Senior Info Security Risk Analyst
4 days ago
Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together.
As an Information Security Risk Analyst, you would support information security standards, policies, and procedures to secure and protect data residing on systems. Work directly with third-party user departments to implement procedures and systems for the protection, conservation, and accountability of proprietary, personal, or privileged electronic data. Generally, work is self-directed and not prescribed. Works with less structured, more complex issues. Serve as a resource to others.
Maintain awareness of the valuable and sensitive third-party relationships by demonstrating the highest degree of professionalism and collaboration in every interaction. All communications must be consultative and conversational, reacting appropriately to the varying levels of technical sophistication that will be encountered. Active listening and adaptability, without relying solely on a predefined formula, is critical to successful interactions.
Primary Responsibilities:- Lead third-party assessments and follow-up activities with strategic third-party relationships
- Communicate professionally with third-party stakeholders/end users through multiple communication methods, building trusting relationships
- Understand and enforce General Computing Controls of third-party organization structure
- Identify security administration deficiencies, recommend improvements, and assist to implement corrective action
- Develop and maintain procedure documentation
- Execution of reporting (Daily/Weekly/Monthly)
- Understand and scope properly third-party organization structure to apply necessary controls to be assessed
- Perform and manage control/risk assessment and remediation of identified findings as per process documents
- Ensure third-party compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements
- Review third-party supplied policies & procedures, internal/external assessment reports, agreements and provide feedback
- Executive summaries with recommendations & direction regarding remediation efforts and disposition of the third party
- Communicate, escalate, and track third-party remediation progress on assessment remediation activities
- Understand information security risks that are inherent to a business and articulate those risks in business terms
- Maintain current knowledge on information security topics and their applicability program requirements
- Engage onshore leadership regarding any escalation/delays/deviations during assessment/remediation
- Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives.
- 3+ years of experience in IT auditing/security assessments
- 3+ years of experience working with senior levels of management
- 3+ years of Security expertise including knowledge on different security risk assessment frameworks (NIST), standards (ISO27001/HITRUST/ITIL/COBIT), and acts such as (HIPAA/GLBA).
- 3+ years of experience in examining the SSAE 16 Audit, SOC 2, PCI DSS, NY Cyber Security and other security audit report
- Advance level experience in Microsoft 365 (Excel, Word, PowerPoint, etc.)
- Knowledge and understanding of different security products (web/email filtering, disk encryption, vulnerability testing, antivirus, DLP, firewall etc.)
- Knowledge on technology/software development methodologies, application security, and OWASP Top 10 guidelines
- Proven solid Listening, Communication, and Presentation Skills
- Proven Good follow-up skills and detail oriented
- Proven ability to document assessment work papers and preparing assessment report
- Proven ability to manage third-party assessment independently with minimal supervision
- CISA, CISSP, CRISC, ISO 27001, Security+, ISC2 CC
At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission.
Diversity creates a healthier atmosphere: Optum is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.
Optum is a drug-free workplace. 2025 Optum Global Solutions (Philippines) Inc. All rights reserved.
#J-18808-Ljbffr-
IT Audit and Security Expert
4 days ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeSenior Info Security Risk AnalystWe are seeking a seasoned Senior Info Security Risk Analyst to join our team at UnitedHealth Group. As a key member of our security team, you will play a critical role in supporting information security standards, policies, and procedures to secure and protect data residing on systems.This position requires a highly skilled...
-
Sr Info Security Risk Analyst
6 hours ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeOptum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion,...
-
Info Security Risk Consultant
6 hours ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeOptum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion,...
-
Chief Information Security Strategist
4 days ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeAbout the RoleAt UnitedHealth Group, we are committed to helping people live healthier lives and making the health system work better for everyone. We believe that diversity is essential to achieving our mission and creating a healthier atmosphere. As a Senior Info Security Risk Analyst, you will play a critical role in supporting information security...
-
Information Security Analyst
6 hours ago
Taguig, National Capital Region, Philippines Fujitsu Full timeFujitsu Taguig, National Capital Region, PhilippinesInformation Security AnalystGet AI-powered advice on this job and more exclusive features.Work Logistics: Hybrid (BGC for onsite work), DayshiftRole Purpose:The Information Security Analyst plays a critical role in safeguarding the organization's information assets by enforcing security policies,...
-
Senior Cyber Security Analyst
4 days ago
Taguig, National Capital Region, Philippines WTW Full timeSenior Cyber Security AnalystWTW is seeking a Senior Cyber Security Analyst to join our Cyber Defense team. As a key player in our Cyber Defense strategy, you will establish and refine incident response procedures, collaborate with diverse stakeholders across the organization, and engage closely with other Cyber-Defense teams.The successful candidate will...
-
Senior Analyst
6 days ago
Taguig, National Capital Region, Philippines American Express Full timeAbout American ExpressWe're committed to providing our customers with exceptional experiences and innovative solutions. Our team is passionate about making a difference and driving success.We're seeking a Senior Analyst to join our Operational Risk Management team, where you'll play a key role in ensuring that our organization's operations are managed...
-
Security Risk Manager
4 hours ago
Taguig, National Capital Region, Philippines Fujitsu Full timeThe Security Risk Manager plays a critical role in identifying and mitigating potential security risks to our organization's information assets.Responsibilities:Conduct thorough risk assessments to identify potential threats and vulnerabilities.Develop and implement procedures for risk management and mitigation.We need an expert who can work closely with...
-
Senior Risk Analyst
3 days ago
Taguig, National Capital Region, Philippines American Express Full timeWe are looking for a highly skilled Senior Risk Analyst to join our team. The successful candidate will be responsible for analyzing and assessing operational risks across the organization.Key ResponsibilitiesAnalyze and assess operational risks and develop recommendations for mitigation strategiesCollaborate with cross-functional teams to implement risk...
-
Security Risk Management Specialist
4 hours ago
Taguig, National Capital Region, Philippines UnitedHealth Group Full timeJob Description:">The Information Security Risk Analyst will support information security policies, standards and procedures to secure and protect data residing on systems. This role will involve working directly with Third Party user departments to implement procedures and systems for the protection, conservation and accountability of proprietary, personal...
-
Business Risk Senior Analyst
4 days ago
Taguig, National Capital Region, Philippines Citi Full timeBusiness Risk Senior Analyst - C12 - TAGUIGCitiNegotiableOn-site - Taguig 1-3 Yrs Exp Diploma Full-timeJob DescriptionSupport strategy and execution of Risk and Control (R&C) Programs within and across designated countries, clusters and/or products of Business Operations Shared Services (BTSS, NESO/Staffing Office & Supply Chain Operations) to ensure...
-
Information Security Analyst I
3 weeks ago
Taguig, National Capital Region, Philippines Neksjob Full timeInformation Security Analyst IPractice: Cybersecurity | Areas of Work: Security Monitoring & Incident ResponseLevel: Specialist | Location: Remote (Work from Home) | Shift: Night ShiftSalary: PHP 35,000About the RoleAre you passionate about cybersecurity and safeguarding digital assets? As an Information Security Analyst I, you will play a critical role in...
-
Information Security Analyst
5 days ago
Taguig, National Capital Region, Philippines Nityo Infotech Full timeAt Nityo Infotech, we are seeking a highly skilled Information Security Analyst to join our team. As a Cybersecurity Expert, you will play a critical role in protecting our digital assets from potential threats.Key Responsibilities:Conduct regular vulnerability assessments and penetration testing to identify security weaknessesDevelop and implement effective...
-
Security Operations Analyst
7 days ago
Taguig, National Capital Region, Philippines Linda Hausermann & Associates Full timeJob SummaryThe Security Operations Analyst will be responsible for assisting in daily security operations, analyzing potential threats, and enhancing security protocols. This role requires a strong understanding of cybersecurity frameworks, concepts, and tools.Key Responsibilities:Assist in daily security operations, including threat analysis and...
-
Information Security Analyst
2 days ago
Taguig, National Capital Region, Philippines Nityo Infotech Full timeJob Overview:Nityo Infotech is looking for an experienced Information Security Analyst to join our team. As an Information Security Analyst, you will be responsible for ensuring the security and integrity of our web applications and systems.About the Role:This is an excellent opportunity for individuals with a strong background in information security to...
-
Information Security Expert
4 hours ago
Taguig, National Capital Region, Philippines Fujitsu Full timeThe Information Security Analyst plays a vital role in protecting our organization's digital assets from cyber threats.Responsibilities:Assess and mitigate security risks to ensure the confidentiality, integrity, and availability of information.Develop and implement procedures for technology improvement measurement, standards compliance, and control...
-
IT Security Risk Assessment Officer
2 weeks ago
Taguig, National Capital Region, Philippines Hunter's Hub, Inc. Full timeMust have: Bachelor's degree in Computer Science, Information Technology, or a related field.Must have minimum 3 years of experience in Information Security or related fields. Must be knowledgeable on various compliance and regulatory requirements (i.e., BSP, DPA, PCI-DSS, etc.)Must have experience in various information and IT security domains and controls...
-
IT Security Risk Assessment Officer
4 weeks ago
Taguig, National Capital Region, Philippines Hunter's Hub Incorporated Full timeJob DescriptionJob Summary:Develop tactical plans and programs for the establishment and maintenance of the Bank's third-party information security risk management framework and ensure alignment with the enterprise risk framework. Performs third party security, system security and information asset-based risk assessment. Analyze and review of complex bank...
-
IT Security Risk Assessment Officer
3 weeks ago
Taguig, National Capital Region, Philippines Hunter's Hub, Inc. Full timeMust have: Bachelor's degree in Computer Science, Information Technology, or a related field.Must have minimum 3 years of experience in Information Security or related fields. Must be knowledgeable on various compliance and regulatory requirements (i.e., BSP, DPA, PCI-DSS, etc.)Must have experience in various information and IT security domains and controls...
-
Cyber Security Threat Analyst
3 days ago
Taguig, National Capital Region, Philippines Amadeus Full timeAs a Cyber Security Threat Analyst at Amadeus, you will be part of the SOC (Security Operations Center) team responsible for detecting and responding to cyber threats. Your primary role will be to monitor security events and alerts from various sources, such as network and endpoint sensors, SIEM systems, and other commercial sources according to the...
