Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. Positions in this function design, engineer, and manage the organization's infrastructure and operational platforms. From a cloud services model, this includes services commonly thought of as IaaS and PaaS and their underlying foundational components. Additionally, this function also has responsibility for traditional enterprise infrastructure and operational platforms such as email, file transfer, and collaboration technologies, among others. This role must understand functional and non-functional requirements to ensure they can be achieved through system design and engineering to meet the needs of the customers. Work closely with business and technology stakeholders to develop roadmaps for their respective technology portfolios, resolve cross-system and domain dependencies, ensure effective integration among the services offered to the end customer, and efficient usage of infrastructure and operational platforms. Monitor technological advancements and industry trends to influence company standards and ensure that solutions are continuously improved and maintained through product management practices, including recommendations to invest in a solution or retirement of redundant or out-of-date systems. Understand the interactions between systems, the applications and services hosted, and evaluate the impact of changes and additions. Perform analysis on existing systems to ensure performance and reliability, enhance scalability, meet security requirements, and interoperable and maintainable technology portfolio. You will enjoy the flexibility to telecommute* from anywhere within the U.S. as you take on some tough challenges. Primary Responsibilities: - This position is to secure the IBMi servers and the applications to prevent unauthorized access to client data, system configurations, application function, communications between servers and applications - This position will also help provide evidence for the various audits that take place such as ICFR, SOC, HITRUST and client or state required audits - In addition, this position will manage security reporting, investigate potential security breach evidence, build new reporting of security activity using various security tools, some programming and SQL to achieve results - Review various vulnerabilities, prioritize, and remediate Leverage enterprise-approved AI tools to enhance productivity and innovation by streamlining workflows and automating repetitive tasks. Evaluate emerging trends to drive continuous improvement and strategic innovation. You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: - Bachelor’s degree - 6+ years of IBMi System Admin experience - 2+ years of IBMi Security experience with security related options such as Group Profiles, Authorization lists, direct object security or similar and when to use each level of security Preferred Qualifications: - Knowledge of Enforcive, Compliance Monitor, Command Security, SIEM4, Identity Manager or other security applications - ICFR, SOX and HITRUST audit evidence collection and reporting *All Telecommuters will be required to adhere to UnitedHealth Group’s Telecommuter Policy. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you’ll find a far-reaching choice of benefits and incentives. The salary for this role will range from $72,800 to $130,000 annually based on full-time employment. We comply with all minimum wage laws as applicable. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location, and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups, and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission. UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment. #RPO #GREEN

• Coordenar iniciativas técnicas e operacionais de segurança, liderar profissionais da área e atuar de forma próxima com times de engenharia, produto, dados e infraestrutura cloud. • Liderar e desenvolver o time de segurança cibernética, realizando 1:1, feedbacks contínuos, PDI e acompanhamento de performance. • Apoiar no processo de controle de orçamento da área. • Garantir o bom funcionamento da operação de segurança e priorização adequada das iniciativas. • Ajudar a promover cultura de segurança dentro da empresa. • Coordenar projetos garantindo o correto planejamento, execução, acompanhamento de métricas e comunicação eficaz com as demais áreas em iniciativas relacionadas a: Identity and Access Management (IAM) • Mobile Device Management (MDM) • Endpoint Security • Cloud Security (ambiente multicloud) • Vulnerability Management • SOC / Detection & Response • Red Team / Offensive Security • Governança, Risco e Compliance (GRC)

Role Description As a Security Engineer you will form part of JUMO’s dedicated Security Team. Our mission is to raise JUMO's overall security posture, by identifying security issues and helping teams to understand and address them. JUMO’s tech stack runs in AWS and includes: - AWS EKS - Terraform - Microservices written in Kotlin - Datadog - CI/CD based on Github Actions and ArgoCD You will report into the Head of Security. You will: - Help to discover and triage vulnerabilities from various sources. - Design, configure, deploy, and maintain secure configurations across JUMO’s cloud and endpoint estate. - Work with engineering teams to complete threat modeling exercises. - Work with teams across JUMO to improve the SDLC and help secure the systems they are responsible for. - Write code to automate tasks and integrate it with other products and integrations. - Implement and improve security observability. - Respond to, document and automate incident responses. - Help secure JUMO’s use of AI tooling. - Proactively seek ways to improve existing processes and systems related to incidents, vulnerabilities, security control systems, and risks. - Coach, mentor, and share knowledge within the team. Qualifications - 3+ years of information security experience. - Experience in a security implementation and operations environment. - Good foundational programming experience, in a modern language such as Python, as well as Infrastructure-as-Code (Terraform). - Experience with cloud services such as cloud providers, SSO, cloud email gateways, cloud productivity suites. - Ability to build relationships and work effectively with other teams. - Ability to effectively prioritize tasks and take initiative. - A keen eye to identify process constraints and find solutions to alleviate these. - Ability to work independently and be comfortable with responsibility. Requirements - Bonus if you have stronger coding experience. For example, you can write code that interacts with a set of APIs, transforms the data, stores it in a database, and pushes it to another API. Benefits - Collaborating with smart, engaging people in an inspiring work environment. - Working as one team towards our goal of financial inclusion. - Growing and learning continuously, with loads of encouragement and support. - Boldly taking risks as we navigate new challenges. - Flexible work practices enabling your best delivery. - Being autonomous and empowered to lead. - A stack of leading-edge technologies. - Remote First: This position is based remotely in any country between UTC+0 and UTC+3 timezones. Company Description At JUMO, we firmly believe that diversity strengthens our teams. We are dedicated to fostering an inclusive recruitment process that cultivates an environment where all individuals can be authentic, collaborate, and thrive.

At Ensono, our Purpose is to be a relentless ally, disrupting the status quo and unleashing our clients to Do Great Things! We enable our clients to achieve key business outcomes that reshape how our world runs. As an expert technology adviser and managed service provider with cross-platform certifications, Ensono empowers our clients to keep up with continuous change and embrace innovation. We can Do Great Things because we have great Associates. The Ensono Core Values unify our diverse talents and are woven into how we do business. These five traits are the key to achieving our purpose:Honesty, Reliability, Curiosity, Collaboration, and Passion. About the role and what you'll be doing: The Senior IAM Engineer serves as a technical authority and trusted advisor, leading the design and delivery of Identity and Access Management (IAM) solutions in support of complex application migrations and enterprise security initiatives. Operating within client governance frameworks, this role partners closely with client stakeholders, architects, and security leadership to define IAM strategies, establish integration standards, and guide implementation outcomes. The Senior IAM Engineer is accountable for the technical quality, security posture, and scalability of IAM solutions and provides leadership across the IAM lifecycle—from design and implementation through migration, testing, and operational readiness. While this role remains hands-on, it extends beyond execution to include technical decision-making, architectural leadership, and mentorship, ensuring IAM solutions align with business objectives, regulatory requirements, and enterprise security standards. KEY RESPONSIBILITIES IAM Architecture & Design Leadership - Lead the design and implementation of IAM solutions across authentication, authorization, secrets management, identity governance, and privileged access domains - Define and maintain IAM reference architectures, integration patterns, and best practices aligned to enterprise standards - Provide technical recommendations and trade-off analysis balancing security, usability, scalability, and operational efficiency - Participate in architecture reviews and influence client IAM roadmaps and modernization strategies Delivery Ownership & Execution - Own IAM outcomes for assigned programs and migrations, ensuring solutions meet security, compliance, and performance expectations - Lead IAM readiness activities for migrations and cutovers, including risk identification, mitigation planning, and execution support - Guide and execute IAM configuration and integrations for SSO, MFA, federation, PAM, and secrets management - Develop and enhance accelerators, automation, and self-service capabilities to improve delivery efficiency and consistency Security, Risk & Compliance - Ensure IAM implementations align with enterprise security policies, regulatory requirements, and audit standards - Lead or coordinate IAM-related security testing, including authentication/authorization validation and vulnerability assessments - Identify IAM risks and proactively recommend remediation or improvement opportunities Technical Leadership & Collaboration - Serve as a point of escalation for complex IAM issues and defect resolution - Mentor junior engineers and review IAM designs, configurations, and documentation - Collaborate with application teams, cloud engineers, security operations, and governance partners to drive successful IAM adoption - Document IAM architectures, configurations, and operational procedures for long-term sustainability We want all new Associates to succeed in their roles at Ensono. That's why we've outlined the job requirements below. To be considered for this role, it's important that you meet all Required Qualifications. If you do not meet all of the Preferred Qualifications, we still encourage you to apply. Required Qualifications: - 7+ years of progressive experience in Identity and Access Management engineering, including leadership of complex IAM initiatives - Proven experience designing and implementing IAM solutions in large-scale, hybrid, or cloud environments - Demonstrated ability to act as a technical authority and advisor, influencing IAM decisions and standards - Hands-on expertise with enterprise IAM technologies, including: - Privileged Access Management (PAM) - CyberArk (Enterprise Password Vault, Privileged Session Manager, Central Credential Provider, Conjur) - HashiCorp Vault (secrets engines, policies, authentication methods, dynamic credentials) - Authentication / Identity Providers (IDP) - ForgeRock (Access Management, Identity Management, Directory Services, Identity Gateway) - RSA (SecurID Authentication Manager, MFA, Identity Governance & Lifecycle) - User Access & Entitlement Management - SailPoint (IdentityIQ, IdentityNow – access certifications, provisioning, role management) - ESF (Enterprise Security Framework – entitlement management and access controls) - Strong experience with authentication and federation protocols: SAML, OAuth 2.0, OpenID Connect, Kerberos - Advanced knowledge of Active Directory, LDAP, and identity integrations - Experience with cloud platforms (AWS, Azure) and cloud-native IAM services - Strong scripting and automation capabilities (PowerShell, Python, Terraform, or equivalent) - Excellent troubleshooting, analytical, and communication skills Preferred Qualifications: - CyberArk Certified Defender or Delivery Engineer - HashiCorp Certified Vault Associate / Professional - ForgeRock Certified Engineer - SailPoint Certified IdentityIQ Engineer - RSA Certified Administrator - Experience in financial services or highly regulated industries Why Ensono? Ensono is a place to make better happen – for our clients and for your career. You can do great things through innovation or collaboration, by learning or volunteering, or to promote diversity and inclusion. You can do great things for your own health or for a healthier planet. Whatever it means to you to do great things we want Ensono to be the place you can do it. We are a client-facing business, but we do encourage clients to allow us to work remotely most of the time so if you are not required to be on a client site, you can choose to work from home or in our Ensono office Some of our benefits include: - Unlimited Paid Days Off - Three health plan options - 401k with company match - Eligibility for dental, vision, short and long-term disability, life and AD&D coverage, and flexible spending accounts - Family Forming Benefit including fertility coverage and adoption/surrogacy reimbursement - Paid childbearing and paternal leave - Education Reimbursement, Student Loan Assistance or 529 College Funding - Sabbatical leave - Wellness program - Flexible work schedule As of the date of this posting, a good faith estimate of the current pay scale for this role is $125,000 to $150,000 annually based on a full-time schedule. Please note that placement in the range may vary based on numerous factors including but not limited to skills, experience, internal equity, and business needs. In addition to base salary, other compensation programs, depending on eligibility, include an annual bonus plan based on company and individual performance and an equity grant under our Associate Equity Appreciation Program. Ensono is an Equal Opportunity/Affirmative Action employer. We are committed to providing equal employment to our Associates and building a diverse and inclusive workforce. All qualified applicants will be considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or other legally protected basis, in accordance with applicable law. Pay transparency nondiscrimination statement/posting OFCCP’s pay transparency policy can be found on OFCCP’s website. If you need accommodation at any point during the application or interview process, please let your recruiter know or email USTalentAcquisition@ensono.com.