UnitedHealth Group is a healthcare and well-being company that’s dedicated to improving the health outcomes of millions around the world. We are comprised of
Optum Serve CISO
Location
United States
Posted
3 days ago
Salary
$200.4K - $343.5K / year
Seniority
Mid Level
Job Description
Optum Serve CISO
UnitedHealth Group
Title: Optum Serve CISO Location: United States Remote Requisition number: 2365705 Job category: Technology Overtime status: Exempt Travel: Yes, 25 % of the Time Job Description: Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. As a Chief Information Security Officer (CISO) for UnitedHealth Group's Optum Serve business, you will play a critical role in safeguarding sensitive patient data and ensuring the highest level of information security across all systems and infrastructure. Your expertise in cybersecurity will be instrumental in protecting healthcare organizations from potential threats, mitigating risks, and implementing effective security measures. The Optum Serve CISO is responsible for collaborating with senior leadership across multiple enterprise teams to help develop and execute organizational strategy for Line of Business operations and transformation objectives. This role is accountable for ensuring all work related to Optum Serve adheres to strict government regulations including, but not limited to, FISMA, FEDRAMP, NIST, CMMC and CIRCIA. The role of the Optum Serve CISO includes the development of governance, coordination, and management of an Optum Serve system security plan and development of the Optum Serve cybersecurity strategy and business planning to ensure successful execution of the broader technology and engineering deliverables associated with the enterprise business commitments to our Optum Serve customers. You will be expected to have a clear understanding of how technology and business objectives align with Optum Serve and State security requirements to ensure that necessary security decisions are made proactively and in support of client commitments and business strategies. You'll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges. For all hires within 30 minutes of an office in Minnesota or Washington, D.C., you'll be required to work a minimum of four days per week in-office. Primary Responsibilities: - Fully understand business risks and business objectives - Perform Senior Management Official (FSO and KM) role - Serve as the strategic and information security leader, advising on security requirements for business initiatives and programs - Develop and implement comprehensive information security strategies, policies, and procedures to protect confidential beneficiary data, electronic health records (EHRs), infrastructure supporting classified Optum Serve data/services and other sensitive information - Stay updated with the latest industry standards, regulations, and best practices related to information security in healthcare and distinct cybersecurity requirements for Optum Serve data security, such as FISMA, FEDRAMP, CMMC , CIRCIA, Health Insurance Portability and Accountability Act (HIPAA) - Conduct regular risk assessments and vulnerability tests to identify potential weaknesses in systems and networks and respond appropriately to address and mitigate those vulnerabilities - Design and implement robust security controls, including firewalls, intrusion detection systems, encryption mechanisms, and data loss prevention solutions, to ensure the integrity, availability, and confidentiality of healthcare data - Collaborate with cross-functional teams, including IT, compliance, legal, and executive leadership, to align security initiatives with organizational goals and priorities - Lead incident response efforts in the event of a security breach or cyber-attack, coordinating with internal teams and external stakeholders to minimize the impact and ensure swift resolution - Provide guidance and training to employees on information security best practices and awareness - Assist other Technology and Business leaders in merger & acquisition activities You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: - 15+ years of information security experience in a highly regulated enterprise - 5+ years of experience serving in a leadership capacity (Director level or above) - 3+ years of experience reviewing security contracts - Current active security clearance - Demonstrated ability to engage and influence SES level government executives - Technical security certification - Experience with interpretation and application of policy and standards, including prior experience with healthcare compliance regulations (e.g., HIPAA, FEDRAMP) - Experience with multiple information security frameworks (FEDRAMP, CMMC, NIST, HIPAA etc.) - Demonstrated expertise developing and implementing information security strategies, risk management frameworks, and incident response plans - Proven knowledge of network security, encryption technologies, identity and access management, intrusion detection/prevention systems, and vulnerability assessment tools - Subject matter expert knowledge of the technological aspects of security across disparate healthcare, financial and industrial technology systems that underpin the healthcare ecosystem - Risk management experience including identification, prioritization, and mitigation of risk - Track record of success making quality, data-driven recommendations and decisions following discovery, analysis, verification, etc. - Executive presence, evidenced by client relationship management skills with senior management on issues and key risks to the business (presentations, executive summaries, etc.) - Maintains effectiveness and composure in difficult or complex situations - Ability to negotiate and influence without authority - Bachelor's degree in information security technology, cyber security, or related field or equivalent experiences Preferred Qualifications: - CISSP/GSLC/GSTRT - Cloud technology certifications on AWS, Azure, and/or GCP - TS/SCI - All employees working remotely will be required to adhere to UnitedHealth Group's Telecommuter Policy. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you'll find a far-reaching choice of benefits and incentives. The salary for this role will range from $200,400 to $343,500 annually based on full-time employment. We comply with all minimum wage laws as applicable. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission. UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment.
Related Guides
Related Categories
Related Job Pages
More Chief Technology Officer Jobs
• Establish and lead enterprise portfolio governance for CTO-managed investments • Define and enforce portfolio standards, intake processes, and prioritization frameworks • Drive value-based prioritization across business outcomes and technical investments • Oversee the end-to-end demand lifecycle including intake, evaluation, prioritization, and approval of initiatives • Lead CTO organization capacity planning across engineering and platform teams • Create transparency on CTO organizations staffing levels and manage approval process for CTO staffing • Establish and monitor portfolio health metrics across financials, risks, dependencies, and delivery outcomes • Act as the central coordination point across CTO teams • Lead portfolio-level communication strategy for the CTO organization • Lead and coordinate change management across the CTO portfolio • Institutionalize Lean Portfolio Management practices • Ensure compliance with internal policies, controls, and regulatory requirements • Lead and mentor a team of portfolio managers and analysts • Establish portfolio-level governance for technology sourcing and vendor management • Drive early visibility and planning for major contract renewals
Online Adjunct Faculty - Information Technology
Southern New Hampshire UniversitySouthern New Hampshire University is a team of innovators. World changers. Individuals who believe in progress with purpose. Since 1932, our people-centered strategy has defined us — and helped us grow a team that now serves over 180,000 learners worldwide. Our mission to transform lives is made possible by talented people who bring diverse industry experience, backgrounds and skills to the university. And today, we're ready to expand our reach. All we need is you. At SNHU, you'll have the option to work remotely in the following states: Alabama, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maine, Maryland, Massachusetts, Michigan, Mississippi, Missouri, Nebraska, New Hampshire, New Mexico, North Carolina, North Dakota, Ohio, Oklahoma, South Carolina, South Dakota, Tennessee, Texas, Utah, Vermont, Virginia, West Virginia, Wisconsin and Wyoming.
Role Description Southern New Hampshire University is looking for online adjunct faculty within our Undergraduate Information Technology program for Global Campus. You will engage students in an asynchronous and inclusive learning environment by providing guidance and resources in a pre-developed online course. You will support students by providing instruction, feedback, and experiential and application-based learning that helps our students achieve their learning and career goals. You will report to the faculty dean team. This is a remote position. - Prioritize Student Engagement – Work with students by responding within set timeframes and reaching out proactively to students needing additional support. Recognize student needs holistically and connect them with resources. Encourage participation, collaboration, and strong faculty-student relationships to enhance learning and build skills. - Share Expertise and Resources – Stay current in your field of expertise, share your experience, and recommend relevant supplementary materials to enhance student understanding of course content. Find accessible ways to explain complex topics. - Offer Feedback & Assessment – Evaluate student work and provide individualized, constructive feedback within set timeframes to promote growth and mastery of course outcomes. - Facilitate Discussions – Encourage student interaction through active participation in online discussions while fostering an inclusive, engaging, and respectful environment that promotes open dialogue and diverse perspectives. Courses: - IT-215: Introduction to AI Literacy - IT-337: User-Centered Systems Design and Evaluation Qualifications - Master's degree in Information Technology, Computer Science, or related field - 2+ years of AI experience, including industry experience or academic involvement in areas of artificial intelligence, data science, computer science, machine learning, robotics, software engineering, and scientific computing - 3+ years of experience in user-centered design, use-centered design, usability engineering, and usability testing and formative and summative evaluation of interfaces Requirements - Must be able to engage students effectively in an online environment - Ability to provide constructive feedback and support - Commitment to fostering an inclusive and respectful learning environment Benefits - Employer-funded retirement - Free tuition program - Professional development opportunities
Intern / Entrepreneur in Residence
Logic Joe GmbHAls Joe bist du ein Teil eines agilen Teams. Fast wie bei den Avengers, nur stemmen wir mit unseren Superkräften keine Flugzeuge, sondern Digitalprojekte.
Role Description Das ist kein gewöhnlicher Werkstudi- oder Praktikumsjob. Als Entrepreneur in Residence bekommst du eines unserer frühphasigen, digitalen Projekte an die Hand und treibst es gemeinsam mit der Geschäftsführung voran. Du übernimmst echte Verantwortung und machst einen Großteil der operativen Arbeit selbst: visionsgetrieben, aber vor allem umsetzungsstark. Du denkst unternehmerisch, packst an und treibst Dinge bis zum Ergebnis – mit großem eigenen Gestaltungsspielraum. Wir bauen diese unternehmerische Seite von Logic Joe gerade erst auf – du gestaltest sie also von Anfang an mit, statt in feste Strukturen einzusteigen. Wenn du irgendwann selbst gründen willst, ist das hier dein Trainingslager mit echten Einsätzen statt Sandkasten. - Ownership ab Tag eins: Du verantwortest dein Projekt – von der Validierung über den Aufbau bis zur Umsetzung. - Execution, nicht nur Strategie: Der Schwerpunkt liegt klar auf dem Machen. Du setzt Dinge eigenständig um, statt sie nur zu konzipieren. - Markt & Kunde verstehen: Du bewertest Marktpotenziale, beobachtest Wettbewerb und Trends und holst dir über Kundeninterviews und Tests echtes Feedback. - Marketing & Sales: Du baust den Go-to-Market-Ansatz auf, testest Kanäle, gewinnst erste Kund:innen und entwickelst die Vertriebs- und Marketingmaßnahmen für dein Projekt. - Kund:innen end-to-end betreuen: Am Ende verkaufen wir Websites an kleine Betriebe – und die brauchen Begleitung über den ganzen Prozess. Du bist nah dran und hands-on: von der Beratung über die Umsetzung bis zur laufenden Betreuung. Direkt, persönlich, ohne Umwege. - AI als Hebel: Du nutzt moderne KI-Tools selbstverständlich im Tagesgeschäft und bringst neue Anwendungsfälle aktiv ein. - Schnittstelle & Hebel: Du holst dir die passenden Disziplinen aus dem Haus – Tech, Design/UX, Marketing – an Bord und koordinierst zwischen Geschäftsführung, internen Teams und externen Partner:innen. Qualifications - Du studierst noch (Bachelor oder Master, Fachrichtung offen) oder hast dein Studium gerade abgeschlossen und suchst eine Werkstudierenden- oder Praktikumsstelle mit echtem unternehmerischem Anspruch. - Du bringst idealerweise erste unternehmerische Erfahrung mit – z. B. ein eigenes Projekt, eine Gründung, Freelancing oder eine Rolle in einem Start-up. - Idealerweise hast du schon Erfahrung mit dem Bau, der Pflege und der Betreuung von Websites für Kund:innen gesammelt. - Du bist AI-affin und probierst neue Tools gerne aus, bevor andere überhaupt davon gehört haben. - Du hast ein Gespür für Marketing und Sales und Lust, beides praktisch anzuwenden. - Du arbeitest eigenverantwortlich, verbindlich und ergebnisorientiert – Aufgaben werden angenommen, übernommen und fertiggemacht, nicht zerredet. - Du verbindest Visionskraft mit Hands-on-Mentalität: Du denkst groß, fängst aber heute an. - Du bringst eine gewisse Reisebereitschaft mit – für Kundentermine, Standortbesuche und den Aufbau in neuen Märkten. - Deutsch und Englisch fließend in Wort und Schrift – beides ist für diese Rolle Voraussetzung. Benefits - Echte Verantwortung statt Zuarbeit – du gestaltest ein reales Projekt mit unternehmerischem Impact mit. - Kurze Entscheidungswege und direkter Draht zur Geschäftsführung. - Maximale Lernkurve: die wohl beste Vorbereitung auf eine eigene Gründung, die ein Job neben oder nach dem Studium bieten kann. - Flexibilität: Ort erstmal egal – remote im DACH-Raum oder an einem unserer Standorte, mit Arbeitszeiten, die zu deiner Situation passen (Werkstudium oder Vollzeit-Praktikum). - Ein Team, dem Balance, ein lockeres Miteinander und der gemeinsame Erfolg wirklich wichtig sind. - Die Chance, einen Bereich von Anfang an mitzuprägen – und mit ihm zu wachsen. - Echte Perspektive: Läuft es gut, stellen wir dir den Einstieg in eine feste Position mit mehr Verantwortung und einer Erfolgsbeteiligung in Aussicht – wer hier etwas aufbaut, soll auch am Erfolg teilhaben. Company Description Als Joe bist du ein Teil eines agilen Teams. Fast wie bei den Avengers, nur stemmen wir mit unseren Superkräften keine Flugzeuge, sondern Digitalprojekte.
Role Description We are looking for an Entrepreneur in Residence (EIR) to work closely with our team to identify, build, and validate new business ideas. This is a remote role focused on exploring startup opportunities, testing them in the market, and helping turn promising ideas into scalable ventures. - Identify new business opportunities and startup ideas - Conduct market research and validate ideas with users - Build and test MVPs (minimum viable products) - Work with internal teams to develop and iterate on ideas - Define business models and go-to-market strategies - Present findings and ideas to leadership/investors Qualifications - Prior experience in startups or entrepreneurship preferred - Strong understanding of product building and market validation - Ability to work independently in a remote setup - Strong analytical and problem-solving skills - Good communication and execution ability Requirements - Remote (work from anywhere)
