Information security

Primary Responsibilities :

• Serve as a Segment Information Security Officer for the Optum Health businesses in your region


• Ensure compliance with industry, regulatory and contractual security requirements of all products, customers, and jurisdictions


• Provides analysis of and suggested solutions to complex Cyber Security issues, as well as complex conceptual analysis, building and maintaining of key security and contract metrics


• Lead programs that will minimize risk and ensure the integrity, confidentiality and availability of information that is owned, controlled, and processed within the organization


• Collaborates with leadership to initiate, facilitate, and promote activities to foster information security awareness within the organization


• Lead a multi-organizational security team to foster growth and continued maturation of various security programs in the organization


• Provides expertise / analysis for the management / implementation of budgets, forecasts, and resource planning strategies in support of the client engagement


• Provides direction and collaboration with other senior leadership, directors, managers, and stakeholders in the mitigation of risks within the IT Security infrastructure, Business Unit Solution as well the overall organization


• Creates a culture of physical and information security within the organization and driving behavioral changes for the business.

Oversees, develops and / or delivers initial and ongoing security training to the workforce. Initiates, facilitates, and promotes activities to foster information security awareness within the organization and related entities

• Evaluates security trends, evolving threats, risks and vulnerabilities and applies tools to evaluate the risk in the context of the organization and to mitigate risk


• Ensure that the risk management and access control needs of the organization are addressed


• Build relationships with the technology teams from the organizations in your purview.


• Evaluate risk and communicate that risk back to their technology leaders in the business to help them make educated decisions


• Review policy exceptions


• Support cybersecurity incidents as they arise


• Act an escalation point for Optum teams when standard communication processes fail


• Partner with Optum Technology teams to implement new controls and improve security posture

You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualification :

• Undergraduate degree or equivalent experience


• 7+ years of experience in Information Security



• Experience identifying business needs and priorities into applicable IT solutions and / or strategies


• Solid expertise in cloud security, platforms, and services, including understanding of current security offerings from leading cloud services providers, and their applicability to securing a SaaS for enterprise security requirements


• Ability to partner with Physicians and Clinicians related to security and risk management within a clinical setting


• Ability to lead a remote team with regional resources


• Full COVID-19 vaccination is an essential job function of this role. Candidates located in states that mandate COVID-19 booster doses must also comply with those state requirements.

UnitedHealth Group will adhere to all federal, state and local regulations as well as all client requirements and will obtain necessary proof of vaccination, and boosters when applicable, prior to employment to ensure compliance.

Candidates must be able to perform all essential job functions with or without reasonable accommodation

Preferred Qualifications :

• Bachelor's degree in Computer Science, Business, related field or equivalent experience


• Certified Information Security Manager (CISM)


• Offensive Security Certified Professional (OSCP)


• Certified Information Systems Security Professional (CISSP)


• Healthcare Industry experience


• Solid management presence with ability to influence local and remote personnel at varying levels (including executive)


• Solid communicator with demonstrated collaboration, analytical, and problem-solving skills to achieve business goals, while balancing security and technology objectives


• Highest ethical standards and sense of propriety combined with a solid service orientation and mindset



Last updated : 2022-09-29