Evergreen Requisition: 23007995 Information Protection Advisor – Government and FEDRAMP Compliance

Information Protection Advisor

Job Description:

POSITION SUMMARY

The Audit, Risk, and Compliance team aims to enhance Cigna’s security and compliance posture by ensuring appropriate risk mitigation strategies are applied to applicable environments. The Information Protection Advisor will collaborate with organization-wide teams to support audit activities, identify gaps in controls, and drive better control and risk mitigation practices. The successful candidate will have the knowledge and skillset to understand audit best practices and government compliance regulations. This position will primarily be responsible for supporting various government initiatives focused on NIST frameworks and FEDRAMP compliance.The position will also facilitate audits and control design assessments, draft supporting documentation, perform remediation support, and support additional team activities as needed.

ESSENTIAL FUNCTIONS

• Execute key functions of the Audit, Risk, and Compliance program
• Deliver against timelines and manage multiple deliverables
• Meet frequently with enterprise control owners to educate teams on required control activities
• Collaborate with technical teams to interpret control requirements and design appropriate controls
• Assess controls for appropriateness and draft work papers to document the work performed
• Identify and communicate internal and external security/audit risk through the collection and analysis of internal control evidence
• Draft and maintenance of system security plans (SSPs)
• Special projects as assigned to include audit support and remediation projects

QUALIFICATIONS

• Bachelor’s degree in related field with 3+ years of relevant experience
• 6+ years of experience in relevant field without a college degree
• Strong understanding of controls, risk, and audit methodology
• Strong understand of NIST 800-171, NIST 800-53, and FEDRAMP guidance
• Solid understanding of cloud environments
• Self-starter, action oriented, results driven
• CISA, CIA, CISM, or CISSP preferred
• Strong analytical skills and organizational skills
• Focus on quality and service
• Experience working with cross-functional departments to research and resolve issues
• Demonstrated ability to meet multiple deadlines and manage a heavy workload
• Knowledge of audit standards, policies and procedures
• Ability to build and maintain effective working relationships with Management
• Excellent verbal and written communication skills along with presentation skills
• Healthcare, Archer, and Jira experience a plus

If you will be working at home occasionally or permanently, the internet connection must be obtained through a cable broadband or fiber optic internet service provider with speeds of at least 10Mbps download/5Mbps upload.

About The Cigna Group

Doing something meaningful starts with a simple decision, a commitment to changing lives. At The Cigna Group, we’re dedicated to improving the health and vitality of those we serve. Through our divisions Cigna Healthcare and Evernorth Health Services, we are committed to enhancing the lives of our clients, customers and patients. Join us in driving growth and improving lives.

Qualified applicants will be considered without regard to race, color, age, disability, sex, childbirth (including pregnancy) or related medical conditions including but not limited to lactation, sexual orientation, gender identity or expression, veteran or military status, religion, national origin, ancestry, marital or familial status, genetic information, status with regard to public assistance, citizenship status or any other characteristic protected by applicable equal employment opportunity laws.

If you require reasonable accommodation in completing the online application process, please email: [email protected] for support. Do not email [email protected] for an update on your application or to provide your resume as you will not receive a response.

The Cigna Group has a tobacco-free policy and reserves the right not to hire tobacco/nicotine users in states where that is legally permissible. Candidates in such states who use tobacco/nicotine will not be considered for employment unless they enter a qualifying smoking cessation program prior to the start of their employment. These states include: Alabama, Alaska, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Iowa, Kansas, Maryland, Massachusetts, Michigan, Nebraska, Ohio, Pennsylvania, Texas, Utah, Vermont, and Washington State.