Information Protection Senior Advisor - HIH - Evernorth

Job Description – Information Protection Senior Advisor

Role Summary:

Cigna Information Protection is an integral part of IT whose mission is to protect customer data from unauthorized access by preventing, detecting, and responding to internal and external Cyber Security threats. The successful candidate will possess deep technical knowledge on several security technologies; have a solid understanding of information security and networking, and extensive experience interacting with customers. This leader is responsible for delivery of specific Cloud engineering solutions and serves as an escalation point for critical and complex issues, performs configuration and testing of products, assists with developing and documenting work processes and trains other members of the team.  The Cloud Security Engineering Senior Advisor also provides security recommendations to application teams across a diverse set of cloud platforms and technologies including container security, secure coding practices, microservice design and secure patterns for serverless and cloud-native computing. The individual will be part of a highly motivated team that is focused on a growing multi-year cloud security program. This individual would provide findings of their research that ultimately would strengthen overall security posture of the organization.

The individual will be part of a highly motivated team that is focused on a growing multi-year cloud security program. This individual would provide findings of their research that ultimately would strengthen overall security posture of the organization.

Major Duties and Responsibilities:

Architect and optimize security automation workflows to enhance security threat visibility in public cloud.Build and maintain automation scripts and security tools to improve security efficiency.Mentor junior engineers and contribute to security strategy and roadmap planningConfigure and monitor cloud security tools and services, collaborating closely with development teams to integrate security best practices into the software development lifecycle and DevOps processes.Provide primary operational support and engineering for the public cloud platform and cloud security tools and debug and optimize systems and automate routine tasks.Configure, tune and maintain AWS Security Services like Network Firewall, AWS WAF, Firewall Manager, Shield Advanced and GuarddutyArchitect, design and implement container and serverless security principles in enterprise level environmentProven ability to design end-to-end security patterns and solutions that may include on-premise and cloud resources that meet enterprise security policies and best practices. Strong knowledge of industry standards and techniques in development and testingImplement and manage security posture management solutions and improve the security of applications.

Scope and Dimensions:

Reports to the Director responsible for Global Cloud Security EngineeringExecutive presence, comfortable in all aspects of technology and business acumenComfortable presenting to IT and business executivesCapable of driving alignment across the technology organizationCapable of driving decisions and solutions from the perspective of the customer

Qualifications

Required/Preferred Skills

Global security experienceCloud Security (CCSP) and AWS Security Specialty or other cloud certifications are requiredExperience with CSPM/CNAPP platforms like Palo Alto Prisma/Cortex Cloud or Orca or Wiz Security etcProven knowledge of coding languages like such as Terraform, Python.Experience with AWS native security services like AWS WAF, Shield Advanced, Firewall Manager or other third party WAF tools.Has a strong capability to work with and partner with delivery teams and stakeholdersProven ability to quickly learn and experiment with new security related cloud technologies and tools.Proven ability to design end-to-end security patterns and solutions that may include on-premise and cloud resources that meet enterprise security policies and best practices. The individual should have a passion for new emerging technology in the cloud security spaceSolid understanding of services and capabilities delivered by mainstream cloud service providersAbility to influence technical discussions and decisionsAbility to perform security research and document and communicate the findings of their researchStrong work ethic and sense of urgencyDemonstrated expertise in designing, implementing and architecting cloud security solutions across leading cloud platforms such as AWS, Azure, or Google Cloud PlatformExperience in demonstrating effects of leveraging innovative thought to drive business resultsStrong capability to work with and partner with key business leads and understand business strategies and architectures

Required Experience & Education

College or University degree in Computer Science or a related discipline13-16 years of hands on technical experience in solution design and architecture with primary focus on security products.

About Evernorth Health Services

Evernorth Health Services, a division of The Cigna Group, creates pharmacy, care and benefit solutions to improve health and increase vitality. We relentlessly innovate to make the prediction, prevention and treatment of illness and disease more accessible to millions of people. Join us in driving growth and improving lives.