Principal Information Security Engineering - Remote or Hybrid in MN or DC

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together.    

Join our Enterprise Security team at Optum Technology as a Principal Information Security Engineer (US Remote), where you will lead our high-impact multi-CDN and cloud resiliency initiative. In this critical role, you will own the end-to-end security architecture, traffic steering, and edge resilience strategies across Cloudflare and Akamai to protect our internet-facing applications. Our team is responsible for managing enterprise-scale CDN configurations, advanced WAF, DDoS mitigation, and load-balancing environments (including F5 platforms). This is an exciting opportunity to work with cutting-edge edge security technologies, leverage AI-powered design solutions, and ensure the performance, availability, and security of services that touch millions of lives every day.

You'll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges. For all hires in the Minneapolis or Washington, D.C. area, you will be required to work in the office a minimum of four days per week.

Primary Responsibilities:

• Design, develop, and deploy AI-powered solutions and automation tools to address complex business challenges in edge security and network resilience, with a strong emphasis on the responsible use of AI
• Evaluate emerging technology and industry trends, including artificial intelligence and machine learning applications in cybersecurity, to inform solution design and strategic network resilience innovation
• Use enterprise-approved AI tools to streamline workflows, automate edge CDN and DNS configurations, and drive continuous improvement across internet-facing applications
• Own the end-to-end security architecture and operational strategy for enterprise edge security platforms, including Cloudflare and Akamai (covering WAF, DDoS, bot management, TLS, DNS, and edge traffic management)
• Design, operate, and maintain health-based DNS steering and traffic management strategies to support active-active and failover scenarios across multiple CDNs and cloud/on-prem regions
• Establish and enforce enterprise-scale standards for DNS TTLs, health checks, monitoring, and steering logic to optimize failover speed and cache efficiency
• Serve as the principal technical escalation point for major security and availability incidents, including CDN outages, large-scale DDoS attacks, and application-impacting events
• Collaborate with network platform, application security, and security operations center (SOC) teams to implement consistent ingress security controls and standard incident response workflows
• Lead the secure onboarding and migration of critical applications into a resilient, multi-CDN architecture with minimal downtime
• Support regulatory compliance and audit activities (including PCI-DSS, SOC2, and internal risk assessments) as they relate to edge security, traffic management, and DNS

You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications:

• 7+ years of experience in network security, cloud security, or application delivery within a large-scale enterprise environment
• 5+ years of hands-on experience designing and managing Cloudflare and/or Akamai security platforms (including WAF, DDoS mitigation, and DNS-based traffic steering)
• 5+ years of experience working with core network and web protocols (including DNS, HTTP/S, TLS, and TCP/IP) along with troubleshooting real-world routing and edge failure modes
• 3+ years of experience designing, operating, or implementing multi-CDN architectures utilizing health-based DNS steering and traffic management
• 3+ years of experience in security incident response, including managing high-priority (P1) incident resolution, technical troubleshooting, and vendor escalations during major edge or CDN outages
• 3+ years of experience integrating CDN solutions with public cloud platforms (such as AWS, Azure, or GCP) and on-premises infrastructure
• 2+ years of experience using automation and scripting tools (such as Terraform, Ansible, Python, or APIs) to manage large-scale configurations

Preferred Qualifications:

• Bachelor's degree or higher in Computer Science, Information Security, or a related technical field
• Relevant professional certifications in cloud security or networking (e.g., CCSP, CISSP, Cloudflare/Akamai certifications, or cloud provider security credentials)
• Experience with F5 application delivery controllers (LTM, GTM, ASM/WAF) or equivalent load balancing and security technologies
• Experience leveraging AI-powered development tools, code assistants, or APIs to accelerate development, automate network configurations, or optimize security policies
• Experience working within highly regulated environments (e.g., healthcare, finance) with strict compliance frameworks such as PCI-DSS, SOC 2, or HIPAA
• Proven solid technical communication skills, with a proven ability to translate complex architectural and security trade-offs for executive stakeholders and cross-functional teams

*All employees working remotely will be required to adhere to UnitedHealth Group's Telecommuter Policy

Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you'll find a far-reaching choice of benefits and incentives. The salary for this role will range from $112,700 - $193,200 annually based on full-time employment. We comply with all minimum wage laws as applicable.

Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants.

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission.

UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations.

UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.