As part of Optum, we participate in an integrated care delivery system that enables us to support our partners as they navigate a complex healthcare environment, Only SCA Health has a dynamic group of physician-driven, specialty care businesses that allows us to customize solutions, no matter the need or challenge:
- We connect patients to physicians in new and differentiated ways as part of Optum and with our new Specialty Management Solutions business.
- We have pioneered a physician-led, multi-site model of practice solutions that restores physician agency by aligning incentives to support growth and transition to value-based care.
- We lead the industry in value-based payment solutions through our Global 1 bundled payment convener, that provides easy predictable billing to patients.
- We help physicians address everything beyond surgical procedures, including anesthesia and ancillary service lines.
The new SCA Health represents who we are today and where we are going—and the growing career opportunities for YOU.
The Manager Information Security Operations will be expected to facilitate discussions, capture information, create official documentation, etc. related to security incidents. It will be the responsibility of this position to ensure any new controls or changes in risk levels identified are evaluated for any needed adjustments to the security systems or procedures. This role will collaborate with the Director of IT Security and peer security managers to ensure the proper security posture as well as to align projects with the greater goals of Information Technology and the organization.
Significant interaction with SCA leaders across the enterprise will be a requirement of this position and, therefore, this individual must be comfortable working with the highest levels of senior management.
This position is primarily responsible for managing:
Security Operations Team
- Hiring, training, and mentoring of new Information Security engineers, as needed
- Assigning duties to and managing Information Security engineers
- Proactively identifying and implementing enhancements to existing security processes and procedures to optimize effectiveness within the team
- Direct oversight for the work-product and development of assigned Information Security engineers
- Providing effective, timely, and consistent recognition and feedback to Information Security engineers; dealing firmly and promptly with performance problems
- Conducting performance reviews and providing coaching to the Information Security engineers
Incident Response
- Managing the actions taken by the Security Operations team in response to an alert and/or during an incident
- Identifying appropriate Teammates to assist, as needed, and including them in the incident response
- Creating appropriate/necessary documentation
- Reporting relevant information to appropriate stakeholders
Web content filtering
- Providing oversight of the function and maintenance of the corporate web content filtering system
- Approving requests to unblock sites that are deemed safe, as needed
- Collaborating with other IT teams for proper system performance
Endpoint security
- Providing oversight of the function and maintenance of the endpoint security systems
- Collaborating with other IT teams for proper system performance
Investigations
- Coordinating the Security Operations team response for all Legal and/or HR investigations
- Overseeing any needed collaboration with IT teams to obtain required information
- Ensuring the requested information is provided discreetly and via appropriate means
Vulnerability Management
- Overseeing the identification of system and network vulnerabilities and conducting meetings with various IT teams to communicate them
- Communicating the remediation efforts of various IT teams to senior leadership
Certificate Management
- Overseeing the purchasing of new certificates as well as identifying those that need renewal
- Collaborating with other IT teams to apply certificates
Subject Matter Expertise
- Overseeing Security Operations participation in various IT reviews and projects to provide security expertise
Qualifications:
- Bachelor’s degree in Information Technology, Management Information Systems, Computer Science, other related business discipline, or commensurate experience
- REQUIRED 5-7+ years Information Technology or other relevant experience.
- 3+ years’ experience with an enterprise-level Security Operations function
- PREFERRED 1-2 years of supervisory experience.
- Proven ability to manage competing priorities
- Relevant certification or advanced degrees a plus (e.g., CRISC, CISSP, CISM, etc.)
- Application security management skills are a plus
- Strong leadership skills including conflict/issue resolution
- Ability to communicate effectively both verbally and through writing with IT Teammates, stakeholders, and senior management
- Ability to work effectively with project resources across multiple departments
Min: USD $85,000.00/Yr. Max: USD $152,000.00/Yr.