Position Description:Energize your career with one of Healthcare's fastest growing companies. You dream of a great career with a great company – where you can make an impact and help people. We dream of giving you the opportunity to do just this. And with the incredible growth of our business, it's a dream that definitely can come true. Already one of the world's leading Healthcare companies, UnitedHealth Group is restlessly pursuing new ways to operate our service centers, improve our service levels and help people lead healthier lives. We live for the opportunity to make a difference and right now, we are living it up. This opportunity is with one of our most exciting business areas: Optum –a growing part of our family of companies that make UnitedHealth Group a Fortune 17 leader. Optum helps nearly 60 million Americans live their lives to the fullest by educating them about their symptoms, conditions and treatments; helping them to navigate the system, finance their healthcare needs and stay on track with their health goals. No other business touches so many lives in such a positive way. And we do it all with every action focused on our shared values of Integrity, Compassion, Relationships, Innovation & Performance.UnitedHealth Group is a company that's on the rise. We're expanding in multiple directions, across borders and, most of all, in the way we think. Here, innovation isn't about another gadget, it's about transforming the health care industry. Ready to make a difference? Make yourself at home with us and start doing your life's best work.The Senior Security Compliance Analyst will lead assessing and monitoring the IT organization's compliance with applicable IT policies, standards, framework, industry best practices and guidelines, and applicable laws and regulations. This role will also help coordinate and maintain the organization's information security program, and assist IT management and staff in implementing IT policy objectives in ways that comply with policy and align with business objectives and strategy. Primary Responsibilities:Lead and facilitate IT security and compliance controls assessment, testing and documenting IT security control and compliance requirements (e.g., HITRUST, HIPAA, PCI, FISMA/NIST, etc.) and across SOX domains (e.g., logical access, change management, IT operations, and application development)Considers legislative mandates relating to information security and general computer controls are met throughout the CompanyAssists in the execution of information security control reviews to evaluate IT processes compliance with published policies and standardsPrepares summaries and reports findings as neededReviews assessment and test results with appropriate management and provides recommendationsMonitors corrective action plans and compliance metric reportingActs as an expert liaison between both internal and external stakeholders on key IT security control and IT compliance issuesRepresents the Company's interests on control design and compliance/testing results with external auditors, Internal Audit, other compliance areas, and with both IT and end-user process ownersParticipates in information security policy development in collaboration with business partners and managementLeads IT security controls assessments of vendorsProvides training, instruction and guidance to IT workforce members and junior staff membersContribute to ensure that the tools used by the team are properly deployed, configured and maintainedMonitor security regulations and standards applicable to the Company to identify information security risk and mitigation efforts; provide insight to ensure compliance with security related regulatory requirements (HITRUST, HIPAA, FISMA/NIST, PCI, SOX, etc.)Provide assistance to other security teams when requested or may perform other duties in special projects as assignedLead in providing guidance during new system design or existing system redesigns to foster awareness of and compliance to appropriate IT and security policy and standards
Required Qualifications:Bachelor's Degree (or higher) in Computer Science, or in a computer-related field of study OR High School Diploma/GED with 10+ years of experience in IT security compliance and / or IT audit in lieu of degree4+ years of experience in IT security compliance and / or IT auditAvailable to travel approximately 10% of the timePreferred Qualifications:Professional certifications: CISM, CISSP, CRISC, and/or CISABig 4 experienceSoft Skills:Able to work independently as well as on a team in a fast-paced, deadline-driven environmentStrong attention to detailExcellent written and verbal communication skillsOptumRx is an empowering place for people with the flexibility to help create change. Innovation is part of the job description. And passion for improving the lives of our customers is a motivating factor in everything we do. If you're ready to talk about groundbreaking interactions, let's talk about what happens when a firm that touches millions of lives decides to gather results from millions of prescriptions every month and analyze their impact. Let's talk about smart, motivated teams. Let's talk about more effective and affordable healthcare solutions. This is caring. This is great chemistry. This is the way to make a difference. We're doing all this, and more, through a greater dedication to our shared values of integrity, compassion, relationships, innovation and performance. Join us and start doing your life's best work.SMDiversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.Keywords: UnitedHealth Group, Senior IT Security Consultant, IT Compliance, IT Security, IT Audit, Security Risk Assessments
Our mission is to help people live healthier lives and to help make the health system work better for everyone.- We seek to enhance the performance of the health system and improve the overall health and well-being of the people we serve and their communities. - We work with health care professionals and other key partners to expand access to quality health care so people get the care they need... at an affordable price. - We support the physician/patient relationship and empower people with the information, guidance and tools they need to make personal health choices and decisions.