Sr Information Security Engineer (Cloud IAM Engineer) - MN, NJ, CT, CA, Or TX

Unitedhealth Group Inc. Saint Paul , MN 55102

Posted 2 months ago

Responsibilities

  • Analyze and gather requirements and design IAM single sign on, Authentication and Federation solutions for applications on the Azure cloud and Office 365.

  • Participate in design and execution of application SSO Integration. Provide production support, monitoring and support of platform technologies; and author frameworks and integration documentation.

  • Provide Azure Cloud IAM expertise, Lead and support migration of applications from on-premise to cloud

  • Identify complementary technology opportunities to provide solutions for digital workspace, enterprise and hybrid cloud applications.

  • Involved in integration of corporate and business architecture and applications, coordination, administration and support activities related to data planning, data recovery and development and related projects.

  • Improve resiliency of supported infrastructure and services, troubleshoot issues and prevent outages.

  • Help assess the planning for retirement of products and migration plans for the functional evolution of the digital workspace.

  • Develop architectural diagrams to illustrate architectural complexities and interactions.

  • Work with business owners, analysts, solution engineers, development teams and infrastructure services to communicate application and data architectures.

  • Ensure projects successfully implement designed solutions following architectural tenets.

  • Conduct audit-related assessments, document changes needed, deploy feasible audit-related changes.

  • Conduct vendor analysis and proofs-of-concept for new technologies/solutions.

Requirements

  • 4 or more years of Information Technology support experience in large, complex multi-server environment.

  • 3 or more years Identity Access Management, SSO or Federation experience, knowledge of SAML/OIDC/OAUTH.

  • 2 or more years hands-on experience in Azure cloud technologies, Azure AD, Powershell

  • Proficient with one or more of the following: OpenID Connect, Oauth, Kerberos, SAML, Claims, Conditional Access, Application Proxy, Multifactor Authentication (MFA), PowerShell

  • 2 or more years of experience with one or more of Application Integration, Infrastructure fundamentals, Windows/Linux servers, Virtualization, Security controls, Database and Network service components

  • Ability to work an On-call rotation

Assets

  • Experience in two or more of the following: IAM Architecture, LDAP SCIM, Azure B2B/B2C, AWS IAM, Google Cloud Platform, IAM products (Ping/ Okta / Sailpoint).

  • Bachelor's degree in Engineering, Computer Science or equivalent

  • Experience with Synchronization between On-Premise and Cloud Directories, or securing Office365

  • Experience with Mobile platforms, MDM, Intune or VMware Workspace One experience

  • Hands-on experience working with Infrastructure as Code tools like Terraform, and any of Kubernetes, OpenShift or Docker

  • Experience with monitoring tools like Splunk, Sitescope, Graphana, New Relic

  • Programming and web development experience on Java, .Net, Python

  • Information security background and IT Professional Certifications

Technology Careers with Optum. Information and technology have amazing power to transform the health care industry and improve people's lives. This is where it's happening. This is where you'll help solve the problems that have never been solved. We're freeing information so it can be used safely and securely wherever it's needed. We're creating the very best ideas that can most easily be put into action to help our clients improve the quality of care and lower costs for millions. This is where the best and the brightest work together to make positive change a reality. This is the place to do your life's best work.SM

Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Sr Information Security Engineer Federal Security Operations Center Broomfield CO / St Paul MN

Lumen Technologies

Posted 2 weeks ago

VIEW JOBS 1/6/2021 12:00:00 AM 2021-04-06T00:00 About Lumen Lumen is guided by our belief that humanity is at its best when technology advances the way we live and work. With 450,000 route fiber miles serving customers in more than 60 countries, we deliver the fastest, most secure global platform for applications and data to help businesses, government and communities deliver amazing experiences. Learn more about Lumen's network, edge cloud, security and communication and collaboration solutions and our purpose to further human progress through technology at news.lumen.com, LinkedIn: /lumentechnologies, Twitter: @lumentechco, Facebook: /lumentechnologies, Instagram: @lumentechnologies and YouTube: /lumentechnologies. The Role This position is a lead role implementing Managed Security Services (MSS) in a Global Security Operations Center (Global SOC) environment in a 24x7x365 environment. The SOC function is to provide customers with Network and Security Engineering solutions, constant monitoring, protection, prevention, and detection services as well as reporting and incident analysis based on events collected from multiple sources. This position will be responsible for providing the technical support to help design and implement the multiple tasks associated with the following federal programs: Networx - MTIPS and the follow-on program EIS - MTIPS and MSS. The position will also be responsible for looking holistically at Federal SOC technical processes, across all Federal Security Operations and Engineering Teams, to identify opportunities for automation. The automation will primarily be leveraging an abstraction layer that will allow for consistent and safe computer command execution across the multitude of security platform types and multiple thousands of security elements. This position will also be responsible for training the next generation of Federal SOC Engineers and Analysts so we can scale the digital transformation mindset and skillset closer to the front lines, and ultimately have highly skilled engineers in the Federal SOC automating as many front line functions as possible for scale. The Main Responsibilities * Lead team towards the development of new solutions, processes, tools, systems that have company-wide and possibly industry-wide impacts. * Lead the Federal SOC team in the direction of automation and Dev Ops mindset. * Point of contact with senior leadership of customers and contractors for the purpose of creating and presenting innovative long-term solutions, managing key relationships, and maintaining a high level of customer satisfaction. Acts as a resource to develop solutions or handle the most complex tasks for which existing methods and procedures may not apply. * Provides consultation and advice to engineers and management regarding work functions, processes, methods, procedures, and tools. Develops and delivers technical and process training in areas of expertise and innovative areas of technology. * Maintains an industry-wide perspective on emerging and evolving technologies and implementations, in order to ensure corporate directions/strategies. * Candidate is considered a SME in 3 or more of the listed security and technical requirements. * Bachelor's degree or equivalent education with 8+ years related experience. * Candidate must be willing to apply for government suitability and/or clearance status. What We Look For in a Candidate * Candidate must have the following levels of expertise: * Well-versed in BGP routing protocol and configuration. * Well-versed in MPLS Networks. * Well-versed in Cisco and/or Juniper routers and switches. * Good understanding of UTM firewall capabilities (Fortinet and/or Cisco). * Technical Network architecture and design background. * Ability to translate and summarize technical issues to senior leadership. * Good project management skills to prepare MOPs (Methods of Procedure) for scheduled maintenance involving CTL, customer, and vendor groups. * Ability to pull teams together and guide them through the process of isolation complex network issues. * CCNA, CCNP, CCIE, and/or CISSP certifications. Vendor management skills. * Experience in Automation orchestration technologies: such as Ansible, Puppet, Chef * Experience in Coding languages: such as Python, C/C++, and Java. * DDoS Mitigation - experience in any DDoS mitigation application is desired; Arbor background is a plus. * UTM firewall - expertise with all aspects of stateful firewall features and functionality desired. Expertise desired but not limited to the areas VPN, address translation, URL filtering, content inspection, content reporting, configuration and change management. * Excellent incident reporting skills are desired; forensics background is a plus. The ability to provide consulting, policy reviews, training, security audits and advisories, will be part of this skill set. * Use of any SIEM (Security Incident and Event Manager) application is desired - Splunk experience is a plus. * Knowledge of any IPS applications is desired - Sourcefire, SNORT, and /or Fortinet experience is desired. Event analysis via SIEM or vendor application is desired. * Expertise with vulnerability scanning products. Knowledge in Tenable and/or Qualys is desirable. Implementation of both internal and external scanning for premise and network based services, identification of vulnerabilities with recommended actions, and deliverables via multiple options (i.e. - email, pager, web, conference calls, etc). * On-Call responsibility. Requisition #: 238393 EEO Statement We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. Disclaimer The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions. Lumen Technologies Saint Paul MN

Sr Information Security Engineer (Cloud IAM Engineer) - MN, NJ, CT, CA, Or TX

Unitedhealth Group Inc.