Senior Cloud And Application Security Architect (Virtual Remote Home Office Eligible)

Humana Inc. Louisville , KY 40202

Posted 4 months ago

Description

The Senior Cloud Architect designs and develops IT applications architecture solutions to business problems in alignment with the enterprise architecture direction and standards within System Quality Management. Partner with application architects, domain architects, and other key stakeholders to translate business needs into system architecture and design specifications that are forward-thinking, scalable, robust, and valuable. Exploit opportunities to define standards, streamline development processes, and model quality software development behaviors in conjunction with other members of the technology leadership team. The role requires a grasp of application security principles and practices and a background working in an application development and coding environment within a large enterprise business.

Responsibilities

  • Identify, define, support, and advocate for technology solutions, standards, and practices informed by industry and practical experience for application development teams. Examples may include cloud-ready or cloud native application development, API focused service orientation, secure coding practices, "visible" architecture, automation, etc.

  • Develop and maintain documentation related to technical roadmaps, secure coding policies, procedures and standards, code review methodologies, etc.

  • Align on high level architecture and approach with other architects to drive implementations in accordance with technical roadmaps.

  • Creating security policies and standards around Cloud Security, Container Security, Configuration Management, Infrastructure as Code.

  • Performing security reviews, identifying gaps in security architecture and design

  • Champion a technology culture that values learning, feedback loops, continuous improvement, DevOps principles, and growth mindsets.

  • Researching new security technologies and their application to the corporate environment

  • Defining and documenting how the implementation of a new system or interface impacts the security posture of the current environment

  • Planning system implementation to ensure that all system components are integrated and aligned

  • Documenting and addressing the organization's information security, architecture and systems security engineering requirements throughout the development lifecycle

  • Participate in designing IT and Cloud security strategy, system security controls and secure configuration.

Required Qualifications

  • Bachelor's Degree in Computer Science, Information Technology or related field

  • 7+ years experience as a senior developer in large IT projects

  • Application development / software development experience, understanding of security protocols and APIs

  • Experience in following security functional areas: application security, identity and access management, vulnerability management.

  • Experience with agile software development methods

  • Excellent verbal and written communication and interpersonal skills

Preferred Qualifications

  • Master's Degree in Computer Science, Information Technology or a related field

  • Minimum of 3+ years in the following security functional areas: application security, authentication and authorization, identity and access management, dynamic application security testing, static application security testing, data security, security monitoring or SSO/2FA security, vulnerability management.

  • Advanced knowledge of security capabilities and constraints related to deploying cloud native and multi-cloud applications and infrastructure

  • Cloud development and design

  • Experience in designing or implementing a security release management strategy for enterprise cloud applications

  • Familiarity with application vulnerability scanning tools

  • Solid knowledge and understanding of securing all major web server environments and cloud platforms based on OWASP top ten recommendation

Scheduled Weekly Hours
40


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Team Lead Security Control Guidance And Automation ( Remote Virtual Home Office Eligible)

Humana Inc.

Posted 7 days ago

VIEW JOBS 10/11/2019 12:00:00 AM 2020-01-09T00:00 Description The role leads a team of cyber security professionals with specialized skills in security control guidance identifying and applying control requirements and will help driving the control implementation with specific focus on automation. The role will identify and evaluate cyber security control sets and identify and apply control requirements to information systems (IT) in alignment with cyber security policies and procedures. The Lead supports and leads the team in its work on problems of diverse scope and complexity ranging from moderate to substantial. Responsibilities The Lead of cyber security control guidance and automation ensures that IT and cyber security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with cyber security and IT standards. The Lead utilizes security control frameworks to identify applicable security control requirements to ensure regulatory compliance, alignment with existing policies and procedures. The role participates in control design and defines requirements for control monitoring to ensure compliance with control requirements and efficient operation of controls. The Lead provide guidance on implementation of IT and cyber security policies. The Lead will manage the performance and professional growth of 3-4 team members. Requirements: * Exercise independent judgment and decision making on complex issues regarding job duties and related tasks, and work under minimal supervision. * Use independent judgment requiring analysis of variable factors and determining the best course of action. * Advise leadership and executives on control strategies * Lead security control guidance and automation team managing resources, prioritizing tasks and ensuring the quality of deliverables * Lead and expand the control guidance and automation program by enhancing existing processes and utilizing existing technology. * Drive the level of automation for control library and control implementation processes. * Develop and drive control related automation program * Work with partners in business and IT to identify root causes for issues and resolve issues creating a positive user experience. * Work closely with cyber security teams to ensure seamless execution of processes and timely delivery to customers. * Distribute work tasks and redirect personnel and resources when needed. * Identify gaps in process and procedures. * Be responsible for process improvements, including initiating, creating, updating process documentation. * Drive integration of processes across disparate teams to align to a single, cohesive strategy Required Qualifications * Bachelor's degree in Computer Science, Information Technology or a related field * 8 or more years of technical cyber security experience * 2 or more years of project or team leadership experience * Experience working with control frameworks * Skilled at identifying security risks and exposures * Experience integrating Cyber Security technologies with existing technologies including cloud services * Strong ability to assess urgency and prioritization and make good decisions based upon situational circumstances * Excellent communication skills with the ability to influence others * Analytical and problem solving skills * Must be passionate about contributing to an organization focused on continuously improving consumer experiences Preferred Qualifications * Master's Degree in Computer Science, Information Technology or a related field * Certifications: CISA, CISSP, HCISPP, CCSP, and/or CISM; Cloud related certifications Additional Information Scheduled Weekly Hours 40 Humana Inc. Louisville KY

Senior Cloud And Application Security Architect (Virtual Remote Home Office Eligible)

Humana Inc.