Cloud Security Architect – Remote

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together.

 

We are seeking a highly skilled Cloud Security Architect to lead our security architecture initiatives for cloud services at Optum Serve. This role involves designing, developing, and managing secure cloud solutions, ensuring compliance with DoD IL4 and FedRAMP Moderate and High requirements. The ideal candidate will have extensive experience with Zero Trust, DevSecOps, Agile frameworks, and multiple cloud platforms (Azure, AWS, GCP, and hybrid cloud). 

 

You’ll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges. 

 

Primary Responsibilities:

• Design and implement secure cloud architectures for healthcare services
• Implemented system hardening standards, including DoD STIG, DoD SRG, and CIS benchmarks to enhance security and compliance across enterprise systems
• Experience with security tooling in support of Vulnerability LIfecycle Management (Tenable / Prisma) Infrastructure as code, SAST / DAST scanning, Cloud Security, ITSM, DLP/DRM capabilities (Symantec / Veronis)
• Collaborate with cross-functional teams to design and implement identity management solutions that align with NIST 800-63 guidelines, enhancing user experience and security
• Implemented and managed security solutions in alignment with the DoD Zero Trust Reference Architecture, enhancing the organization’s cybersecurity posture by ensuring continuous verification of user identities, devices, and network access
• Ensure compliance with contractual requirements such as DoD IL4 and FedRAMP Moderate and High standards
• Lead the integration of Zero Trust, DevSecOps, and Agile frameworks into cloud environments
• Conduct regular security assessments, audits, and risk management activities
• Develop and maintain security policies, procedures, and documentation
• Collaborate with IT and cybersecurity teams to integrate security measures
• Support security incidents activities and contribute to post-incident analysis
• Provide training and guidance on cloud security best practices
• Manage and oversee the process of achieving customer ATOs and placing products in the FedRAMP marketplace
• Participate in Change Control Boards, Security Impact Analysis, audit support, Significant Change Request development, implementation, and testing
• Align and balance system functionality with compliance and business requirements
• Adapt to upcoming compliance governance changes (e.g., FedRAMP Rev5) and business requirements
• Contribute to key compliance activities, including audit support, Change Control Board meetings, and on-time delivery of monthly reporting as required by FedRAMP
• Provide ongoing support for documentation activities, critical meetings with the Agency and PMO in the FedRAMP authorization process, and consultation of significant changes that impact strategy and timelines
• Focus on infrastructure management, ensuring uptime and availability, aligning and executing against patch management windows, and ensuring continued configuration compliance
• Support the process of achieving customer ATOs and placing products in the FedRAMP marketplace
• Support DevSecOps activities such as Change Control Boards, Security Impact Analysis, audit support, Significant Change Request development, security tooling and tuning, TVM efforts, and business roadmap initiatives
• Ability to manage competing priorities in a complex and dynamic environment

 

You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications:        

• 7+ years of experience in cloud security architecture
• 5+ Years of successful customer ATOs and FedRAMP marketplace products
• 5+ Years experience in Zero Trust, DevSecOps, and Agile frameworks
• 5+ Years experience with Azure, AWS, and hybrid cloud environments
• Solid knowledge of DoD IL4 and FedRAMP Moderate and High compliance requirements
• Completed one or more certifications, including CCSP, CISSP, Azure Security Engineer, AWS Certified Security or CISM demonstrating a strong commitment to professional development and expertise in cybersecurity, along with compliance with DoD training standards
• United States citizenship is required for this position
• Must be able to obtain and maintain a suitability or determination of eligibility for a Confidential/Secret or Top-Secret security clearance

 

Preferred Qualifications:        

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field or minimum of 7 years of experience in cloud security architecture
• Achieved multiple industry-recognized certifications, including, CISSO, CPTE, CySA+, FITSP-A, GCSA, CISA, CISSP-ISSEP, GSLC, and GSN
• 5+ years of experience supporting DoD or federal environments
• 2+ years of experience in the healthcare sector

 

*All employees working remotely will be required to adhere to UnitedHealth Group’s Telecommuter Policy

 

California, Colorado, Connecticut, Hawaii, Maryland, Nevada, New Jersey, New York, Rhode Island, Washington, or Washington, D.C. Residents Only: The salary range for this role is $104,700 to $190,400 annually. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. UnitedHealth Group complies with al minimum wage laws as applicable. In addition to your salary, UnitedHealth Group offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with UnitedHealth Group, you’ll find a far-reaching choice of benefits and incentives.

 

Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants.

 

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission. 

 

 

Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

 

UnitedHealth Group is a drug – free workplace. Candidates are required to pass a drug test before beginning employment.

#LetsGrow