Information Security Engineering Analyst

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together.

Primary Responsibilities:

• Conduct Dynamic Application Security Testing (DAST) on web and mobile applications
• Develop and maintain Python scripts to automate security testing, integrate tools into CI/CD pipelines, and process scan results
• Collaborate with development teams to understand application architecture and provide secure coding guidance
• Analyze DAST findings, validate vulnerabilities, and work with developers to remediate issues
• Integrate DAST tools into CI/CD environments (e.g., Jenkins, GitLab CI, Azure DevOps)
• Contribute to the development of internal security tools and frameworks
• Stay up to date with the latest security threats, tools, and best practices
• Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regard to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so

Required Qualifications:

• 3+ years of experience in application security or software development
• Experience with DAST tools and interpreting scan results
• Proficiency in Python for scripting, automation, and tool integration
• Solid understanding of web technologies (HTML, JavaScript, REST APIs) and common vulnerabilities (e.g., OWASP Top 10)
• Familiarity with CI/CD pipelines and DevSecOps practices

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone – of every race, gender, sexuality, age, location and income – deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes – an enterprise priority reflected in our mission.

#SStech