Information Security Officer – San Juan, PR

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together. 

As an Information Security Officer, you would support information security policies, standards, and procedures to secure and protect data. Work directly with user departments to implement procedures and systems for the protection, conservation, and accountability of proprietary, personal, or privileged electronic data.

Primary Responsibilities: 

• Dedicated security lead for specific lines of business, and consultatively assists the business with customer RFx’s, targeted security assessment, control framework mapping and validation (e.g. System Security Plan (SSP) & International Standards Organization (ISO), contracts, audits, proactive incident response support and related business support
• Subject matter experts/technical consultant on EIS policy and hold first level decision authority when information security delivery does not fully align to EIS policy
• Working experience of various certifications like ISO27001/HITRUST/ISO31000/PCI DSS and regulatory/privacy compliances such GDPR, NIST, NYDFS, etc.
• Liaison with various compliance functions within organization to respond to security incidents.
• Work with technology teams and ensure timely remediation of technical vulnerability
• Management of risks/vulnerabilities/threats proactively
• Drive security awareness program across the organization
• Create executive summaries with compliance status, risk, recommendations & direction regarding remediation efforts
• Communicate with senior leadership, stakeholders/end users

*** ENGLISH PROFICIENCY ASSESSMENT WILL BE REQUIRED AFTER APPLICATION ***

 
You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications: 

• 6+ years of experience in Information Security 
• Business/info risk assessment skills and the ability to manage risk assessments/projects independently
• Experience with industry standards like ISO27K, HITRUST, ISO31000, PCI DSS, SOC1/SOC2
• Experience with regulatory/privacy compliances such GDPR, NYDFS, etc.
• Professional proficiency both with English and Spanish

Preferred Qualifications: 

•  CISSP, CISA, ISO 27001 LA, ISO3100, HITRUST CCSFP

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission.    
 
 
Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law. 
  
UnitedHealth Group is a drug – free workplace. Candidates are required to pass a drug test before beginning employment.