Managing Director, Deputy Chief Information Security Officer - International Markets/Corporate Functions- Work From Home at Cigna in Bloomfield, Connecticut

Job Description:

Remote, Work from home, United States

COMPANY and ROLE:

Cigna Corporation (NYSE: CI) is a global health service company dedicated to improving the health, well-being and peace of mind of those we serve. We offer an integrated suite of health services through Cigna, Evernorth, Express Scripts, and our affiliates, including medical, dental behavioral health, pharmacy, vision, supplemental benefits, and other related products. Together, with our employees around the world, we aspire to transform health services, making them more affordable and accessible to millions. Through our unmatched expertise, bold action, fresh ideas and an unwavering commitment to patient-centered care, we are a force of health services innovation.

With the Cigna Corporation, you'll enrich people's lives and work together to fulfill our mission of making the world a healthier place. What difference will you make?

OVERVIEW:

The Managing Director, Deputy Chief Information Security Officer (DCISO) of International Markets and Corporate Functions is a key leader in Cigna's Technology organization, providing oversight for the cybersecurity technology governance, facilitating requirements from the Global Cyber Security Center of Expertise (COE), and advising senior leadership and key stakeholders on cyber risks for Cigna's International Markets and Corporate Functions Business Units. This is a highly visible role, supervising all security technology solutions across the business unit.

The DCISO reports directly to the SVP, Chief Information Security Officer (CISO) and will be responsible for transforming the organization's structure, talent, technology and processes to effectively manage cyber risk, while remaining current with the evolving threat landscape. It will be imperative to strategically leverage technology, process and talent to protect the confidentiality, integrity and availability of information for our customers, clients and employees.

Having the ability to develop strong relationships with business leaders across the business units and enterprise is a critical component to the success of the individual chosen to lead this function. The DCISO will leverage a "defense in depth" framework as the guiding principle. The DCISO will be a contributing member of the Enterprise CISO Council (ECC) leveraging best practices and helping to improve the overall cyber maturity and posture across the enterprise.

RESPONSIBILITIES:

- Contribute to the overall direction and strategy of the Information Security function in collaboration with the ECC and the International Markets and Corporate Functions leadership teams. Manage the relationship with the business unit's specific Risk and Audit committees and, if required, the Board of Directors on Cyber Security issues and policies.

- Leveraging the Global Cyber Security COE, optimize effective security and privacy governance to ensure complete security of Cigna's data.

- Lead the International Markets and Corporate Functions Cyber Security Departments, including Identity and Access Management, Global Security Operations Center (G-SOC), Incident Response, Security Solution Engineering, and Governance & Project Delivery teams.

- Drive security processes throughout International Markets and Corporate Services to create a security savvy workforce and implement processes that create self-service capability with a focus on simplification, speed and automation.

- Contribute to security product and architecture currency by remaining relevant to any evolving threat landscape and respond swiftly to mitigate exposure to new threats and vulnerabilities.

- Manage third-party connectivity models, standards, assessments and relationships for International Markets and Corporate Functions by leveraging the Global COE.

- Accountable for the end-to-end security technology posture, including end-point, network, mail, perimeter, etc. for the International Markets and Corporate Functions business units.

- Support and partner with peer delivery organizations within Technology to drive secure solutions without being a road-block.

- Lead strategic technology planning to achieve business goals, including the ability to articulate ideas to both technical and non-technical groups, and business case justifications for technology and security spending initiatives.

- Establish and maintain a strong partnership with technology peers, enterprise risk management, privacy, audit and other leaders throughout the business to support the development and implementation strategies that adhere to the enterprise risk tolerance. The security team will need to anticipate technology shifts that keep peer organizations competitive, yet driving these innovated solutions without compromising the security posture.

- Leading through influence will be a critical competency to ensure security is embraced pervasively throughout the enterprise.

- Contribute to the ECC to continuously improve existing security standards across the organization to maintain a competitive edge within the market and remain current to the changing threat landscape.

- In conjunction with other cyber and technology leaders, develop, implement and maintain department policies and standards designed to maximize effectiveness and minimize costs related to the acquisition, implementation and operation of enterprise applications and infrastructure systems in a secure manner.

- Lead acquisition and divestiture cyber due diligence and work with Strategic Delivery to ensure integration activities are completed on time and within budget.

- Partner with internal/external clients to ensure a high degree of system security.

- Stay well-informed of technological advances and continuously research better ways to accomplish tasks, and integrate new security technologies.

- Proactively update skill set in support of technology integration and design.

- Maintain a constructive, team-oriented and customer-focused attitude at all times and in all settings.

- Recruit and develop talent that will drive the organization to higher performance.

- This role is accountable to maintain technical compliance to regulations, standards, and certifications such as SOC1/2, SOX, data privacy, PCI and HIPPA.

REQUIRED SKILLS:

- Bachelor's degree is required; an MBA desirable; CISSP and/or other security certifications are desirable.

- 10 years of professional experience including security, infrastructure and/or application leadership experience.

- Exceptional capacity for managing and leading people.

- Understanding of security and architecture frameworks and standards such as NIST, ISO, HTRUST, COBIT, ITIL, FIPS (common criteria).

- Understanding of regulatory standards such as HIPPA and PCI DSS.

- Understanding of risk management life cycles including technical depth and working knowledge in cloud, networking, desktop, server, storage, software-defined-networking, virtualization and application domains.

- Technical knowledge of security systems including Data Management, Data Leakage Prevention, Intrusion Detection and Prevention Systems, Firewalls, Heuristics, Identity and Access Management, Endpoint Protection, Firewalls, and Encryption techniques (at rest and in flight).

This position is not eligible to be performed in Colorado.

About Cigna

Cigna Corporation exists to improve lives. We are a global health service company dedicated to improving the health, well-being and peace of mind of those we serve. Together, with colleagues around the world, we aspire to transform health services, making them more affordable and accessible to millions. Through our unmatched expertise, bold action, fresh ideas and an unwavering commitment to patient-centered care, we are a force of health services innovation. When you work with us, or one of our subsidiaries, you'll enjoy meaningful career experiences that enrich people's lives. What difference will you make?

Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.

If you require reasonable accommodation in completing the online application process, please email: SeeYourself@cigna.com for support. Do not email SeeYourself@cigna.com for an update on your application or to provide your resume as you will not receive a response.