Manager Information Security Operations

Today, SCA Health has grown to 11,000 teammates who care for 1 million patients each year and support physician specialists holistically in many aspects of patient care. Together, our teammates create value in specialty care by aligning physicians, health plans and health systems around a common goal: delivering on the quadruple aim of high-quality outcomes and a better experience for patients and providers, all at a lower total cost of care.

As part of Optum, we participate in an integrated care delivery system that enables us to support our partners as they navigate a complex healthcare environment, Only SCA Health has a dynamic group of physician-driven, specialty care businesses that allows us to customize solutions, no matter the need or challenge:

• We connect patients to physicians in new and differentiated ways as part of Optum and with our new Specialty Management Solutions business.
• We have pioneered a physician-led, multi-site model of practice solutions that restores physician agency by aligning incentives to support growth and transition to value-based care.
• We lead the industry in value-based payment solutions through our Global 1 bundled payment convener, that provides easy predictable billing to patients.
• We help physicians address everything beyond surgical procedures, including anesthesia and ancillary service lines.

The new SCA Health represents who we are today and where we are going—and the growing career opportunities for YOU.

The Manager Information Security Operations is responsible for overseeing the security operations management function and systems related to the IT environment. In addition, this position will manage a team of security operations professionals who will work together to ensure that security issues and concerns are properly addressed. Duties also include participating in various incident response activities and taking proactive steps to ensure the effectiveness related to our security systems. This role will ensure security systems are configured to properly detect and alert on potential malicious activity as well as ensuring that appropriate actions are taken in response to alerts. Documentation for these systems as well as updated standard operating procedures will also be a part of this role.

The Manager Information Security Operations will be expected to facilitate discussions, capture information, create official documentation, etc. related to security incidents. It will be the responsibility of this position to ensure any new controls or changes in risk levels identified are evaluated for any needed adjustments to the security systems or procedures. This role will collaborate with the Director of IT Security and peer security managers to ensure the proper security posture as well as to align projects with the greater goals of Information Technology and the organization.

Significant interaction with SCA leaders across the enterprise will be a requirement of this position and, therefore, this individual must be comfortable working with the highest levels of senior management.

This position is primarily responsible for managing:

Security Operations Team

• Hiring, training, and mentoring of new information security engineers, as needed
• Assigning duties to and managing information security engineers
• Proactively identifying and implementing enhancements to existing security processes and procedures to optimize effectiveness within the team
• Direct oversight for the work-product and development of assigned information security engineers
• Providing effective, timely, and consistent recognition and feedback to information security engineers; dealing firmly and promptly with performance problems
• Conducting performance reviews and providing coaching to the information security engineers

Incident Response

• Managing the actions taken by the Security Operations team in response to an alert and/or during an incident
• Identifying appropriate Teammates to assist, as needed, and including them in the incident response
• Creating appropriate/necessary documentation
• Reporting relevant information to appropriate stakeholders

Web content filtering

• Providing oversight of the function and maintenance of the corporate web content filtering system
• Approving requests to unblock sites that are deemed safe, as needed
• Collaborating with other IT teams for proper system performance

Endpoint security

• Providing oversight of the function and maintenance of the endpoint security systems
• Collaborating with other IT teams for proper system performance

Investigations

• Coordinating the Security Operations team response for all Legal and/or HR investigations
• Overseeing any needed collaboration with IT teams to obtain required information
• Ensuring the requested information is provided discreetly and via appropriate means

Vulnerability Management

• Overseeing the identification of system and network vulnerabilities and conducting meetings with various IT teams to communicate them
• Communicating the remediation efforts of various IT teams to senior leadership

Certificate Management

• Overseeing the purchasing of new certificates as well as identifying those that need renewal
• Collaborating with other IT teams to apply certificates

Subject Matter Expertise

• Overseeing Security Operations participation in various IT reviews and projects to provide security expertise

• Bachelor’s degree in Information Technology, Management Information Systems, Computer Science, other related business discipline, or commensurate experience
• REQUIRED 5-7+ years Information Technology or other relevant experience.

• 3+ years’ experience with an enterprise-level Security Operations function
• PREFERRED 1-2 years of supervisory experience.
• Proven ability to manage competing priorities
• Relevant certification or advanced degrees a plus (e.g., CRISC, CISSP, CISM, etc.)
• Application security management skills are a plus
• Strong leadership skills including conflict/issue resolution
• Ability to communicate effectively both verbally and through writing with IT Teammates, stakeholders, and senior management
• Ability to work effectively with project resources across multiple departments

PI0e07f4103b1b-29952-33823436