Full-Time Cybersecurity Manager
UnitedHealthcare is hiring a remote Full-Time Cybersecurity Manager. The career level for this job opening is Manager and is accepting USA based applicants remotely. Read complete job description before applying.
UnitedHealthcare
Job Title
Posted
Career Level
Career Level
Locations Accepted
Salary
Share
Job Details
Primary Responsibilities:
This role has high expectations for operational excellence. Hours may vary based on location, contract, and business needs. This list of essential functions is not exhaustive and may be supplemented and changed as necessary.
- Ensure continual compliance with prevailing DoD CIO, DISA, U.S. Cyber Command, and MC&FP policies, guidance, and mandates. These requirements, while continually evolving, include, but are not limited to, the references found in the frequently updated DoD "Cybersecurity and Information Systems Information Analysis Center (CSIAC)" chart
- Continually comply with DISA Information Assurance Vulnerability Management (IAVM) programmatic mandates; DISA STIGs; DISA SRGs; DoD Port, Protocol, and Service Management (PPSM) guidance; and IT/Cyber directives and mandates from the DoD CIO, U.S. Cyber Command, DISA, and MC&FP
- Maintain compliance with Optum Serve and Federal, State, and Local regulatory, contractual, and organizational guidelines including HIPAA as outlined in training and policies/procedures, quality assurance and improvement processes
- Identify, document, and escalate external issues / high risk situations, as indicated under the direction of leadership, to ensure visibility and present courses of action for remediation
- Develop, maintain, and provide the Government with database architecture, administration, and engineering guides/SOPs, data flow documentation, data models, manuals, and (Microsoft Visio based) diagrams
- Ensure that all data collection and storage systems are DISA STIG and SRG compliant, with documented access controls, comprehensive intrusion detection and prevention, and malware protection
- Manage application and/or system-level findings, deficiencies, and/or weaknesses, using the Governments MC&FP's Tasking, Assignments, and Reporting (TAR) platform and abide by the reporting requirements as notated in the performance work statement
- Understand and adhere to the Enterprise Architecture (EA) governance framework (e.g., principles, policies, standards, reference architectures, data-driven designs)
- Based on customer, contract requirements and best practices in the security field craft recommended security architecture, processes, technologies, and controls to meet requirements, protect our company assets and customer information with an eye to the future
- Assist with remediation planning and ensure identified gaps have been appropriately managed in order to achieve compliance
- Perform technical testing of controls for assurance and validation of IT compliance
- Recommends improvements in the current risk management process; assist in the development of internal processes for streamlining risk analysis techniques
- Upon realization of actual risk or breach Architect will become active part of remediation, and investigation team
- Participate in IT engagements e.g., involved in gathering information to new development to determine associated risks, act as a resource to others
- Required to obtain and retain official accreditation of the online resources by full compliance of DIARMF
- Work diligently with multiple internal and external customers to solve challenges in a timely and efficient manner
- Lead trainings, evaluations, and meetings for the contractors to promote continuous performance improvement
- Provide quality checks on data tracking system and operational security
- Alert individuals and leadership on deficiencies
- Prepare procedural documents, job aids, and reports in support of the Program as assigned
- Prepare cost estimates for event support contractors and review cost to ensuring fiscal responsibility
- Manage a team of security engineers who would be responsible for securing and maintaining security posture of the environment
- Mental Demands: Reading, writing, attention to detail, confidentiality, problem-solving, ad hoc decision-making skills, math skills, reasoning skills, oral communication, written communication, customer contact, multiple concurrent tasks, stress management skills, interpersonal skills
- Physical Demands: Bending, crouching, kneeling, squatting, lifting/carrying up to 50 lbs., handling (holding, grasping, turning, or otherwise working with the hand or hands), fingering (picking, pinching, fine manipulation), sitting, standing for long periods of time, and walking. Seeing and hearing alarms and settings during and after business hours and responding according to training and procedures. Setting and resetting devices with small knobs and handles
You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.
Required Qualifications:
- Bachelor's degree in Business, Management, or other field related to work under this requirement or equivalent experience
- This position is subject to MC&FP's IT/Cyber certification, training, and knowledge mandates that are enforced by DoDD 8140.01, "Cyberspace Workforce Management." As a result, and in accordance with MC&FP ITOD number 23-IA-002 (CUI), the Cybersecurity Manager must possess one or more of the following active certifications at the time of proposal:
- CompTIA Advanced Security Practitioner (CASP+ CE)
- Cisco Certified Network Professional (Security-focus) (CCNP Security)
- Certified Information Systems Auditor (CISA)
- Certified Information Systems Manager (CISM)
- Certified Information Systems Security Professional (CISSP)
- GIAC Certified Enterprise Defender (GCED)
- GIAC Certified Incident Handler (GCIH)
- GIAC Security Leadership Certification (GSLC)
- Certified Cloud Security Professional (CCSP)
- Certified Chief Information Security Officer (CCISO)
- 10+ years of experience managing IT and cybersecurity programs and projects of similar scope and complexity that directly support the DoD military community, including 5+ years management experience
- Proficient in Microsoft Office programs
- Demonstrated leadership skills with the ability to prioritize, coordinate and delegate effectively
- Demonstrated ability to lead the activities of others as well as manage and monitor performance
- Speak fluent English
- United States Citizenship
- Ability to obtain favorable adjudication following submission of Department of Defense eQuip Form SF86
Preferred Qualifications:
- Experience working in a Federal contracting environment
- Basic knowledge of Federal Acquisition Regulations (FAR)
- Possess solid customer service skills and knowledge and understanding of the military lifestyle
Soft Skills:
- Excellent verbal and written communication skills with exceptional attention to details; ability to communicate and coordinate effectively to internal and external customers on all levels
- Organize workload, set priorities, complete assignments in a timely manner and utilizes resources appropriately while complying with organizational standards
- Dedicated to building rapport with team members, internal and external customers, and management team by demonstrating a strong customer service orientation and a continuous positive image of Optum Serve
- Solid organizational and time management skills in a goal-oriented, fast-paced environment
- Excellent critical thinking, problem solving, verbal and written communication skills
- Ability to influence and negotiate through use of verbal, written and interpersonal means with a diverse group of people/disciplines at all levels of an organization
- Ability to implement and execute new initiatives as well as deliver results
- Ability to work independently as well as provide team leadership and management in a diverse and demanding operational environment
- Ability to thrive in ambiguous situations
- Self-starter with strong problem-solving drive and efficient work habits along with flexibility and adaptability to changing situations
- Confident in handling sensitive and confidential information
- Possess the ability and flexibility to work to meet deadlines and client expectations