Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start
Caring. Connecting. Growing together.
This position is responsible for leading all IT risk assessment and security consulting activities to assess the design, effectiveness and efficiency of the IT controls and compliance with laws and regulations.
This position is responsible for conducting third-party risk assessment and security consulting activities to assess the design, effectiveness and efficiency of the IT controls and compliance with laws and regulations.
You’ll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges.
Primary Responsibilities
- Complete security risk assessments for third parties, ensuring thorough evaluation and mitigation of potential risks
- Lead calls with third parties to understand the scope of services and perform detailed risk assessments based on gathered information
- Evaluate third-party certifications such as HITRUST, ISO 27001, and SOC 2 Type II to ensure compliance and security standards are met
- Interact with senior-level leadership, effectively communicating technical elements both orally and in writing
- Prioritize tasks and manage a large volume of assessments, ensuring timely and accurate completion of all responsibilities
- Demonstrate a solid understanding of IT security controls and associated risks, applying this knowledge to all assessments and recommendations
- Make informed decisions and work collaboratively in a team environment to achieve security objectives
- Develop solid relationships with key business stakeholders to facilitate effective communication and collaboration on security matters
- Monitor and implement new regulatory and IT security guidelines in coordination with relevant parties to ensure compliance and enhance security posture
- Review work performed by others, provide recommendations for improvement, and ensure resources are allocated to meet project deadlines
- Participate in special projects undertaken by the department and/or the company, contributing security expertise and insights
You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.
Required Qualifications
- Bachelor's degree in Information Technology or related field
- 3+ years of relevant business experience, including internal audit or IT experience
- Demonstrated understanding of security and risk concepts and principles and how to apply them
- Proven solid interpersonal skills while working effectively with a team
- Proven solid oral and written communication skills
- Ability to make a positive impact along with the ability to manage multiple tasks and shift priorities
Preferred Qualifications
- Relevant IT certification(s) (e.g. CISSP, CISA, CISM, CIPT, CSFP, ISA, CIA, etc.)
- 2+ years of experience in health insurance systems
- 2+ years of experience working in a complex IT environment
- 2+ years of experience working in third party risk management
- 2+ years of experience with security exhibits and contract negotiations
- NIST, ISO, PCI, HIPPA, HITRUST, SSAE18, SOX 404 experience
- All employees working remotely will be required to adhere to UnitedHealth Group’s Telecommuter Policy
California, Colorado, Connecticut, Hawaii, Maryland, Nevada, New Jersey, New York, Rhode Island, Washington, or Washington, D.C. Residents Only: The salary range for this role is $70,200 to $137,800 annually. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. UnitedHealth Group complies with al minimum wage laws as applicable. In addition to your salary, UnitedHealth Group offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with UnitedHealth Group, you’ll find a far-reaching choice of benefits and incentives.
Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants.
At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission.
Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.
UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment.