Principal Information Security Engineer - Remote - 2227812

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best.

Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities.

Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring.

Connecting. Growing together. Enterprise Technology Infrastructure, Platforms & Services (ETIPS) delivers services and operational support to meet business integration objectives.

Architecture leadership to provide scalable, secure, and highly available infrastructure solutions to meet care delivery business needs and enable future business growth.

As an enterprise enabling team, we will partner with CIOs and their Lines of Business to build faster, better, and cost-effective solutions powered by elastic, resilient and secure infrastructure, services, and platforms by : Running 75% of our business in the public cloud Transforming our customer and advocate experience with a modern Omni Platform Delivering Best-In-Class Digital Workplace Experience Accelerating NIEs Integration with Excellence Building high performing, engaged teams Our culture of integrity, diversity and inclusion is the foundation of all we do.

Our platforms and services empower speed to market to meet consumer needs while improving the overall health care experience.

We strive to provide an exceptional experience to those with whom we work and serve. As a Principal Information Security Engineer your responsibilities involve monitoring, evaluating, and maintaining systems and procedures to safeguard internal information systems, networks, databases, and web-based security.

You will conduct vulnerability assessments and monitor systems, network, databases, and the web for potential system breaches and make recommendations and implement changes to enhance system security and prevent unauthorized access including researching security trends, new methods and techniques used in unauthorized access of data to preemptively eliminate the possibly of a system breach.

You’ll enjoy the flexibility to work remotely

from anywhere within the U.S. as you take on some tough challenges. Primary Responsibilities : Maintain a large inventory of application delivery controllers and web application firewalls using products such as F5, A10, and Cloudflare alongside a global team of engineering colleagues ( 10 U.

S. based engineers and 10 International engineers on the team) Positively contribute to over 99.99%+ application uptime by deploying load balancers, configuring load balanced applications, and securing external cloud and on-prem applications with WAF, DDoS, BoT, and API protections Effectively troubleshoot complex layer 1-7 issues while clearly and concisely communicating status updates to stakeholders until resolution using tools like Wireshark, tcpdump, curl, postman, browser dev tools, linux command line, etc.

Execute assigned projects in a timely manner without causing application impact while following change control process requirements.

Projects such as : load balancer software or hardware upgrades, onboarding applications to Web App Firewalls, migrating applications along with WAF to cloud infrastructures, deploying SSL / TLS inspection, automating secure solutions at scale, amongst others Engineer innovative ways to solve problems and build helpful tools using scripting / automation focus with a software engineering mindset.

Automate repeatable tasks using scripting languages like perl or python to interact directly with platform APIs and / or using tools like Terraform, Ansible, Chef, Puppet, Jenkins, etc.

Respond to high priority on-call engagements within 15 minutes in a rotation one out of every 4 weeks from 8am to 8pm CST as part of the senior escalation engineer rotation.

Able to work occasional weekends and nights during off hour change windows as necessary to support the business You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications : 8+ years of experience architecting, supporting, maintaining, configuring, and securing IT infrastructure 5+ years of experience troubleshooting, configuring, architecting, and maintaining application delivery controllers (at least 2+ years with F5 load balancers plus other load balancers such as A10, Nginx, Citrix, AVI, Kemp, HAProxy, Barracuda, etc.

3+ years of experience securing cloud native applications in Azure, GCP, or AWS with WAF, DDoS, Bot, and API protections using cloud WAAP CDN tools such as Cloudflare, Imperva, Akamai, F5 XC, etc.

3+ years of experience troubleshooting and maintaining other network or security appliances (switches, routers, firewalls, proxies, etc.

3+ years of experience automating network infrastructure tasks using scripting languages like perl or python to interact directly with platform APIs and / or using tools like Terraform, Ansible, Chef, Puppet, Jenkins, etc.

2+ years of experience securing applications with web application firewalls using F5 ASM / AWAF module Preferred Qualifications : Advanced knowledge of SSL / TLS encryption, DNS, switching and routing, Application Security, mitigating OWASP top 10 security threats, DDoS and BoT attacks, protecting APIs, and CDN caching policies *All employees working remotely will be required to adhere to UnitedHealth Group’s Telecommuter Policy.

California, Colorado, Connecticut, Hawaii, Nevada, New Jersey, New York, Rhode Island, Washington, Washington, D.C. Residents Only : The salary range for this role is $, to $, annually.

Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc.

UnitedHealth Group complies with all minimum wage laws as applicable. In addition to your salary, UnitedHealth Group offers benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and k contribution (all benefits are subject to eligibility requirements).

No matter where or when you begin a career with UnitedHealth Group, you’ll find a far-reaching choice of benefits and incentives.

Application Deadline : This will be posted for a minimum of 2 business days or until a sufficient candidate pool has been collected.

Job posting may come down early due to volume of applicants. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone.

We believe everyone of every race, gender, sexuality, age, location and income deserves the opportunity to live their healthiest life.

Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes.

We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes an enterprise priority reflected in our mission.