At Blue Cross and Blue Shield of Nebraska, we are a mission-driven organization dedicated to championing the health and well-being of our members and the communities we serve.
Our team is the power behind that promise. And, as the industry rapidly evolves and we seek ways to optimize business processes and customer experiences, there’s no greater time for forward-thinking professionals like you to join us in delivering on it! As a member of Team Blue, you’ll find purpose, opportunities and the support you need to build a meaningful career and make a powerful impact in our community.
As an Associate Cloud Security Engineer, you will support the design, implementation, and operation of security controls across endpoints, networks, cloud, and identity. You’ll partner closely with Security Operations, Infrastructure, and Application teams to reduce risk, respond to threats, and improve our security posture. We’re looking for a curious, detail-oriented engineer who takes ownership, learns quickly, and delivers practical solutions with appropriate guidance.
The ideal candidate will live within driving distance of the Omaha, Nebraska office. This position allows remote flexibility but will have 1 day per week in the office.
If living in one of our approved states (Florida, Iowa, Kansas, Minnesota, Missouri, Nebraska, North Dakota, andTexas) –this person may travel to our headquarters based on business needs.
What you'll do:
Help define, implement, andmaintainsecure Azure configurations and guardrails (e.g., policy assignments, configuration standards, and monitoring) to reduce attack surface.
Support cloud security posture management (CSPM) improvements by reviewing findings,validatingrisk, and partnering with engineering teams on remediation.
Assistin managing Azure Web Application Firewall (WAF) policies, including rule tuning, exception handling, andchangecoordination to balance protection and availability.
Support Azure Front Door configurations and security controls, including routing rules, TLS/certificate considerations, and integration with WAF policies.
Monitor and investigate cloud security alerts and signals (from CSPM/Defender/SIEM), escalating and documenting issues as needed.
Contribute to vulnerability management in cloud workloads by helping prioritize fixes,validatingremediation, and tracking risk-based outcomes.
Work with application and platform teams to enable secure deployment patterns (e.g., least privilege,secretsmanagement, logging) and consistent baseline configurations.
Assistwith incident response activities involving cloud services by gathering evidence, supporting containment steps, and helping capture lessons learned.
Maintain clear documentation for cloud security configurations, standards, and operating procedures.
Assistwith security assessments for third parties andnew technologiesby gathering evidence and documenting risks.
To be considered for this position, you must have:
Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent practical experience).
1–3 years of experience in IT or security (security operations, systems administration, network engineering, or similar).
Foundational knowledge of security concepts including least privilege, defense-in-depth, and secure configuration.
Hands-on familiarity with at least one security domain (endpoint, network, IAM, cloud, vulnerability management, or logging/SIEM).
Ability to follow procedures, document work clearly, and manage multiple tasks with good attention to detail.
Strong troubleshooting skills and a willingness to ask questions, learn, and take ownership of outcomes.
Effective communication skills and a positive, collaborative attitude.
Participation in on-call rotation required, including after-hours and weekend coverage as needed.
The strongest candidates for this position will also possess:
Security certifications such as Security+, AZ-500, SC-200, SSCP, or equivalent.
Experience in a regulated industry (healthcare, insurance, finance) and exposure to frameworks such as NIST CSF, SOC 2, or HIPAA.
Familiarity with Azure security services (e.g., Microsoft Defender for Cloud, Sentinel, Entra ID) and cloud governance patterns.
Basic scripting/automation skills (PowerShell, Python) for operational efficiency.
Exposure to threat intelligence, detection engineering, or security analytics.
Experience supporting large-scale integrations and partner collaborations.
Learn more about what makes BCBSNE such an exceptional place to work by visiting NebraskaBlue.com/Careers
We strongly believe that diversity of experience, perspective and background will lead to a better workplace for our employees and a better product for our customers and members.
To millions of Americans, Blue Cross and Blue Shield symbolizes peace of mind when it's needed most. That’s because, collectively, the Blue Cross and Blue Shield brands represent the largest and most experienced health care benefit companies in the country.
At Blue Cross and Blue Shield of Nebraska, our story is all about you – the people we’ve been serving since 1939. As a company born and raised in Nebraska, we believe it’s our responsibility to be an active member of the communities where we live and work alongside our customers.
We envision a health care world without confusion that adds more good years to peoples' lives, and we consider it an honor to be there for you when you need us. Thank you for letting us be part of your story.
1939 was the beginning of a long tradition of health care coverage in Nebraska. Blue Cross and Blue Shield of Nebraska is a mid-size Nebraska business whose mission is to lead the way in supporting patient-focused care. We see the future of healthcare as one without confusion that adds more good years to peoples' lives. As a Nebraska-based company, we believe it’s our responsibility to be an active member of the communities in which our customers live and work.
