Information Security risk analyst - cebu city, cebuUnitedHealth Group
Workplace: Cebu
Salary: Agreement
Work form: Full time
Posting Date: 07/11/2025
Deadline: 08/12/2020
Position Description
Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry that's improving the lives of millions. Here, innovation isn't about another gadget, it's about making health care data available wherever and whenever people need it, safely and reliably. There's no room for error. Join us and start doing your life's best work.(sm)
As an IT Security Analyst, you would support information security policies, standards and procedures to secure and protect data residing on systems. Work directly with Third Party user departments to implement procedures and systems for the protection, conservation and accountability of proprietary, personal or privileged electronic data. Generally work is self-directed and not prescribed. Works with less structured, more complex issues.
Primary Responsibilities:
Participation in Third Party assessment and review
Understand and enforce General Computing Controls of Third Party organization structure
Communicate with Third Party stakeholders/end users through multiple communication methods
Develop and maintain procedure documentation
Identify security administration deficiencies, recommend improvements, and assist to implement corrective action
Execution of reporting (Daily/Weekly/Monthly)
Understand and scope properly Third Party organization structure to apply necessary controls to be assessed
Perform and manage Control/Risk Assessment and remediation of identified findings as per process documents
Ensure Third Party compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements
Review Third Party supplied policies & procedures, internal/external assessment reports, agreements and provide feedback
Executive summaries with recommendations & direction regarding remediation efforts and disposition of the third party
Communicate, escalate, and track Third Party remediation progress on assessment remediation activities
Understand information security risks that are inherent to a business and articulate those risks in business terms
Maintain current knowledge on information security topics and their applicability program requirements
Engage DPO regarding any escalation/delays/deviations during assessment/remediation
Serves as a resource to others
Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
Required Qualifications:
Experience in auditing/security assessments
Advance level experience in MS Word, MS Excel, and MS PowerPoint etc.
Experience working with senior levels of management
Strong Communication and Presentation Skills
Good follow-up skills and detail oriented
Security expertise including knowledge on different security risk assessment frameworks (NIST/Octave), standards (ISO27001/HITRUST/ITIL/Cobit), and act such as (HIPAA/GLBA)
Experience in examining the SSAE 16 Audit, SOC 2, PCI DSS, NY Cyber Security and other security audit report
Knowledge and understanding of different security products (web/email filtering, disk encryption, vulnerability testing, antivirus, DLP, firewall etc.)
Knowledgeable in technology/software development methodologies, application security, and OWASP Top 10 guidelines
Ability to document assessment work papers and preparing assessment report
Ability to manage Third Party assessment independently with minimal supervision
Preferred Qualifications:
CISA, CISSP,CPISI, ISO 27001
Possess good project management skills
Careers with Optum. Here's the idea. We built an entire organization around one giant objective; make the health system work better for everyone. So when it comes to how we use the world's large accumulation of health-related information, or guide health and lifestyle choices or manage pharmacy benefits for millions, our first goal is to leap beyond the status quo and uncover new ways to serve. Optum, part of the UnitedHealth Group family of businesses, brings together some of the greatest minds and most advanced ideas on where health care has to go in order to reach its fullest potential. For you, that means working on high performance teams against sophisticated challenges that matter. Optum, incredible ideas in one incredible company and a singular opportunity to do your life's best work.(sm)
Diversity creates a healthier atmosphere: Optum is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.
Optum is a drug-free workplace. © 2020 Optum Global Solutions (Philippines) Inc. All rights reserved.
Job Keywords: Information Security Risk Analyst, Information Security Risk, Analyst, Web, Email Filtering, Disk Encryption, Vulnerability Testing, Antivirus, DLP, Firewall, NIST, Octave, Cebu City, Central Visayas, Cebu
UnitedHealth Group
Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry that's improving the lives of millions. Here, innovation isn't about another gadget, it's about making health care data available wherever and whenever people need it, safely and reliably. There's no room for error. Join us and start doing your life's best work.(sm)
As an IT Security Analyst, you would support information security policies, standards and procedures to secure and protect data residing on systems. Work directly with Third Party user departments to implement procedures and systems for the protection, conservation and accountability of proprietary, personal or privileged electronic data. Generally work is self-directed and not prescribed. Works with less structured, more complex issues.
Primary Responsibilities:
Participation in Third Party assessment and review
Understand and enforce General Computing Controls of Third Party organization structure
Communicate with Third Party stakeholders/end users through multiple communication methods
Develop and maintain procedure documentation
Identify security administration deficiencies, recommend improvements, and assist to implement corrective action
Execution of reporting (Daily/Weekly/Monthly)
Understand and scope properly Third Party organization structure to apply necessary controls to be assessed
Perform and manage Control/Risk Assessment and remediation of identified findings as per process documents
Ensure Third Party compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements
Review Third Party supplied policies & procedures, internal/external assessment reports, agreements and provide feedback
Executive summaries with recommendations & direction regarding remediation efforts and disposition of the third party
Communicate, escalate, and track Third Party remediation progress on assessment remediation activities
Understand information security risks that are inherent to a business and articulate those risks in business terms
Maintain current knowledge on information security topics and their applicability program requirements
Engage DPO regarding any escalation/delays/deviations during assessment/remediation
Serves as a resource to others
Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
Required Qualifications:
Experience in auditing/security assessments
Advance level experience in MS Word, MS Excel, and MS PowerPoint etc.
Experience working with senior levels of management
Strong Communication and Presentation Skills
Good follow-up skills and detail oriented
Security expertise including knowledge on different security risk assessment frameworks (NIST/Octave), standards (ISO27001/HITRUST/ITIL/Cobit), and act such as (HIPAA/GLBA)
Experience in examining the SSAE 16 Audit, SOC 2, PCI DSS, NY Cyber Security and other security audit report
Knowledge and understanding of different security products (web/email filtering, disk encryption, vulnerability testing, antivirus, DLP, firewall etc.)
Knowledgeable in technology/software development methodologies, application security, and OWASP Top 10 guidelines
Ability to document assessment work papers and preparing assessment report
Ability to manage Third Party assessment independently with minimal supervision
Preferred Qualifications:
CISA, CISSP,CPISI, ISO 27001
Possess good project management skills
Careers with Optum. Here's the idea. We built an entire organization around one giant objective; make the health system work better for everyone. So when it comes to how we use the world's large accumulation of health-related information, or guide health and lifestyle choices or manage pharmacy benefits for millions, our first goal is to leap beyond the status quo and uncover new ways to serve. Optum, part of the UnitedHealth Group family of businesses, brings together some of the greatest minds and most advanced ideas on where health care has to go in order to reach its fullest potential. For you, that means working on high performance teams against sophisticated challenges that matter. Optum, incredible ideas in one incredible company and a singular opportunity to do your life's best work.(sm)
Diversity creates a healthier atmosphere: Optum is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.
Optum is a drug-free workplace. © 2020 Optum Global Solutions (Philippines) Inc. All rights reserved.
Job Keywords: Information Security Risk Analyst, Information Security Risk, Analyst, Web, Email Filtering, Disk Encryption, Vulnerability Testing, Antivirus, DLP, Firewall, NIST, Octave, Cebu City, Central Visayas, Cebu
UnitedHealth Group
Other Info
Cebu City, Cebu
Permanent
Full-time
Permanent
Full-time
Submit profile
UnitedHealth Group
About the company
UnitedHealth Group jobs
Philippines
Position Information Security risk analyst - cebu city, cebu recruited by the company UnitedHealth Group at Cebu, Cebu, Joboko automatically collects the salary of , finds more jobs on Information Security Risk Analyst - Cebu City, Cebu or UnitedHealth Group company in the links above