an equivalent background.
• Requires experience providing top-tier support for 3 or more of the information security technology areas: Access Control, Application Security, Business Continuity and Disaster Recovery Planning, Cryptography, Information Security and Risk Management, Legal / Regulations, Compliance and Investigations, Operations Security, Physical (Environmental) Security, Security Architecture and Design, Telecommunications and Network Security

Preferred Skills, Capabilities, and Experiences:

• 4+ years in offensive security, penetration testing, or vulnerability management.
• Experience with automated penetration testing or adversary simulation tools.
• Strong knowledge of networking, common vulnerabilities, and identity systems.
• Ability to assess and communicate risk effectively.
• Cloud security experience (AWS, Azure, GCP).
• Familiarity with SIEM, EDR, MITRE ATT&CK, OWASP, and Attack Surface Management.

For candidates working in person or virtually in the below locations, the salary* range for this specific position is $118,312 to $177,468 

Location(s): Woodland Hills, CA

In addition to your salary, Elevance Health offers benefits such as a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). The salary offered for this specific position is based on a number of legitimate, non-discriminatory factors set by the Company.  The Company is fully committed to ensuring equal pay opportunities for equal work regardless of gender, race, or any other category protected by federal, state, and local pay equity laws.   

* The salary range is the range Elevance Health in good faith believes is the range of possible compensation for this role at the time of this posting. This range may be modified in the future and actual compensation may vary from posting based on geographic location, work experience, education, and/or skill level. Even within the range, the actual compensation will vary depending on the above factors as well as market/business considerations. No amount is wages or compensation until such amount is earned, vested, and determinable under the terms and conditions of the applicable policies and plans. The amount and availability of any bonus, commission, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law. 

Please be advised that Elevance Health only accepts resumes for compensation from agencies that have a signed agreement with Elevance Health. Any unsolicited resumes, including those submitted to hiring managers, are deemed to be the property of Elevance Health.

Who We Are

Elevance Health is a health company dedicated to improving lives and communities – and making healthcare simpler. We are a Fortune 25 company with a longstanding history in the healthcare industry, looking for leaders at all levels of the organization who are passionate about making an impact on our members and the communities we serve.

How We Work

At Elevance Health, we are creating a culture that is designed to advance our strategy but will also lead to personal and professional growth for our associates. Our values and behaviors are the root of our culture. They are how we achieve our strategy, power our business outcomes and drive our shared success - for our consumers, our associates, our communities and our business.

We offer a range of market-competitive total rewards that include merit increases, paid holidays, Paid Time Off, and incentive bonus programs (unless covered by a collective bargaining agreement), medical, dental, vision, short and long term disability benefits, 401(k) +match, stock purchase plan, life insurance, wellness programs and financial education resources, to name a few.

Elevance Health operates in a Hybrid Workforce Strategy. Unless specified as primarily virtual by the hiring manager, associates are required to work at an Elevance Health location at least once per week, and potentially several times per week. Specific requirements and expectations for time onsite will be discussed as part of the hiring process.

The health of our associates and communities is a top priority for Elevance Health. We require all new candidates in certain patient/member-facing roles to become vaccinated against COVID-19 and Influenza. If you are not vaccinated, your offer will be rescinded unless you provide an acceptable explanation. Elevance Health will also follow all relevant federal, state and local laws.

Elevance Health is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to age, citizenship status, color, creed, disability, ethnicity, genetic information, gender (including gender identity and gender expression), marital status, national origin, race, religion, sex, sexual orientation, veteran status or any other status or condition protected by applicable federal, state, or local laws. Applicants who require accommodation to participate in the job application process may contact elevancehealthjobssupport@elevancehealth.com for assistance.

Qualified applicants with arrest or conviction records will be considered for employment in accordance with all federal, state, and local laws, including, but not limited to, the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act.

Prospective employees required to be screened under Florida law should review the education and awareness resources at HB531 | Florida Agency for Health Care Administration.