This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description LMI is seeking an experienced Security Lead to support a key client at the General Services Administration (GSA) in delivering a modern, web-based acquisitions system. This initiative modernizes Governmentwide Indefinite Delivery Vehicle (IDV) contracting through modular, API-driven services deployed in federal cloud environments. The Security Lead will serve as the senior authority responsible for defining and enforcing the program’s security and compliance approach in alignment with GSA requirements. This individual must possess a comprehensive understanding of the Authorization to Operate (ATO) process for cloud applications and collaborate closely with the client’s Information Technology Security Officers (ITSOs) to ensure the development team adheres to approved security controls and compliance standards. The ideal candidate combines deep federal security expertise, hands-on cloud security experience in AWS, and the ability to integrate DevSecOps practices into modern Agile software delivery. This position is anticipated to be majority remote, but with the ability to travel and visit the client’s offices in Washington, D.C. as frequently as needed. Responsibilities - Security Strategy & Governance - Serve as the primary authority for system security architecture and compliance - Collaborate directly with GSA security personnel to define and implement security and compliance controls for cloud-based applications - Ensure development teams adhere to approved security architecture and control implementations - Establish and maintain security documentation, policies, and procedures aligned with federal standards - Ensure compliance with FISMA and agency-specific security policies governing federal information systems - ATO & Federal Compliance - Lead the system through the full Authorization to Operate (ATO) lifecycle for applications - Develop and maintain System Security Plans (SSPs), security control documentation, and supporting artifacts - Manage Plans of Action and Milestones (POA&Ms) and track remediation activities - Support security control assessments and coordinate responses to findings - Align controls with guidance from the National Institute of Standards and Technology (NIST), FedRAMP requirements, and Trusted Internet Connections (TIC)/cloud security guidance - DevSecOps & CI/CD Integration - Embed automated security controls into CI/CD pipelines to enable secure, continuous delivery - Ensure static and dynamic code analysis, dependency scanning, container security, and infrastructure-as-code validation are integrated into build and deployment processes - Promote secure coding practices and continuous monitoring across development teams - Cloud Security (AWS) - Lead security architecture for applications and infrastructure deployed within AWS cloud environments - Configure and manage native AWS security services (e.g., IAM, Security Hub, GuardDuty) - Enforce least privilege access controls and secure identity and access management practices - Monitor cloud environments for threats, misconfigurations, and vulnerabilities - Risk Management & Audit Readiness - Conduct security risk assessments and oversee vulnerability scanning and penetration testing activities - Manage security incident response coordination and reporting - Maintain continuous monitoring practices and ensure audit readiness for all system components - Support ongoing authorization and continuous ATO practices through automated control monitoring and real-time risk visibility - Track, report, and mitigate identified risks throughout the system lifecycle - Team & Stakeholder Collaboration - Mentor development teams on security requirements and secure coding standards - Partner closely with team’s leadership to align security with system architecture and delivery timelines - Communicate security risks, compliance status, and remediation strategies clearly to both technical and non-technical stakeholders Qualifications - Demonstrated experience serving as a Security Lead (or equivalent role) on federal IT programs - Extensive hands-on experience implementing federal security architectures aligned with NIST guidance, FedRAMP, and TIC/cloud security requirements - Proven track record leading systems through the full ATO lifecycle, including SSP development and POA&M management - Deep understanding of integrating security controls into CI/CD pipelines consistent with DevSecOps principles - Expert-level knowledge securing applications and infrastructure in AWS cloud environments - Experience conducting risk assessments, vulnerability management, and maintaining audit readiness - Strong written and verbal communication skills Desired Qualifications - Experience supporting GSA or other federal cloud modernization initiatives - Relevant certifications (e.g., CISSP, CCSP, AWS Security Specialty, Security+) - Experience supporting systems at moderate or high impact levels under federal security frameworks - Familiarity with continuous monitoring tools and automated compliance validation solutions Salary Information The target salary range for this position is $135,000-$225,000. The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.

Public Trust Eligibility Required About Aretum Aretum is a mission-driven organization committed to delivering innovative, technology-enabled solutions to our customers across defense, civilian, and homeland security sectors. Our teams work at the intersection of strategy, technology, and transformation, helping agencies solve their most critical challenges. We believe in investing in our people and creating a culture where collaboration, inclusion, and professional growth are at the forefront. Job Summary Aretum is seeking a motivated and skilled Senior Security Controls Assessor. As a Senior Security Controls Assessor, you will be responsible for conducting comprehensive security assessments of information systems to ensure compliance with applicable security controls and regulations. Due to the nature of our work as a federal consulting organization, employees may be expected to handle Controlled Unclassified Information (CUI) and must adhere to applicable safeguarding and compliance requirements. Responsibilities - Independently perform all aspects of the security controls assessment in alignment with NIST 800-53 Revision 5 - Ensure comprehensive understanding and application of ATO documentation requirements - Coordinate all aspects of testing with relevant stakeholders and team lead - Develop a security assessment plan with input from stakeholders - Conduct and lead assessment interviews and tests while managing evidence - Provide insightful recommendations to improve security posture

Position - Contract - Remote (Austin-TX) - State Government Project Must Provide 3 References Required - 8+ years of proven experience in security architecture, demonstrating solutions delivery, security principles, and emerging technologies - 8+ years of experience designing, implementing, and continuously improving enterprise security solutions - 8+ years of experience designing and implementing security measures to protect data in public cloud environments, including secure authentication, encryption, access control lists, intrusion detection systems, and firewalls - 8+ years of experience working with multi-cloud security architectures covering infrastructure, cloud-based applications, and information security tools - 8+ years of experience consulting and engineering security best practices aligned with business, customer, and regulatory requirements - 8+ years of experience addressing cloud security risks including data breaches, broken authentication, account hijacking, malicious insiders, APTs, data loss, and DoS attacks - 8+ years of experience performing threat analysis, security risk assessments, and designing mitigation strategies - 8+ years of experience working with NIST standards and ISO 27001 frameworks - 8+ years of hands-on experience with Splunk, including creating alerts, dashboards, and executive-level reports - 8+ years of experience designing and developing enterprise security architectures aligned with strategic technology initiatives - 8+ years of experience resolving complex security issues in decentralized environments and effectively communicating security concepts - 8+ years of experience conducting forensic investigations on cyber incidents - 8+ years of experience creating, reviewing, and updating security policies for public, private, and hybrid cloud environments Preferred - 3+ years of experience holding or working toward certifications such as GSEC, CEH, CISA, CCSP - 3+ years of experience with cloud certifications such as AWS Solutions Architect, Cloud Security certifications, OpenStack Administrator, or other cloud-related certifications - 3+ years of experience with Endpoint Detection and Response (EDR) tools such as CrowdStrike, EndGame, or Cybereason - 3+ years of experience with Email Threat Management solutions such as Proofpoint, Mimecast, or Microsoft Defender - 3+ years of experience with SIEM engineering/design and management tools such as Splunk, Rapid7, or Sumo Logic - 3+ years of experience with Data Loss Prevention (DLP) and Cloud Access Security Broker (CASB) tools such as Symantec, Microsoft, Bitglass, or Netskope - 3+ years of experience with Cloud Enterprise Network Security tools such as Cisco Umbrella, Palo Alto, or Zscaler. If this opportunity aligns with your background and career goals, please respond with your updated resume and contact details to sivarajan.s@zirlen.com. You may also feel free to reach out at 972-433-6033, Ext. 1005. This is a remote position.

At UnitedHealthcare, we’re simplifying the health care experience, creating healthier communities and removing barriers to quality care. The work you do here impacts the lives of millions of people for the better. Come build the health care system of tomorrow, making it more responsive, affordable and equitable. Ready to make a difference? Join us to start Caring. Connecting. Growing together. The Senior Investigator Pharmacy is responsible for identification, investigation and prevention of healthcare fraud, waste and abuse. The Senior Investigator will utilize claims data, applicable guidelines and other sources of information to identify aberrant billing practices and patterns. The Senior Investigator is responsible for conducting investigations which may include fieldwork to perform interviews and obtain records and/or other relevant documentation. Travel: Up to 50%25. Applicants must be within commutable distance to Los Angeles County. If you reside in Los Angeles, CA, you’ll enjoy the flexibility to telecommute* as you take on some tough challenges. Primary Responsibilities: - Assess complaints of alleged misconduct received within the Company - Investigate medium to highly complex cases of fraud, waste and abuse - Detect fraudulent activity by members, providers, employees and other parties against the Company - Develop and deploy the most effective and efficient investigative strategy for each investigation - Maintain accurate, current and thorough case information in the Special Investigations Unit’s (SIU’s) case tracking system - Collect and secure documentation or evidence and prepare summaries of the findings - Participate in settlement negotiations and/or produce investigative materials in support of the latter - Communicate effectively, including written and verbal forms of communication - Develop goals and objectives, track progress and adapt to changing priorities - Collect, collate, analyze and interpret data relating to fraud, waste and abuse referrals - Ensure compliance of applicable federal/state regulations or contractual obligations - Report suspected fraud, waste and abuse to appropriate federal or state government regulators - Comply with goals, policies, procedures and strategic plans as delegated by SIU leadership - Collaborate with state/federal partners, at the discretion of SIU leadership, to include attendance at workgroups or regulatory meetings What are the reasons to consider working for UnitedHealth Group? Put it all together – competitive base pay, a full and comprehensive benefit program, performance rewards, and a management team who demonstrates their commitment to your success. Some of our offerings include: - Paid Time Off which you start to accrue with your first pay period plus 8 Paid Holidays - Medical Plan options along with participation in a Health Spending Account or a Health Saving account - Dental, Vision, Life& AD&D Insurance along with Short-term disability and Long-Term Disability coverage - 401(k) Savings Plan, Employee Stock Purchase Plan - Education Reimbursement - Employee Discounts - Employee Assistance Program - Employee Referral Bonus Program - Voluntary Benefits (pet insurance, legal insurance, LTC Insurance, etc.) You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear directions on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: - Bachelor’s Degree OR Associate’s Degree with 2+ years of equivalent work experience with healthcare related employment - 2+ years of experience in healthcare, fraud, waste and abuse (FWA) - 2+ years of experience in state or federal regulatory FWA requirements - 2+ years of experience in analyzing data to identify fraud, waste and abuse trends - Intermediate level of proficiency with Microsoft Excel and Word - Intermediate level of knowledge in pharmacy claims processing - Ability to participate in legal proceedings, arbitration, and depositions at the direction of management - Reside within the greater Los Angeles County, CA with the ability to travel up to 50%25 - Access to reliable transportation and valid driver’s license Preferred Qualifications: - 2+ years of experience in health care policies, procedures, and documentation standards - 2+ years of experience in developing investigative strategies - Specialized knowledge/training in healthcare FWA investigations - Active affiliations: - National Health Care Anti-Fraud Association (NHCAA) - Accredited Health Care Fraud Investigator (AHFI) - Certified Fraud Examiner (CFE) - License and/or Certified Pharmacy Technician (CPhT) - Operational experience with a pharmacy and/or pharmacy benefits manager (PBM) *All Telecommuters will be required to adhere to UnitedHealth Group’s Telecommuter Policy. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you’ll find a far-reaching choice of benefits and incentives. The salary for this role will range from $60,200 to $107,400 annually based on full-time employment. We comply with all minimum wage laws as applicable. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location, and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups, and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission. UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment. #RPO #RED