Please note, Role can work remotely but would prefer candidates who can work a hybrid schedule:
Philadelphia, PA
Morris Plains, NJ
St Louis, MO
Bloomington, MN
Bloomfield, CT
Key Objective
As a member of the Network Security Services team, you will help engineer and operate network technologies that will connect our employees with its customers, put resources in the hands of the health professionals who need them and help us play its part in the future of healthcare.
The Manager for Application Delivery & Security Engineering will be responsible for engineering, architecture, planning, implementation, operations and monitoring of CIGNA's application security. Safeguard network assets and information, and to comply with applicable laws and regulations.
Other responsibilities include leading tactical improvements by designing and building short- and long-term detailed plans, roadmaps and standards to ensure security for applications meet current and future requirements. The position will direct teams in maintaining infrastructure and processes, and provide guidance over all security aspects of data network implementation. The office will also coordinate closely with the Information Protection team and other teams within the Global Network Services Organization in the design and implementation of security architecture and processes.
Major Duties and Responsibilities:
- Manage a team of a various skill levels in Engineering and Operations of application delivery & security services.
- The position is 24x7x365 to support Cigna's business needs and includes creating an on-call schedule for the team.
- Mentor and guide team members to become fully trained across all services for application delivery and security across the Cigna Group enterprise.
- Design and build solutions around application security that complies with Cigna Information Protection standards and business requirements.
- Respond to managed incidents (outages) and have team engaged to triage issues and restore service as quickly as possible.
- Be able to lead outages calls to troubleshoot and find root cause for issues involving services that the team is responsible for.
- Engage and collaborate with CIP and application owners on WAF deployment, testing and tuning activities.
- Work with the APM for the application & delivery for the service to attend scheduled stand ups to get updates from the team on deliverables and set priorities.
- Build and direct team for oversight, delivery and management of projects from conception to completion that meet requirements.
- Provide technical leadership and vision around network security monitoring, implementation, and processes with balance of scalability, costs, redundancy, resiliency, and flexibility.
- Collaborate with other teams within global network services, information protection and other teams for solutioning new designs.
- Discuss strategy with architecture teams and provide insight with respect to alignment with current/future security strategy (ie. Technologies, shift in risk/needs)
- Review periodic vulnerability and security audits and take necessary actions to remediate any security vulnerabilities.
- Determine standard and approved version of software on F5 and other platforms the team is responsible for and perform the upgrades when necessary.
- Collaborate with Global Network Operations Center to ensure devices are monitored and alerts are being sent to the GNOC with detailed action steps.
- Plan proactive measures to avoid potential security incidents.
- Work with information protection on CSIRT activities
- Lead reporting and remediation efforts surrounding audit compliance.
- Lead implementation and testing of security related changes to the hardware and software operational environment
- Keep leadership updated on team activities, incidents, and project status.
Stakeholder and Line of Business Alignment:
- This position is aligned to the Network Security Services Organization within the Global Network Services Organization.
- This position reports to the Director of Network Security Services.
- This is a hybrid role between working in the office and working from home. Typically, 3 days a week (Tuesday thru Thursday) in the office and Monday and Friday working from home.
- Serve point of contact for Network Services interaction with CIGNA Information Protection (CIP)
- Responsibility for maintaining relationships and communications with senior technology and business leaders on matters relating to application security and load balancing technologies.
Qualifications (Preferred)
Formal Education & Certification:
- Four-year university degree or college diploma in a technical field such as Electrical Engineering, Computer Science or Information Systems required.
- Knowledge of F5 platforms or other load balancing, WAF and other application security technologies.
- Knowledge of agile processes, standups, Jira and Kanban
- ITIL certification or similar experience in a delivery or service design role
- CISSP (Certified Information System Security Professional)
- CISM (Certified Information Security Manager)
Knowledge & Experience:
- 5+ years of management experience in a large organization requiring 24x7 support.
- 5+ years of experience in network Engineering and Operations and/or management, including extensive management and organization of high-performing teams.
- 5+ years of experience with IT or network security
- 10+ years of experience in the IT industry
- Good understanding of network routing, switching, load balancing, WAF, proxy, VPN and other security related technologies. F5, Akamai, Cloudfare and others
- Experience with federal and state healthcare information regulations and requirements (e.g. HIPAA)
- Advanced knowledge of security protocols and implementations including IPSec, NAT, ACLs
- Working knowledge of firewall technology (Cisco, Checkpoint, Fortinet, Palo Alto, etc.)
- Working knowledge of Virtual Private Networks (VPN) both client and business to business VPN
- Application Firewall experience a plus, F5 ASM/AWAF and WAF from other vendors
- Knowledge of enterprise logging products and tolls such as Splunk, Cribl, Qradar
- Knowledge and experience with monitoring platforms such as SEVONE, Assure1, NetScout, Riverbed, Apcon
- Knowledge and experience of working in SNOW for reporting, creating dashboards and ticketing.
- Ability to lead large, complex network initiatives in a matrixed organization.
- Experience leading a technical team through a comprehensive technology conversion over an accelerated delivery schedule
- Skilled in examining and re-engineering workflows, operations, and procedures
- Demonstrated strategic thinking around network security services with quantifiable improvements from previous engagements
- Ability to drive results (focused execution, technical expertise)
- Exhibit strong organizational skills and ability to meet deadlines
- Excellent interpersonal, written, and oral communication skills
- Ability to motivate teams and simultaneously manage the operations and several highly visible corporate initiatives and projects.
If you will be working at home occasionally or permanently, the internet connection must be obtained through a cable broadband or fiber optic internet service provider with speeds of at least 10Mbps download/5Mbps upload.
About The Cigna Group
Doing something meaningful starts with a simple decision, a commitment to changing lives. At The Cigna Group, we're dedicated to improving the health and vitality of those we serve. Through our divisions Cigna Healthcare and Evernorth Health Services, we are committed to enhancing the lives of our clients, customers and patients. Join us in driving growth and improving lives.
Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.
If you require reasonable accommodation in completing the online application process, please email: SeeYourself@cigna.com for support. Do not email SeeYourself@cigna.com for an update on your application or to provide your resume as you will not receive a response.
The Cigna Group has a tobacco-free policy and reserves the right not to hire tobacco/nicotine users in states where that is legally permissible. Candidates in such states who use tobacco/nicotine will not be considered for employment unless they enter a qualifying smoking cessation program prior to the start of their employment. These states include: Alabama, Alaska, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Iowa, Kansas, Maryland, Massachusetts, Michigan, Nebraska, Ohio, Pennsylvania, Texas, Utah, Vermont, and Washington State.