IT Director, Information Security Officer - Greensboro \/ Raleigh NC

Careers at UnitedHealth Group

We're creating opportunities in every corner of the health care marketplace to improve lives while we're building careers. At UnitedHealth Group, we support you with the latest tools, advanced training and the combined strength of high caliber co-workers who share your passion, your energy and your commitment to quality. Join us and start doing your life's best work. SM


Compassion. It's the starting point for health care providers like you and it's what drives us every day as we put our exceptional skills together with a real feeling of caring for others. This is a place where your impact goes beyond providing care one patient at a time. Because here, every day, you're also providing leadership and contributing in ways that can affect millions for years to come. Ready for a new path? Learn more, and start doing your life's best work. SM

Our teams are helping people from around the world. We can bring out your best as you put your listening, analytical and problem solving skills to work in a setting that is geared to helping improve lives and enhance health care for millions. Here, you'll discover a wealth of pathways for professional growth within Customer Service, Billing, Claims, Enrollment & Eligibility and across our global economy. Join us and find out why this is the place to do your life's best work. SM

**Please note- To be considered for this role, applicants must live in either Greensboro or Raleigh, NC

The Chief Information Security Officer (CISO) for NC Health plan is accountable for leading the information security function in a manner that securely supports strategic mission and business-aligned risk mitigation practices.

The NC Health plan CISO is chartered with overseeing and ensuring information security compliance of NC Health plan with NC DHHS security requirements and NC State regulation and aligning the program with the Enterprise Information Security (EIS) program, policies and procedures.
The CISO will ensure NC Health plan's leadership as well as Enterprise Information Security leaders are aware of existing and potential information security risks within the NC Health plan. The CISO will maintain solid relationships with business and NC DHHS partners to help secure business support and drive risk-mitigation initiatives as enablers of business growth and transformation

Major Responsibilities
  • Serves in a directorial capacity, formulating and implementing the application of enterprise and segment IT Security goals, strategies, and priorities including statutory, regulatory and policy requirements to address the needs of NC Healthplan.
  • Act as the single security focal point for NC Health plan client engagements
  • Responsible for establishing and maintaining the security processes and plan to ensure information assets, technologies, data, and information are protected and compliant with NC DHHS and NC state regulations.
  • Provides across-the-board security expertise to client at senior-level in regard to state-of-the-art Cyber Security innovations, effective solutions to complex security challenges/problems and all issues/incidents/actions related to Information Security
  • Provides analysis of suggested solutions to complex Cyber Security issues, as well as complex conceptual analysis, building and maintaining of key security and contract metrics
  • Collaborates with business partners, stakeholders, and senior level associates to ensure continuity and communication to client and departmental partners/stakeholders.
  • Provides specific direction/approval for engagement of Business Continuity/Disaster Recovery planning for critical IT Security solutions collaborating within the UHG
  • Enterprise Technology framework and common infrastructure
  • Provides direction and ensures compliance with established and current State of NC laws/regulations/security control requirements. Act as primary security contact for the NC DHHS in all third-party security reviews/audits/assessments
  • Provides direction and collaboration with other senior leadership, directors, managers, and stakeholders in the mitigation of risks to the IT Security infrastructure, Client and the company
  • Participates in senior-level cross-function/cross-domain development and implementation discussions to facilitate immediate effectual improvements and remediation
  • Mentors and coaches NC Health plan managers and leaders to provide guidance, mentoring, and expertise, promoting continued integration of technological advances to further enhance capability, security solutions, and cyber defense
  • Thorough understanding of HiTRUST CSF and NIST 800-53 frameworks and their correlation
  • Self-motivated individual with advanced leadership and organizational skills
  • Directs security advisory groups to ensure all necessary requirements are met and communication to stakeholders is current and concise
  • Serves as a catalyst in driving continuous improvement of IT security solutions
  • Anticipates NC DHHS security requirements and needs and proactively ensures the development of solutions to meet those needs
  • Analyzes NC DHHS security requirement, identifies areas of concern, and formulates action plans
  • Oversees development of innovate design solutions to highly complex developmental issues
  • Maintains awareness of current security trends, threats, and regulations

  • 10 or more years of professional Information Technology experience
  • Must be resident of North Carolina, preferably able to work out of our Greensboro, NC or Raleigh, NC office. Telecommuting would be considered for well qualified candidate
  • Bachelor's Degree in Information Security or Computer Science
  • CISSP and one of the following certifications: CISM, CISA or GSEC Managed Care Program
  • 5 or more years of professional IT Security management experience in a large, enterprise environment
  • 5 or more years of experience leading teams and/or managing workloads for IT Security team members
  • Prior experience leading distributed security teams in a large enterprise environment
  • Proven planning, problem-solving, budgetary, and forecasting experience
  • Ability to align identified business needs and priorities into applicable IT solutions and/or strategies
  • Prior experience directing management in the mitigation of identifiable risks
  • Ability to develop training guidelines for issues related to IT cyber security and enterprise security tool management

Preferred Qualificiations
  • Masters degree
  • Previous CISO experience preferred

Technology Careers with Optum. Information and technology have amazing power to transform the health care industry and improve people's lives. This is where it's happening. This is where you'll help solve the problems that have never been solved. We're freeing information so it can be used safely and securely wherever it's needed. We're creating the very best ideas that can most easily be put into action to help our clients improve the quality of care and lower costs for millions. This is where the best and the brightest work together to make positive change a reality. This is the place to do your life's best work. SM

*All Telecommuters will be required to adhere to UnitedHealth Group's Telecommuter Policy.
Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.