Security Assurance Advisor - Hybrid

Information Protection Advisor - Security Assurance - Hybrid MN or PA

Let's create a better future - together. At Cigna, we are seeking security and compliance professionals looking to advance their career and be a part of a team performing impactful work. Cigna offers unique learning opportunities, compelling growth and leadership tracks, flexible work arrangements, and competitive benefits. Come join the hundreds of IT and security professionals who play a meaningful role in improving the health, well-being, and peace of mind of those we serve.

You. At your best. Working at Cigna is rewarding - You can expect to enjoy:

• Comprehensive health plan options, including medical, dental, and vision
• 401k and employer matching
• At least 18 days of PTO plus paid holidays, caregiver leave, and bought time off
• 8 hours of additional paid time off each year to volunteer in the community
• A Company-wide recognition program
• Reimbursement for educational development opportunities
• Discounts on things that matter to you, like pet insurance

The position will place you on the Integrated Risk Management team within Cigna's Information Protection (CIP) department. CIP is responsible for managing information security, including security risk management, for the organization. This team is focused on improving assurance program maturity through establishing risk quantification capabilities and integrating risk management practices in all assurance services.

The Security Assurance Advisor role offers you the opportunity to support a unique program initiative intended to streamline assurance service delivery. This multi-dimensional initiative is focused on maturing a Cigna-developed security assurance framework and re-organizing services to deliver using this framework to achieve a "test once, use as many as possible" philosophy. This is a high-impact initiative that will offer several enhancements to CIP team members and internal customers.

The Security Assurance Advisor will collaborate with team members on topics such as assessments governing system authorization, "crown jewel" asset evaluations, state and federal regulatory compliance assessments, issues management, and governance, risk and compliance (GRC). Team members will work closely with, and learn from, information system and control owners, Enterprise Risk Management, and peers deeply specialized in delivering assurance services. This is a hybrid role requiring 1 day a week onsite in Cigna's Philadelphia or Minnesota location.

Successful team members will demonstrate their ability to:

• Develop strong relationships with IT and Security stakeholders
• Recognize best practices in performing information security controls
• Lead cross-team discussions in a virtual setting
• Effectively communicate project status to team members and senior management
• Recognize factors that contribute to an increase or decrease in inherent and residual risk
• Navigate ambiguity and provide recommendations on how to solve unstructured problems

We partner, collaborate and keep our promises. Why you should join this team:

• We're a collection of driven individuals from different backgrounds focused on getting to the best results, and collaborating to do so
• We know that compliance and risk management is serious business, but we have fun too
• We're dedicated to building knowledge and creating a culture where our partners understand the value and the benefit of the work we do.
• We push the boundaries to ensure we're always improving the way we work
• We work flexibly to ensure we are available to the team and to meet life's demands

We are excited to hear from you if you have

• A passion for asking questions and making an impact
• At least 3 years of IT audit or IT compliance experience with a Bachelor's Degree in computer related field or equivalent
• Client or customer-facing experience
• Project management experience
• Certification in information security and/or audit (CISA, Security+, SSCP, GSEC, etc) is preferred but not required
• Strong knowledge of security and regulatory control framework such as AICPA TSP-100a, NIST CSF, NIST 800-53, and HIPAA
• Polished written and oral communication skills
• Proficiency using Microsoft Office and Microsoft Excel
• Experience working in large, complex IT organizations is preferred but not required

If you will be working at home occasionally or permanently, the internet connection must be obtained through a cable broadband or fiber optic internet service provider with speeds of at least 10Mbps download/5Mbps upload.

About The Cigna Group

Doing something meaningful starts with a simple decision, a commitment to changing lives. At The Cigna Group, we're dedicated to improving the health and vitality of those we serve. Through our divisions Cigna Healthcare and Evernorth Health Services, we are committed to enhancing the lives of our clients, customers and patients. Join us in driving growth and improving lives.

Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.

If you require reasonable accommodation in completing the online application process, please email: [email protected] for support. Do not email [email protected] for an update on your application or to provide your resume as you will not receive a response.

The Cigna Group has a tobacco-free policy and reserves the right not to hire tobacco/nicotine users in states where that is legally permissible. Candidates in such states who use tobacco/nicotine will not be considered for employment unless they enter a qualifying smoking cessation program prior to the start of their employment. These states include: Alabama, Alaska, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Iowa, Kansas, Maryland, Massachusetts, Michigan, Nebraska, Ohio, Pennsylvania, Texas, Utah, Vermont, and Washington State.