Cyber Security Senior Advisor - HIH - Evernorth

Job Description – Cyber Security Senior Advisor

Role Summary:

Cigna Cyber Security is an integral part of IT whose mission is to protect customer data from unauthorized access by preventing, detecting, and responding to internal and external Cyber Security threats. The successful candidate will possess deep technical knowledge on several security technologies; have a solid understanding of information security and networking, and extensive experience interacting with customers. This leader is responsible for delivery of specific Cloud engineering solutions and serves as an escalation point for critical and complex issues, performs configuration and testing of products, assists with developing and documenting work processes and trains other members of the team.  The Cloud Security Engineering Senior Advisor also provides security recommendations to application teams across a diverse set of cloud platforms and technologies including container security, secure coding practices, microservice design and secure patterns for serverless and cloud-native computing. The individual will be part of a highly motivated team that is focused on a growing multi-year cloud security program. This individual would provide findings of their research that ultimately would strengthen overall security posture of the organization.

The individual will be part of a highly motivated team that is focused on a growing multi-year cloud security program. This individual would provide findings of their research that ultimately would strengthen overall security posture of the organization.

Major Duties and Responsibilities:

• Architect and optimize security automation workflows to enhance security threat visibility in public cloud.

• Build and maintain automation scripts and security tools to improve security efficiency.

• Mentor junior engineers and contribute to security strategy and roadmap planning

• Configure and monitor cloud security tools and services, collaborating closely with development teams to integrate security best practices into the software development lifecycle and DevOps processes.

• Provide primary operational support and engineering for the public cloud platform and cloud security tools and debug and optimize systems and automate routine tasks.

• Configure, tune and maintain AWS Security Services like Network Firewall, AWS WAF, Firewall Manager, Shield Advanced and Guardduty

• Architect, design and implement container and serverless security principles in enterprise level environment

• Proven ability to design end-to-end security patterns and solutions that may include on-premise and cloud resources that meet enterprise security policies and best practices. 

• Strong knowledge of industry standards and techniques in development and testing

• Implement and manage security posture management solutions and improve the security of applications.

Scope and Dimensions:

• Reports to the Director responsible for Global Cloud Security Engineering

• Executive presence, comfortable in all aspects of technology and business acumen

• Comfortable presenting to IT and business executives

• Capable of driving alignment across the technology organization

• Capable of driving decisions and solutions from the perspective of the customer

Qualifications

Required/Preferred Skills

• Global security experience

• Cloud Security (CCSP) and AWS Security Specialty or other cloud certifications are required

• Experience with CSPM/CNAPP platforms like Palo Alto Prisma/Cortex Cloud or Orca or Wiz Security etc

• Proven knowledge of coding languages like such as Terraform, Python.

• Experience with AWS native security services like AWS WAF, Shield Advanced, Firewall Manager or other third party WAF tools.

• Has a strong capability to work with and partner with delivery teams and stakeholders

• Proven ability to quickly learn and experiment with new security related cloud technologies and tools.

• Proven ability to design end-to-end security patterns and solutions that may include on-premise and cloud resources that meet enterprise security policies and best practices. 

• The individual should have a passion for new emerging technology in the cloud security space

• Solid understanding of services and capabilities delivered by mainstream cloud service providers

• Ability to influence technical discussions and decisions

• Ability to perform security research and document and communicate the findings of their research

• Strong work ethic and sense of urgency

• Demonstrated expertise in designing, implementing and architecting cloud security solutions across leading cloud platforms such as AWS, Azure, or Google Cloud Platform

• Experience in demonstrating effects of leveraging innovative thought to drive business results

• Strong capability to work with and partner with key business leads and understand business strategies and architectures

Required Experience & Education

• College or University degree in Computer Science or a related discipline

• 13-16 years of hands on technical experience in solution design and architecture with primary focus on security products.

About Evernorth Health Services