Information Protection Advisor
About the position
The Cigna Group is seeking a Cybersecurity professional to join their team as an Information Protection Advisor. This role is pivotal in performing application and infrastructure security assessments to ensure the confidentiality, integrity, and availability of information systems. The successful candidate will collaborate closely with IT and business partners to address security issues identified through security evaluation questionnaires and secure scanning reports. This is an exciting opportunity to contribute to the security team as they enhance their program to meet the demands of an Agile IT workforce, thereby strengthening Cigna's security posture and improving customer experience. In this position, the advisor will be responsible for recommending and implementing new tools, technologies, and methodologies that facilitate automated application security testing within the development process. The role involves partnering with various enterprise teams to develop and implement security solutions that align with security architecture, business needs, technology, and threat drivers. Additionally, the advisor will conduct risk assessments of existing or new services and technologies, identify design gaps and risks, and recommend necessary security enhancements. The advisor will serve as a trusted information security expert, guiding IT and business partners in making informed risk management decisions. This includes identifying opportunities to improve risk posture, developing solutions for remediating or mitigating risks, and assessing residual risk. Maintaining strong working relationships with individuals and groups managing information risks across the organization is essential. The advisor will also stay informed about current and emerging security threats and design security architectures to mitigate these risks.
Responsibilities
• Perform application and infrastructure security assessments to support confidentiality, integrity, and availability.
,
• Assist IT and business partners in resolving security issues identified through security evaluation questionnaires and secure scanning reports.
,
• Recommend and implement new tools, technologies, and methodologies for automated application security testing.
,
• Partner with the enterprise to develop and implement security solutions aligned with security architecture and business needs.
,
• Conduct risk assessments of existing or new services and technologies, identifying design gaps and recommending security enhancements.
,
• Communicate risk assessment findings to information security customers or business partners.
,
• Serve as an information security expert and trusted advisor to IT and business partners for informed risk management decisions.
,
• Identify opportunities to improve risk posture and develop solutions for remediating or mitigating risks.
,
• Maintain strong working relationships with individuals and groups managing information risks across the organization.
,
• Stay up-to-date on current and emerging security threats and design security architectures to mitigate them.
Requirements
• Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
,
• Six or more years of relevant work experience in information security.
,
• Strong communication skills to articulate risks and solutions clearly to business stakeholders.
,
• Experience with information security management frameworks (e.g., ISO 27000, COBIT, NIST 800) and regulatory compliance is a plus.
,
• Certifications such as CISSP, CCSP, CISM, CRISC, Security+, Network+, etc. are required.
,
• Working knowledge of technologies/protocols/methodologies including network security, cloud computing (AWS, Azure), containerization, and microservices.
Nice-to-haves
• 5-10 years of experience with information security management frameworks and regulatory compliance background.
,
• Familiarity with physical and virtual infrastructure, software-defined networking, and virtualization technologies.
Benefits
• Smoking cessation program
Apply Now
The Cigna Group is seeking a Cybersecurity professional to join their team as an Information Protection Advisor. This role is pivotal in performing application and infrastructure security assessments to ensure the confidentiality, integrity, and availability of information systems. The successful candidate will collaborate closely with IT and business partners to address security issues identified through security evaluation questionnaires and secure scanning reports. This is an exciting opportunity to contribute to the security team as they enhance their program to meet the demands of an Agile IT workforce, thereby strengthening Cigna's security posture and improving customer experience. In this position, the advisor will be responsible for recommending and implementing new tools, technologies, and methodologies that facilitate automated application security testing within the development process. The role involves partnering with various enterprise teams to develop and implement security solutions that align with security architecture, business needs, technology, and threat drivers. Additionally, the advisor will conduct risk assessments of existing or new services and technologies, identify design gaps and risks, and recommend necessary security enhancements. The advisor will serve as a trusted information security expert, guiding IT and business partners in making informed risk management decisions. This includes identifying opportunities to improve risk posture, developing solutions for remediating or mitigating risks, and assessing residual risk. Maintaining strong working relationships with individuals and groups managing information risks across the organization is essential. The advisor will also stay informed about current and emerging security threats and design security architectures to mitigate these risks.
Responsibilities
• Perform application and infrastructure security assessments to support confidentiality, integrity, and availability.
,
• Assist IT and business partners in resolving security issues identified through security evaluation questionnaires and secure scanning reports.
,
• Recommend and implement new tools, technologies, and methodologies for automated application security testing.
,
• Partner with the enterprise to develop and implement security solutions aligned with security architecture and business needs.
,
• Conduct risk assessments of existing or new services and technologies, identifying design gaps and recommending security enhancements.
,
• Communicate risk assessment findings to information security customers or business partners.
,
• Serve as an information security expert and trusted advisor to IT and business partners for informed risk management decisions.
,
• Identify opportunities to improve risk posture and develop solutions for remediating or mitigating risks.
,
• Maintain strong working relationships with individuals and groups managing information risks across the organization.
,
• Stay up-to-date on current and emerging security threats and design security architectures to mitigate them.
Requirements
• Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
,
• Six or more years of relevant work experience in information security.
,
• Strong communication skills to articulate risks and solutions clearly to business stakeholders.
,
• Experience with information security management frameworks (e.g., ISO 27000, COBIT, NIST 800) and regulatory compliance is a plus.
,
• Certifications such as CISSP, CCSP, CISM, CRISC, Security+, Network+, etc. are required.
,
• Working knowledge of technologies/protocols/methodologies including network security, cloud computing (AWS, Azure), containerization, and microservices.
Nice-to-haves
• 5-10 years of experience with information security management frameworks and regulatory compliance background.
,
• Familiarity with physical and virtual infrastructure, software-defined networking, and virtualization technologies.
Benefits
• Smoking cessation program
Apply Now