Job Posting Title: Information Protection Snr Analyst

Job Description Summary:

The Information Protection Senior Analyst is responsible for providing general technical, operational and risk management support to Cigna's Information Protection (CIP) Middle East and Africa (MEA) team. This role will support in enforcing standard information protection controls through infrastructure, application and third-party security assessments. Work with the Cigna Information Protection team as required to conduct cyber assurance activities, support regulatory compliance audits and remediation across the MEA portfolio. 

This role will work closely with the CIP MEA team to identify, evaluate, and remediate potential weaknesses in Cigna’s systems, using both manual and automated methods. In addition, this role will support the dashboard reporting, coordination of security assurance and audits, risk assessments and other CIP led initiatives.

About Cigna:

Cigna is a global health service company dedicated to helping the people we serve improve their health, well-being, and peace of mind. But we don’t just care about your well–being, we care about your career health too. That’s why, when you work with us, you can count on a different kind of career – you’ll make a difference, learn a ton, and share in changing the way people think about healthcare. 

Responsibilities:

Responsible for supporting assessments of management, operational, and technical security controls and control enhancements employed within or inherited by a system to determine their overall effectiveness. Responsible for supporting regulatory evaluations across MEA region or individual business lines for compliance with published standards. Perform regular risk & activity reporting on Key Risk Indicators (KRI) and Key Performance Indicators (KPI)Perform audit remediation tracking and resolution with local security teamsWork with individual local security teams assigned to ensure security controls applied are compliant to CIP policies and standardsAssist in the review and development of local CIP policies , standards and guidelinesAssist CIP and IT teams to implement standard security solutions and capabilities that are aligned with business, technology and threat driversMaintain strong working relationships with individuals and groups involved in managing information risks across the organizationStay abreast of current and emerging security threats and security architectures to mitigate the threats

Skills required:

Demonstrated ability to work as both an individual contributor and a team player in a fast paced environment. Demonstrated ability to identify cyber security risks and develop treatment plans working with key stakeholdersAbility to identify cyber security control gaps and develop remediation plansCoordinate with people and teams to forecast activity completion and the ability to work in a team environment, sharing workloads and responsibilities.Understanding of core Internet protocols (e.g. TCP, UDP, DNS, HTTP, TLS, IPsec) and the OSI model.Understanding of encryption fundamentals (symmetric/asymmetric, ECB/CBC operations, AES, etc.).Understanding of Cloud environments such as SaaS, PaaS and IaaS.Understanding of OWASP.Knowledge of networking fundamentals and common attacks.

Qualifications:

High School diploma; Bachelor's degree preferred.3-5 years or more of security operations or security governance, risk and compliance experience.CISSP, CRISC or similar certifications desiredPassionate about security and finding new ways to protect systems as well as break themStrong analytical and problem solving skills, with the ability to “think outside the box”.Ability to work in a flexible environment where requirements and procedures continuously evolve.Strong oral and written communication skills, including a demonstrated ability to prepare documentation and presentations for technical and non-technical audiences.

About Evernorth Health Services

Evernorth Health Services, a division of The Cigna Group, creates pharmacy, care and benefit solutions to improve health and increase vitality. We relentlessly innovate to make the prediction, prevention and treatment of illness and disease more accessible to millions of people. Join us in driving growth and improving lives.