Sr Manager Information Security Risk Management – Remote

For those who want to invent the future of health care, here’s your opportunity. We’re going beyond basic care to health programs integrated across the entire continuum of care. Join us to start Caring. Connecting. Growing together.  

We are seeking a dedicated and detail-oriented professional to join our team and take charge of managing Requests for Proposals (RFPs), Requests for Information (RFIs), and Requests for Quotes (RFQs) in the federal government space. The Sr Manager Information Security Risk Management is responsible for supporting essential mission-critical information security compliance frameworks and contributing to business development efforts.  Positions in this function are involved in facilitating and ensuring the organization’s adherence to domestic and international laws, regulations, guidelines, policies, and specifications relevant to its collection, storage, use, and dissemination of data and informational assets in order to minimize the effects of financial, strategic, operational, and other risks. Positions in this function are also involved in analyzing, educating, and advising clients on information security/risk management topics within their business operations portfolios in order to help them make the best possible choices relative to risk mitigation. Educate and communicate security requirements and procedures to all users and new employees. Participate in sales and marketing strategy work with internal business partners and/or external clients. Advising on acquired entities and their risk portfolios.

You’ll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges.

Primary Responsibilities:

• Proactively and consistently manage RFP, RFI, and RFQ activities to support mission-critical compliance frameworks, including HIPAA, NIST 800-53, NIST 800-171, CMMC, FedRAMP, and other federal regulatory frameworks. Activities include, but are not limited to:
• Contributing to Basis of Estimates (BOEs) related to staffing and pricing
• Providing compliance guidance to business partners
• Serve as a subject matter expert in an advisory capacity for business development, legal, and solution architects on information system security compliance (e.g., security control and regulatory interpretation)
• Stay abreast of changes in federal information security requirements (e.g., FISMA, CMMC, FedRAMP) and other regulatory changes
• Collaborate with internal and external partners to include the Governance, Risk, and Compliance (GRC) team to ensure uniform compliance messaging on RFPs and to work together on contract award for appropriate documentation hand-offs to support post-award activities
• Create and maintain RFP information security guidance procedures and processes on how to review and respond to RFPs
• Identify and maintain visibility into the RFP pipeline to help manage staffing and resource allocation
• Participate in various contract and SOW reviews as necessary, providing security compliance interpretation, guidance, and appropriate contract language (e.g., vendors and subcontractors)
• Understand the role of systems and technology within and the value they deliver to the business
• Ability to convey large amounts of complex information in a clear and concise manner both verbally and in written form
• Provides leadership to and is accountable for the performance of managers and/or senior level professional staff

You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications:

• 7+ years of expertise directly related to information security compliance and managing Federal compliance frameworks and standards such as HIPAA, NIST 800-53, NIST 800-171, FedRAMP plus IL4, VA6500, and CMS ARS
• 6+ years of experience with identifying Agency Authority to Operate (ATO) processes and documentation 
• 5+ years of experience working with government contracting in the Federal and/or State space
• 5+ years of experience working with an RFP process (e.g. Shipley method)
• 5+ years of experience and knowledge of multiple cloud platforms, such as AWS, Azure, or Google Cloud
• United States Citizenship 
• If you are offered this position, you will be required to provide extensive personal information to obtain and maintain a suitability or determination of eligibility for a Confidential/Secret or Top Secret security clearance as a condition of your employment

Preferred Qualification:

• Bachelor’s degree in Information Technology, Software Engineering, or related field

As a requirement of UnitedHealth Group’s contract with the Department of Defense, this position requires U.S. citizenship and proof of favorable adjudication following submission of Department of Defense eQuip Form SF86, (the National Agency Check Legal and Credit or NACLC). Successful completion of the NACLC process is a requirement for continued employment in this role. NACLC processing will be initiated by our TRICARE Security Officer post-offer and can take 3-6 months for a final decision communication from the Department of Defense. Candidates will be allowed to begin employment with UnitedHealth Group in this role based on an interim clearance, and final results will be communicated as they are received. Failure to obtain final NACLC approval will result in termination from this role.

*All employees working remotely will be required to adhere to UnitedHealth Group’s Telecommuter Policy

Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you’ll find a far-reaching choice of benefits and incentives. The salary for this role will range from $110,200 to $188,800 annually based on full-time employment. We comply with all minimum wage laws as applicable.

Application Deadline: This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected. Job posting may come down early due to volume of applicants.

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes – an enterprise priority reflected in our mission.

OptumCare is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations.

OptumCare is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.