Director of Information Security

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together.

The Director of Information Security is responsible for safeguarding internal information systems, networks, databases, and web-based security. This involves monitoring, evaluating, and maintaining systems and procedures to ensure their integrity. Key responsibilities include conducting vulnerability assessments, monitoring for potential system breaches, and responding to alerts from information security tools. Additionally, this position involve reporting, investigating, and resolving security incidents, as well as recommending and implementing changes to enhance system security and prevent unauthorized access. Researching security trends, new methods, and techniques used in unauthorized data access is also essential to preemptively eliminate the possibility of system breaches. This role may oversee both internal and external systems security, including cloud services, and ensure that customers and users have the appropriate access to the right systems at the right times.

You’ll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges.

Primary Responsibilities:

• Develop and execute the security engineering and operations strategy aligned with organizational goals
• Lead, mentor, and grow a high-performing security team
• Collaborate with senior leadership to integrate security initiatives into business processes
• Design, implement, and maintain technical security controls across the organization
• Ensure the effectiveness and efficiency of security measures through regular assessments and updates
• Oversee the development and implementation of threat detection, monitoring, and incident response strategies
• Lead incident response efforts, including investigation, remediation, and reporting
• Conduct regular risk assessments and vulnerability scans to identify and mitigate security risks
• Develop and maintain Security Engineering & Operations metrics and reporting to senior and executive teams
• Develop and enforce policies and procedures to manage and reduce security vulnerabilities
• Maintain existing Authority to Operate (ATO) certifications and secure new ATOs to support business growth
• Ensure compliance with federal security frameworks (e.g., NIST 800-53/171, FISMA, FedRAMP, CMMC) and other relevant regulations
• Stay updated with the latest security trends, threats, and technologies
• Implement continuous improvement practices to enhance the security posture of the organization

You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications:

• 10+ years of experience in information security
• 5+ years of experience in a leadership role
• 5+ years of experience in managing security engineering and operations teams within a federal contracting environment
• 3+ years of experience in managing Certifications
• If you are offered this position, you will be required to provide extensive personal information to obtain and maintain a suitability or determination of eligibility for a Confidential/Secret or Top Secret security clearance as a condition of your employment
• United States citizenship is required for this position

Preferred Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field
• Certifications such as CISSP, CISM, or equivalent

*All employees working remotely will be required to adhere to UnitedHealth Group’s Telecommuter Policy.

The salary range for this role is $124,500 to $239,400 annually based on full-time employment. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. UnitedHealth Group complies with all minimum wage laws as applicable. In addition to your salary, UnitedHealth Group offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with UnitedHealth Group, you’ll find a far-reaching choice of benefits and incentives.

Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants.

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes – an enterprise priority reflected in our mission.

UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations.

UnitedHealth Group is a drug – free workplace. Candidates are required to pass a drug test before beginning employment.