Senior Info Security Risk Analyst
2 weeks ago
Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together.
As an Information Security Risk Analyst, you would support information security policies, standards and procedures to secure and protect data residing on systems. Work directly with Third Party user departments to implement procedures and systems for the protection, conservation and accountability of proprietary, personal or privileged electronic data. Generally, work is self-directed and not prescribed. Works with less structured, more complex issues. Serve as a resource to others.
Maintain awareness of the valuable and sensitive Third-Party Relationships by demonstrating the highest degree of professionalism and collaboration in every interaction. All communications must be consultative and conversational, reacting appropriately to the varying levels of technical sophistication that will be encountered. Active listening and adaptability, without relying solely on a predefined formula, is critical to successful interactions.
Primary Responsibilities:
- Lead Third Party assessments and follow-up activities with strategic Third Party relationships
- Communicate professionally with Third Party stakeholders/end users through multiple communication methods, building trusting relationships
- Understand and enforce General Computing Controls of Third-Party organization structure
- Identify security administration deficiencies, recommend improvements, and assist to implement corrective action
- Develop and maintain procedure documentation
- Execution of reporting (Daily/Weekly/Monthly)
- Understand and scope properly Third-Party organization structure to apply necessary controls to be assessed
- Perform and manage Control/Risk Assessment and remediation of identified findings as per process documents
- Ensure Third Party compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements
- Review Third Party supplied policies & procedures, internal/external assessment reports, agreements and provide feedback
- Executive summaries with recommendations & direction regarding remediation efforts and disposition of the third party
- Communicate, escalate, and track Third Party remediation progress on assessment remediation activities
- Understand information security risks that are inherent to a business and articulate those risks in business terms
- Maintain current knowledge on information security topics and their applicability program requirements
- Engage on-shore leadership regarding any escalation/delays/deviations during assessment/remediation
- Work and Coach assigned analysts/mentee in terms of operational processes/ competencies
- Serves as POC (Point of Contact) in lead's absence
- Conducts quality checks and provide feedback as necessary
- Create reports and presentation needed for operational process
- Other duties assigned ( Peer reviewer and lead assessor)
- Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
Required Qualifications:
- Software tools/skills needed: Basic Information Security knowledge, Microsoft 365, Solid listening, communication and presentation skills, Good documentation for work papers
- Experience in auditing/security assessments
- Experience working with senior levels of management
- Solid Listening, Communication, and Presentation Skills
- Security expertise including knowledge on different security risk assessment frameworks (NIST/Octave), standards (ISO27001/HITRUST/ITIL/Cobit), and act such as (HIPAA/GLBA)
- Experience in examining the SSAE 16 Audit, SOC 2, PCI DSS, NY Cyber Security and other security audit report
- Knowledge and understanding of different security products (web/email filtering, disk encryption, vulnerability testing, antivirus, DLP, firewall etc.)
- Knowledge on technology/software development methodologies, application security, and OWASP Top 10 guidelines
- Ability to document assessment work papers and preparing assessment report
- Ability to manage Third Party assessment independently with minimal supervision
- Proven good follow-up skills and detail oriented
Preferred Qualifications:
- Good Project Management skills, understanding infor security frameworks, auditing skills
- CISA, CISSP, CPISI, ISO 27001
At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone–of every race, gender, sexuality, age, location and income–deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission.
Diversity creates a healthier atmosphere: Optum is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.
Optum is a drug-free workplace. 2024 Optum Global Solutions (Philippines) Inc. All rights reserved.
#J-18808-Ljbffr
-
Senior Info Security Risk Analyst
2 weeks ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeOptum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion,...
-
IAM / IT Risk and Security Senior Analyst
2 weeks ago
Taguig, National Capital Region, Philippines Goodyear Dunlop Tires Germany GmbH Full timePress Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: IAM / IT Risk and Security Senior Analyst Location: Taguig, 00, PH Company: Goodyear Location: PH - Philippines - A510 Goodyear Talent Acquisition Representative: Dan Dave Alberto Sponsorship Available: No Relocation Assistance Available: No Position...
-
IAM / IT Risk and Security Analyst
2 weeks ago
Taguig, National Capital Region, Philippines Goodyear Dunlop Tires Germany GmbH Full timePress Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: IAM / IT Risk and Security Analyst Location: Taguig, 00, PH Company: Goodyear Location: PH - Philippines - A510 Goodyear Talent Acquisition Representative: Dan Dave Alberto Sponsorship Available: No Relocation Assistance Available: No The IT Risk and Security...
-
Info Sec Purple Senior Analyst
2 weeks ago
Taguig, National Capital Region, Philippines Cardinal Health Full timeSecurity (Information & Communication Technology) What Information Security and Risk contributes to Cardinal HealthInformation Technology oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and...
-
Senior IT Risk Analyst
2 weeks ago
Taguig, National Capital Region, Philippines Fresenius Medical Care Full timeSecurity (Information & Communication Technology) Conduct IT risk assessments, using subject matter expertise, to identify both inherent and residual risk ratings.Apply sound judgment in evaluating risks and controls; effectively challenge IT customers on the identification and acceptance of risks and the adequacy of controls and mitigating factors.Partner...
-
IT Risk and Security Sr. Analyst
3 days ago
Taguig, National Capital Region, Philippines Goodyear Full timeLocation: PH - Philippines - A5R0 Goodyear Talent Acquisition Representative: Maria Monica Canding Sponsorship Available: NoRelocation Assistance Available: No This role will focus on product support and expansion of the global privileged access solutions at Goodyear and will directly report to the Sr. IT Section Leader of Privileged access within Global IT...
-
Officer - Compliance Risk Analyst
2 weeks ago
Taguig, National Capital Region, Philippines Citigroup Inc. Full timeWhether you're at the start of your career or looking to discover your next adventure, your story begins here. At Citi, you'll have the opportunity to expand your skills and make a difference at one of the world's most global banks. We're fully committed to supporting your growth and development from the start with extensive on-the-job training and exposure...
-
Security Risk Managament Lead
2 weeks ago
Taguig, National Capital Region, Philippines GCash (Mynt - Globe Fintech Innovations, Inc.) Full timeAbout the G Nation: Do you want to take the first step in making Filipinos' lives better everyday? Here in GCash, we want to stay at the forefront of the FinTech industry by creating innovative, meaningful, and convenient financial solutions for the nation G ka ba? Join the G Nation todayWho You'll Be Working With: If you are digitally savvy, have a...
-
Taguig, National Capital Region, Philippines Citigroup Inc. Full timeInfo Sec Analyst - Cyber SecurityAs a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients' best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals...
-
Cybersecurity Senior Analyst
2 weeks ago
Taguig, National Capital Region, Philippines Tenet Global Business Center, Inc. Full timeCybersecurity Senior Analyst - Vulnerability Management Security (Information & Communication Technology) This analyst will be a member of the Threat Management team, reporting to the Cybersecurity Manager. This position will be responsible for various technical cybersecurity analyst functions, including vulnerability management, as well as providing network...
-
Taguig, National Capital Region, Philippines Citigroup Inc. Full timeICM Risk Analysis Credit Risk Senior Analyst are responsible for a portfolio of Risk Relationships, owning the Credit Risk Analysis for those relationships, and being responsible for the continuous monitoring of that portfolio. That includes the production of Annual Reviews, Quarterly Reviews, and the support to Ad-Hoc Transactions and Portfolio & Industry...
-
AVP - Risk Operations Senior Analyst
2 weeks ago
Taguig, National Capital Region, Philippines Citigroup Inc. Full timeWhether you're at the start of your career or looking to discover your next adventure, your story begins here. At Citi, you'll have the opportunity to expand your skills and make a difference at one of the world's most global banks. We're fully committed to supporting your growth and development from the start with extensive on-the-job training and exposure...
-
IT Risk and Security Consultant
1 month ago
Taguig, National Capital Region, Philippines Goodyear Full timeLocation: PH - Philippines - A5R0 Goodyear Talent Acquisition Representative: Jermian Verdera Sponsorship Available: NoRelocation Assistance Available: No This role will focus on product support and expansion of the global privileged access solutions at Goodyear and will directly report to the Sr. IT Section Leader of Privileged access within Global IT Risk...
-
IT Risk and Security Consultant
2 weeks ago
Taguig, National Capital Region, Philippines Goodyear Full timeLocation: PH - Philippines - A5R0 Goodyear Talent Acquisition Representative: Jermian Verdera Sponsorship Available: NoRelocation Assistance Available: No This role will focus on product support and expansion of the global privileged access solutions at Goodyear and will directly report to the Sr. IT Section Leader of Privileged access within Global IT Risk...
-
IT Risk and Security Consultant
4 weeks ago
Taguig, National Capital Region, Philippines Goodyear Full timeLocation: PH - Philippines - A5R0 Goodyear Talent Acquisition Representative: Jermian Verdera Sponsorship Available: NoRelocation Assistance Available: No This role will focus on product support and expansion of the global privileged access solutions at Goodyear and will directly report to the Sr. IT Section Leader of Privileged access within Global IT Risk...
-
Senior Renewals Analyst
2 weeks ago
Taguig, National Capital Region, Philippines Nasdaq Full timeWhy NasdaqWhen you work at Nasdaq, you're working for more open and transparent markets so that more people can access opportunities. Connections can be made, jobs can be created, and communities can thrive. We want all our employees to have access to opportunity, too. That means planning for career growth, ensuring you have the tools you need, and...
-
IT Security Engineer
2 weeks ago
Taguig, National Capital Region, Philippines Cockram Scenario Full timeSecurity (Information & Communication Technology) SOC analysts continuously monitor network traffic, system logs, and security alerts to identify potential security incidents. Experienced with the use of Intrusion Detection Systems (IDS),Security Information and Event Management (SIEM) tools, and other security solutions to detect anomalies or signs of...
-
IT Security Engineer
2 weeks ago
Taguig, National Capital Region, Philippines Cockram Scenario Full timeSecurity (Information & Communication Technology) SOC analysts continuously monitor network traffic, system logs, and security alerts to identify potential security incidents. Experienced with the use of Intrusion Detection Systems (IDS),Security Information and Event Management (SIEM) tools, and other security solutions to detect anomalies or signs of...
-
Cloud Security Senior Manager
2 weeks ago
Taguig, National Capital Region, Philippines Neksjob Philippines Full timeSenior Manager Minimum 12 years of large-scale consulting experience and/or working with hi-tech companies. Bachelor's degree MBA Degree from Tier-1 College (Preferable) Professional certifications like TOGAF, SABSA, Cloud Architect Professionals certification Should have practical industry expertise in one of these areas - Financial Services, Retail,...
-
Cloud Security Senior Manager
2 weeks ago
Taguig, National Capital Region, Philippines Neksjob Philippines Full timeSenior Manager Minimum 12 years of large-scale consulting experience and/or working with hi-tech companies.Bachelor's degreeMBA Degree from Tier-1 College (Preferable)Professional certifications like TOGAF, SABSA, Cloud Architect Professionals certificationShould have practical industry expertise in one of these areas - Financial Services, Retail, consumer...
