Position Description

This position will lead and support Cigna's IPEOS SecOps & Engineering Services Team. This person will manage a team of technicians with varying expertise levels that are responsible for driving infrastructure platform strategy, operations and engineering as it relates to Security, SecOps, Audit and Lifecycle Management.

As part of this, the Leader must be able to analyze the Enterprise environment across multiple platforms and technologies and understand what tools and tasks are required to create and maintain a high performing Team.

This individual must have the strength and experience to execute and implement security, audit, and lifecycle management plans. This role is a combination of Operational and Engineering (deliverable) functions in nature, and will require a Leader who has a background in Security best practices. This role will require some off hours support as it relates to security patching and lifecycle management functions.

In Cigna Technology Services, we're continually looking for opportunities to create efficiencies in our environment that translate into automation toolsets to allow our teams to work more efficiently and accurately, and which eliminate repetitive, manual tasks.

This leader will have experience in the development and implementation of engineering solutions in support of projects and/or work requests for complex business solutions. This candidate must drive to the highest levels with their team to ensure an understanding of Security, SecOps, Audit and Lifecycle Management standards and best practices, and can implement patches, fixes and other solutions in support of these functions.

This leader must have the ability to adapt quickly and seamlessly. This leader must be forward-thinking and solution-oriented. This position will require problem solving and must be able to propose creative solutions to complex problems.

This leader will have the ability to analyze and interpret data to members of their team as well as their peers and leadership. They must have the ability to report on data regularly and in a meaningful way as it relates to the IPEOS Org and the Enterprise as a whole.

This role requires strong relationship development and collaboration qualities. This leader must be able to work with peers and other leaders across the org in order to accomplish key performance indicators as well as goals and objectives set forth by the organization. This role must be able to effectively facilitate conversations and make solid business cases for appropriate security standards and procedures in combination with Cigna Information Protection.

This role will be tasked with developing and implementing a plan for addressing zero-day risks and attacks as they relate to the infrastructure space.

This lead may serve as the primary contact for vendors. Duties primarily span compute and storage layers and the technical components that surround it including, network, database and application layers. This candidate must have experience with operating system components, software tools, and utilities required for securing systems. A solid understanding of scripting technologies which assist in patching activities is desired.

Position Technologies

Microsoft SCCM, Scanning tools (Guardium, Tenable, Tanium), Brinqa, Archer, VulnDB, Ansible Tower, ServiceNow, Access Management tools (Saviynt, Aveksa)

Cisco UCS, HPE,HP-US, IBM, Lenovo, x86 compute, RedHat (Satellite), VMware/Hyper-V, Windows and Linux. Zerto or other disaster recovery tools. Storage (NAS, SAN, BURA).

Position Skills

• Strong understanding of and ability to easily navigate tools and platforms listed above


• Ability to apply security principals across technologies


• Experience with SecOps tools, processes and standards


• Experience with Vendor Management


• At lease 5 years of hands-on technical experience


• At least 5 years leading teams who implement, support, administer, and/or engineer highly technical platforms


• Understanding of SDLC & PDLC processes


• At minimum, a basic working knowledge of Agile methodologies


• Working knowledge and experience with industry standard applications and protocols including but not limited to: Active Directory, DNS, DHCP, LDAP, HTTP, SMTP, SSH, and SSL


• Working knowledge of hardware platforms, IBM, HP, Cisco UCS a plus.


• Working knowledge of best practices in security and audit operations


• Working knowledge of disaster recovery planning and execution


• Working knowledge of server virtualization


• Strong analytical, development, project planning and problem-solving skills for a complex infrastructure topology


• Actively work to identify issues and root causes


• Propose solutions to complex problems


• Strong personal planning, organization and communication skills


• Strong customer service and customer support skills with the ability to communicate difficult technical concepts clearly to a variety of individuals of varying technical expertise and understanding


• Strong interpersonal and communications skills to effectively collaborate with a broad range of groups and individuals, including IT technicians, internal and external service providers, vendors, and IT management and business unit staff


• Ability to work independently, and as part of a team, to achieve deadlines for multiple tasks; ability to work multiple tasks in parallel

Position Responsibilities

• A self-starter who assists with the design, engineering and development of information technology security and life-cycle solutions


• Guides and leads their team to understand the importance of excellence and ownership


• A leader who empowers individuals within their team and promotes professional performance and growth across the organization


• A collaborative partner across all areas of the enterprise


• Assists in the diagnosis (Root Cause Analysis) and correction of failed security patches


• Analyzes risk associated with implementing security patches or other security fixes


• Performs regular risk analysis across the org and reports on results


• Responsible for maintaining the Risk Scorecard for the org


• Analyzes rules logic for SecOps tools and provides direction for appropriate rules, ownership, organizational alignment, status and priority


• Experience using SecOps, Security, Audit and Lifecycle Management tools


• Assists in troubleshooting and resolving infrastructure compatibility issues based on system architecture, project requirements, and customer expectations


• Identifies blockers that exist preventing systems from being patched and works quickly to remove those blockers


• Executes engineering Change Requests for assigned products and servers in compliance with Change Management Policies


• Participates in after-hours support activities as necessary to support Security patching, audit and lifecycle management needs


• Acts as an escalation point both during and after normal business hours


• Drives dashboard data initiatives for the IPEOS org and ensures visibility to those initiatives at the IPEOS leadership


• Accountable for systems maintenance planning and implementation activities as it relates to security


• Accountable for proactive system health management as it relates to security and lifecycle management


• Responsible for infrastructure security and lifecycle readiness


• Develop and implements security, SecOps, audit and lifecycle service improvement plans based on business-partner and IT-partner input


• Ensures services are consistently delivered and managed to meet service levels outlined in documented SLO's (Service Level Objectives)


• Participates in Business portfolio projects and IT projects as required

Competencies

• A proven Leader who can work through ambiguity who understands the importance of Team morale and the cultivation of a healthy, empowered culture


• Proficient organizational skills with the ability to work collaboratively with business partners


• Must be able to span technical organizations and understand dependencies of each


• Excellent communication, coaching and mentoring skills (knowledge sharing, peer guidance & support)

This position is not eligible to be performed in Colorado.

About Cigna

Cigna Corporation exists to improve lives. We are a global health service company dedicated to improving the health, well-being and peace of mind of those we serve. Together, with colleagues around the world, we aspire to transform health services, making them more affordable and accessible to millions. Through our unmatched expertise, bold action, fresh ideas and an unwavering commitment to patient-centered care, we are a force of health services innovation. When you work with us, or one of our subsidiaries, you'll enjoy meaningful career experiences that enrich people's lives. What difference will you make?

Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.

If you require reasonable accommodation in completing the online application process, please email: SeeYourself@cigna.com for support. Do not email SeeYourself@cigna.com for an update on your application or to provide your resume as you will not receive a response.