UnitedHealth Group is a healthcare and well-being company that’s dedicated to improving the health outcomes of millions around the world. We are comprised of
Principal Data Security Engineer
Location
Minnesota + 1 moreAll locations: Minnesota | District Of Columbia
Posted
47 days ago
Salary
$112.7K - $193.2K / year
Seniority
Senior
Job Description
Principal Data Security Engineer
UnitedHealth Group
Title: Principal Data Security Engineer Primary location: Nashville, TN; Remote USA Overtime status: Exempt Travel: No Job Description: Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. The Principal Data Security Engineer will lead the design, deployment, integration, and operationalization of the Cloud Data Security Posture Management Platform across our partner Cloud Service Providers. The Principal Cloud Data Security Engineer will have very solid interpersonal skills, be a self-starter, and have a desire to maintain enterprise-wide visibility to initiatives related to cloud-based technologies and services. The Cloud Security Engineer is an individual contributor role with deep expertise in Cloud Security and Cloud Engineering best practices. You'll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges. For all hires in the Minneapolis or Washington, D.C. area, you will be required to work in the office a minimum of four days per week. Primary Responsibilities: - Lead the design, deployment and integration of the DSPM and DLP tools in a Cloud environment - Design, implement and manage security controls to safeguard cloud infrastructure and data - Conduct security assessments and audits to ensure compliance with federal regulations and standards (e.g. FedRAMP, NIST) - Collaborate with cross functional teams to identify security requirements and develop solutions - Develop and maintain security documentation including policies and procedures - Stay current with emerging security threats and technologies, providing recommendations for continuous improvement - Mentor and provide guidance to junior security engineers and other team members You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: - 5+ years of designing data security posture management programs for cloud storage and databases - 3+ years of experience with AWS Cloud, Azure Gov or other cloud environments - 3+ years of experience in scripting and automation focused on cloud-based deployments utilizing languages/frameworks such as Python, Terraform, Cloudformation, etc. - 3+ years of experience with container security and orchestration tools (Docker, Kubernetes, etc.) - 3+ years of experience working with a wide array of operating systems (e.g. Linux, Windows, Ubuntu, etc.) - 3+ years of experience with cloud databases (e.g. SQL, NoSQL, Dyanomo, etc.) Preferred Qualifications: - Relevant security certifications - CISSP or equivalent - Experience with DevSecOps practices and integrating security into CI/CD pipelines - Knowledge of advanced threat detection and response techniques - Familiarity and in-depth knowledge of FedRAMP and NIST security frameworks and compliance standards - Solid understanding of fundamental security principles/concepts (Networking, Encryption, IAM) - Proven outstanding written and verbal communication skills, with the ability to work collaboratively in a team environment - Proven excellent problem-solving skills, with the ability to analyze complex security issues and develop effective solutions - All employees working remotely will be required to adhere to UnitedHealth Group's Telecommuter Policy Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you'll find a far-reaching choice of benefits and incentives. The salary for this role will range from $112,700 to $193,200 annually based on full-time employment. We comply with all minimum wage laws as applicable. Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission. UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Design, develop, and deploy security automation and monitoring microservices in Go (Golang). • Build and maintain security automation and monitoring solutions with a focus on Azure environments, leveraging tools such as Microsoft Defender for Cloud, Azure Monitor, and Azure AD. • Enhance and maintain SIEM integrations, log pipelines, and threat detection logic across AWS, Kubernetes, and application layers. • Build infrastructure as code (IaC) with Pulumi in Go to securely deploy cloud-native services. • Develop and maintain incident detection and response automation, integrating with tools such as AWS Security Hub, GuardDuty, Inspector, Wazuh, and others. • Create and manage dashboards, alerts, and playbooks to support real-time monitoring and Blue Team operations. • Support threat-hunting initiatives through custom log enrichment, alert tuning, and behavioral detection. • Work closely with the other Security Engineers and the platform team to assess risk, harden configurations, and evolve security posture. • Document architectures, detection logic, and operational procedures to ensure repeatability and scalability.
Role Description We are seeking an experienced and highly technical Data Center Security Engineer to help secure the infrastructure behind OpenAI’s rapidly expanding data center footprint. This is a chance to work on high-consequence systems at the intersection of cybersecurity, critical infrastructure, and advanced AI, where strong technical judgment and careful execution have direct, lasting impact. In this role, you will operate with substantial agency and ownership alongside a small team of data center security experts, driving security architecture, control validation, and defensive improvements across multiple, diverse environments, with particular emphasis on IT, Enterprise, ICS and Operational Technology (OT) networking. You will help define and raise the security bar for infrastructure programs already in flight while shaping how future deployments are secured from the start. This role's preferred location is one of our OpenAI offices in San Francisco, Seattle, or New York City and relocation assistance is available. We are also open to considering candidates who are remote. - Design and implement security controls that protect data center infrastructure across a growing global footprint, with particular focus on both OT and IT networking environments. - Partner closely with a small team of data center security specialists, as well as engineering, operations, and broader security teams, to deliver resilient and practical security outcomes. - Secure OT and IT networking environments through strong segmentation, access control, monitoring, hardening, and connectivity patterns suited to critical infrastructure. - Contribute to security architecture and design reviews for data center systems, including OT and IT networking, network segmentation, identity and access management, provisioning workflows, hardware and firmware trust boundaries, and operational safeguards. - Perform recurring audits, control assessments, and validation activities across OT and IT networking environments to ensure continued compliance against defined controls. - Drive ongoing evidence collection, gap tracking, and remediation follow-through so control deficiencies are identified quickly and closed durably. - Help define measurable security standards, control objectives, audit procedures, evidence requirements, and validation mechanisms for infrastructure and facility security programs. - Support security monitoring, incident response, and post-incident improvement efforts for data center, OT, and IT networking environments. - Work with suppliers, partners, and internal stakeholders to evaluate and reduce risks associated with third-party hardware, firmware, software, and operational dependencies. - Continually evolve the security of our data centers alongside changes in adversary activity, infrastructure complexity, and the increasing demands of OpenAI’s systems. Qualifications - 15+ years of experience in security, including meaningful hands-on experience securing large-scale infrastructure, industrial environments, or data center systems. - Deep expertise securing OT and IT networking environments in critical infrastructure settings, including segmentation strategies, remote access controls, asset visibility, and compensating controls for operational constraints. - Experience building audit or assurance programs that validate ongoing compliance with defined security controls, especially across OT and IT networking environments, rather than relying on one-time point-in-time reviews. - Strong cross-functional collaboration skills including the ability to partner effectively with internal and external stakeholders while operating with a high degree of autonomy. - Strong knowledge of security engineering and operations across network security, IAM and PAM, hardening, provisioning, monitoring, incident response, and secure lifecycle practices. - Experience protecting hyperscale, colocation, or hybrid infrastructure environments against sophisticated adversaries. - Familiarity with control and governance frameworks such as NIST, ISO 27001, or SOC 2, and the ability to translate them into concrete technical and operational requirements. - The ability to operate as a high-ownership individual contributor who influences through technical judgment, collaboration, and execution. - Clear written and verbal communication skills, including the ability to explain risk, controls, and tradeoffs to both technical and non-technical partners. Company Description OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic.
• Provide oversight and support for security operations in a remote setting • Assign personnel to various posts or patrols • Interpret security rules and procedures • Supervise operation procedures and activities for a client’s security services • Develop and maintain understanding of business demands • Document complex business processes while tracking needs • Review and submit Daily Activity Reports and Incident Reports • Ensure accuracy and completeness of all reports • Prepare monthly security reports analyzing security trends • Provide security recommendations to client • Provide post orientation and training for new officers • Prepare work schedule and review Leave requests • Communicate with clients regarding security matters • Resolve irregularity reports • Perform security related investigations • Review recorded data to determine appropriate actions • Confer with various agencies for cooperation and coordination • Coordinate Post orders, updates and revisions • Be on-call during off hours • Assume role of Incident Command if required • Serves as Transportation Dispatcher
• Investigate and contextualize security events from numerous data sources • Help detect, respond, and remediate security events and incidents • Create automated data correlation and triage processes to reduce alert-to-fix time • Develop remediation and orchestration efficiencies across the security stack - including endpoint, network, identity, and application • Perform e-discovery tasks in support of Legal and HR investigations • Respond to user requests for security-related issues and concerns • Improve current visibility by configuring existing logging and alerting policies • Evaluate and select additional tools and services • Contribute to SIEM tuning for reliable alerting • Perform vulnerability triage and assignment • Engage in proactive threat hunting to identify risks not automatically captured by scans • Have a meaningful and positive impact on the security of colleagues and clients • Be challenged to identify, build, test, and deploy solutions in real-life, not in theory • Be encouraged to innovate and take ownership • Be given the opportunity to rapidly accelerate security, technology, and management skills • Have the freedom to experiment with novel problem-solving approaches • Contribute to all security-related initiatives - both tactical and strategic • Be exposed to emerging security and business technologies • Have access to best-in-class tooling and people • Grow and learn on the job every day • Serve as a subject matter expert on information security-related escalations • Maintain awareness of trends in various security domains • Collaborate with other teams to improve security posture, risk remediation, and threat awareness
