Senior Information Security Risk Consultant

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together.

Job Description: Cloud Senior Information Security Engineer (Subject Matter Expert) – GL28

Position Overview:

The Cloud Senior Information Security Engineer (Subject Matter Expert) is responsible for architecting, building, supporting, and enhancing the organization’s public cloud security strategy. This role serves as a critical partner between the Enterprise Security Risk Organization (ESRO) and the Enterprise Technology Infrastructure and Platform Services (ETIPS) to ensure robust and effective cloud security measures.

Primary Responsibilities:

• Security Strategy: Collaborate with ESRO and ETIPS to develop and implement a comprehensive public cloud security strategy
• Security Architecture: Design and maintain secure cloud architectures, ensuring compliance with industry standards and best practices
• Risk Management: Identify, assess, and mitigate security risks associated with public cloud environments
• Incident Response: Lead incident response efforts for cloud security breaches, including investigation, containment, and remediation
• Compliance: Ensure compliance with relevant regulations and standards specific to public cloud environments
• Security Monitoring: Implement and manage security monitoring tools to detect and respond to threats in real-time
• Collaboration: Partner with ESRO and ETIPS teams to integrate security measures into cloud services and applications
• Policy Development: Develop and enforce security policies and procedures specific to public cloud environments
• Audit and Assessment: Conduct regular security audits and assessments to ensure the effectiveness of security measures
• Vulnerability Management: Test and identify network and system vulnerabilities, developing strategies to mitigate them
• Documentation: Prepare and document standard operating procedures and protocols for security operations
• Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so

Required Qualifications:

• Experience in conducting security audits and assessments
• Public Cloud Security Experience: Demonstrated experience with public cloud security in AWS, Azure, or both
• Proven experience in cloud security strategy and architecture
• Solid knowledge of risk management and incident response
• Familiarity with compliance regulations and security monitoring tools
• Proven excellent collaboration and communication skills, with experience partnering between security and IT organizations
• Demonstrated ability to conduct training and develop security policies
• Demonstrated ability to build and maintain relationships with business leaders and stakeholders

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission.

#njp