Information Protection Advisor- Hybrid

Cigna GroupBloomfield, CT
Hybrid

About The Position

Cigna-Evernorth Services Inc. seeks an Information Protection Advisor for the Bloomfield, CT location to identify, evaluate, and lead technical security analyses to ensure that all systems and processes meet applicable information security requirements. This role involves embedding security assessments into development and operational workflows, providing in-depth technical analysis of security requirements, and collaborating with engineering teams for secure design and implementation. The advisor will partner with internal stakeholders to define security requirements, assess the feasibility of scalable security controls, and promote the integration of security into development and operational practices. Additionally, the role includes conducting comprehensive security assessments of third-party service providers, evaluating their security posture, and ensuring alignment with organizational standards. The advisor will design and implement streamlined, automated security processes, apply creative problem-solving to improve security posture, and provide strategic security guidance to cross-functional teams and leadership, serving as a thought leader in secure development and operations practices.

Requirements

  • Bachelor’s degree in Computer Science or related field and 2 years of experience.
  • Automating Security solutions in a CI/CD pipeline
  • Integrating technologies including Checkmarx, BlackDuck, & NowSecure, via scripts and triggers
  • Static application security testing (SAST) using Checkmarx
  • Dynamic application security testing (DAST) using RedHat ACS, BlackDuck, & PrismaCloud
  • Application security posture management using Apiiro
  • False positive triage automation
  • SBOM Evaluation
  • Python-based bots for troubleshooting and bulk updates
  • Ansible playbooks for integration and migration tasks
  • CI/CD tools including Azure DevOps and Jenkins
  • Docker container security practices
  • Authentication and Authorization design
  • Vulnerability management
  • Integrating security into design and implementation phases
  • Referencing security standards including ISO27001, SOC 2 Type II, Open-Source Licensing

Responsibilities

  • Embed security assessments into development and operational workflows to support continuous compliance.
  • Provide in-depth technical analysis of security requirements to protect information processed, stored, or transmitted across systems.
  • Collaborate with engineering teams to ensure secure design and implementation throughout the system lifecycle.
  • Partner with internal stakeholders to define security requirements and assess the feasibility of implementing scalable security controls.
  • Promote the integration of security into development and operational practices to support secure-by-design principles.
  • Conduct comprehensive security assessments of third-party service providers and outsourced solutions.
  • Evaluate their security posture and ensure alignment with organizational standards and industry best practices, including supply chain risk considerations.
  • Design and implement streamlined, automate security processes that enhance the efficiency and effectiveness of security controls.
  • Apply creative problem-solving and strategic thinking to improve security posture while enabling business agility.
  • Provide strategic security guidance to cross-functional teams an leadership.
  • Serve as a thought leader in secure development and operations practices, aligning security initiatives with broader business goals and fostering a culture of shared responsibility for security.

Benefits

  • medical
  • vision
  • dental
  • well-being and behavioral health programs
  • 401(k)
  • company paid life insurance
  • tuition reimbursement
  • a minimum of 18 days of paid time off per year
  • paid holidays
  • leaves of absence
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service