Senior Information Security Engineer - Remote

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together.

The Senior Information Security Engineer will address all government and client security inquiries related to security and compliance. This position entails coordinating, developing, updating, and maintaining security documentation for CMMC Level 2 Certification, including the ATO package (SSP, CP, CMP, IRP, POAM, etc.) and its annual updates. The role also involves managing and reporting system risks and vulnerabilities, coordinating third-party audits, and overseeing annual penetration tests. Positions in this function are involved in monitoring, evaluating, and maintaining systems and procedures to safeguard internal information systems, networks, databases, and Web-based security. Conduct vulnerability assessments and monitor systems, network, databases and Web for potential system breaches. Respond to alerts from information security tools. Report, investigate, and resolve security incidents. Recommend and implement changes to enhance systems security and prevent unauthorized access. Research security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach. May oversee internal or external systems security (i.e., cloud services). Ensure that customers and users have the right access to the right systems at the right times.

You'll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges.

Primary Responsibilities:

• Use cloud computing models, management of cloud-based environments, and cloud providers
• Work with security architecture, operating systems, databases, networks, applications, and security tools
• Utilize the following regulatory frameworks such as NIST 800-53, NIST 800-171, CMMC, FedRAMP and DoD Risk Management Framework (RMF)
• Work with security control compliance/implementation with Security Technical Implementation Guides (STIGs) and the Authorization To Operate (ATO) process to include Plan of Action and Milestones (POAM) management

You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications:

• 7+ years of information security experience
• 3+ years of experience working with the Department of Defense (DoD) for Assessment and Authorization (A&A) and Independent Verification & Validation (IV&V)
• United States citizenship is required for this position
• Must be able to obtain and maintain a suitability or determination of eligibility for a Confidential/Secret or Top-Secret security clearance

Preferred Qualifications:

• Bachelor's degree in information security, Cybersecurity, Computer Science, or equivalent
• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Manager (CISM)

*All employees working remotely will be required to adhere to UnitedHealth Group's Telecommuter Policy

The salary range for this role is $89,800 to $176,700 annually based on full-time employment. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. UnitedHealth Group complies with al minimum wage laws as applicable. In addition to your salary, UnitedHealth Group offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with UnitedHealth Group, you'll find a far-reaching choice of benefits and incentives.

Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants.

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission.

UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations.

UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment.