Chat

iimjobs

jobseeker Logo
Now Apply on the Go!
Download iimjobs Jobseeker App and get a seamless experience for your job-hunting
04/05 Optum Careers
Careers at Optum, a UnitedHealth Group Company

Views:6603 Applications:73 Rec. Actions:Recruiter Actions:0

UnitedHealth Group - Associate Lead - Risk Assessment (5-7 yrs)

Delhi/NCR Job Code: 332077

Associate Lead - Risk Assessment

Discipline - Information Technology

Industry - IT Security

Job Description :

Responsibilities:

- Execute the vendor's lifecycle process from information risk (security) standpoint.

- Support the process with linkages from Business and sourcing & procurement, Vendor Management teams etc.

- Maintain current knowledge on information security topics and their applicability to the program requirements.

- Ensure vendor compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements.

- Support remediation efforts with business / vendor managers.

- Maintains metrics and report them.

- Ensure alignment of security policies/standards with IT infrastructure frameworks.

- Investigates non-standard requests and problems, with some assistance from others.

- Prioritizes and organizes own work to meet deadlines.

- Plans and manages awareness campaigns and other similar needs.

- Plans, manages and executes compliance programs in support of the conformance to stated policies.

- Responsibility for maintaining relationships with business leaders.

No. of Openings - 1

Qualification :

CISA or CISSP certified

- 5-7 years experience working as IT Auditor or Information Security Advisor/Consultant with external audit firm (preferably Big 4)

- Expert knowledge in the following Information Security Domains

- Information Security Management System, Risk Management, Access Control, Network Management

- Information Systems Acquisition, Development, and Maintenance

- Communications and Operations Management

Expert Knowledge or actual application of the following frameworks/standard/control requirements:

- ISO 27002, HiTrust CSF

- COBIT and/or PCI/DSS

- HIPAA Security Rules/Standards

- Solid experience in vendor risk assessments/3rd party security assessment/SOX

Qualifications and Experience :

- Risk assessment skills and the ability to manage risk assessments / projects independently.

- 6+ years of experience in internal / departmental or vendor information security audits/assessments.

- Security expertise including knowledge on different security risk assessment frameworks (NIST/Octave), standards (ISO27001/HITRUST/ITIL/Cobit), and acts such as (HIPAA/GLBA).

- Familiarity with ISO standards and frameworks.

- Excellent communication skills both verbally and written

The Apply Button will redirect you to website. Please apply there as well.

This job opening was posted long time back. It may not be active. Nor was it removed by the recruiter. Please use your discretion.

Women-friendly workplace:

Maternity and Paternity Benefits

Add a note
Something suspicious? Report this job posting.