Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together.
Primary Responsibilities:
- Be able to understand and scope properly Business Associate organization structure to apply necessary controls to be assessed
- Perform and manage Security Assessment and remediation of identified findings as per process documents
- Review supplied evidence, reports and provide feedback
- Provide direction and recommendations regarding remediation efforts and disposition of the third party
- Communicate, escalate, and track remediation progress on assessment remediation activities
- Maintain current knowledge on information security topics and their applicability program requirements
- Communicate with Business Associate and ensure compliance to the business agreement, policies, procedures, and regulations are met
- Supports quality check and ensures accuracy on assessment documentation is always met
- Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
Required Qualifications:
- Undergraduate degree or equivalent experience
- Experience in auditing/security assessments
- Advance level experience in MS Office Applications like MS Word, MS Excel, and MS PowerPoint, MS Teams, etc.
- Knowledgeable on different security risk assessment frameworks (NIST/Octave), standards (ISO27001/HITRUST/ITIL/Cobit), and act such as (HIPAA/GLBA)
- Knowledge and understanding of different security products (web/email filtering, disk encryption, patching tools, antivirus, DLP, firewall etc.)
- Proven solid Listening, Communication, and Presentation Skills
- Proven good follow-up skills and detail oriented
- Proven ability to document assessment work papers and preparing assessment report
- Proven ability to manage Third Party assessment independently with minimal supervision
