Director of DevSecOps Automation and Engineeringvirtual remote

Humana Inc.
Kansas City, United States of America
11 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Remote
Kansas City, United States of America

Tech stack

Amazon Web Services (AWS)
Applications Architecture
Azure
Cloud Computing
Control Objectives for Information and Related Technology (COBIT)
Software Quality
Computer Security
Information Systems
Data Security
DevOps
Information Security Management
Internet Services
Information Systems Security Architecture Professional
Software Engineering
Google Cloud Platform
Software Security
Heroku
Information Technology
Devsecops
Security Orchestration, Automation & Response

Job description

This role will leverage agile software development practices and work to embed security throughout Humana information security and technology-related infrastructures (i.e., tools, applications, and systems). Designs, develops, test, and evaluates the security of Humana information security tools, applications, and systems throughout their development life cycle. Defines and establishes best practices for security tool integration and configuration. Decisions are typically related to the implementation of new/updated programs or large-scale projects for the function and supporting technical/operational procedures and processes, and implements strategic plans, drives goals and objectives, and improves performance.

This role reports directly to the Associate Vice President of Product Security

Responsibilities :

Manages team of associates and contractors

Manages professional services contract, software renewals, budget and capacity planning.

Contribute to and execute on our secure software development strategy for the enterprise.

Manage and drive automation to integrate Application Security into teams across the enterprise

Partner with our Security Automation Product Owner, Product Security Product Manager, Product Security Governance, DevOps, Enterprise Information Protection and Enterprise Architecture teams.

Improve and expand application security quality across our entire portfolio of applications

Create and supports metrics that improved code quality, reduced security defects and progress over time

Manage continuous release planning and execution and integrate with security design and engineering work across multiple groups and technical constituencies

Develop and maintain relationships across technology organization, the security industry, peer organizations and other entities as necessary to benchmark Company Application Security program and keep current in best practices

Develop and mentor staff to achieve career goals and maintain leadership succession planning, At minimum, a download speed of 25 Mbps and an upload speed of 10 Mbps is recommended to support Humana applications, per associate.

Wireless, Wired Cable or DSL connection is suggested.

Satellite, cellular and microwave connection can be used only if they provide an optimal connection for associates. The use of these methods must be approved by leadership. (See Wireless, Wired Cable or DSL Connection in Exceptions, Section 7.0 in this policy.)

Humana will not pay for or reimburse Home or Hybrid Home/Office associates for any portion of the cost of their self-provided internet service, with the exception of associates who live or work from Home in the state of California, Illinois, Montana, or South Dakota. Associates who live and work from Home in the state of California, Illinois, Montana, or South Dakota will be provided a bi-weekly payment for their internet expense.

Humana will provide Home or Hybrid Home/Office associates with telephone equipment appropriate to meet the business requirements for their position/job

Scheduled Weekly Hours

Requirements

Bachelor's degree in related field (Business, Information Services, IT, Information Security, Computer Science etc.);

8 years of escalating managerial work-experience in a highly diversified organization. Experience with a complex work environment in progressive management roles in large, complex organizations.

Experience in enabling organizations with DevOps, DevSecOps or similar large initiatives with high strategy involvement 1-2 yrs.

Excellent communication skills with the ability to influence others

Analytical and problem solving skills

Must be passionate about contributing to an organization focused on continuously improving consumer experiences

Must be passionate about developer experience, privacy, security and product delivery

Preferred but not required:

Cloud experience with Azure, GCP, AWS, Heroku - Azure Preferred.

Experience with developing solution architecture and application architecture

At least 2 years of experience with product design, delivery, and ownership and managing an operational delivery team.

Knowledge of common information security management frameworks, including but not limited to:

ISO 27001/27002, ITIL, COBIT, NIST, BSIMM.

Professional security management certification, such as a Certified Information Systems Security Professional

(CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials preferred but not required if devsecops experience.

To ensure Home or Hybrid Home/Office associates' ability to work effectively, the self-provided internet service of Home or Hybrid Home/Office associates must meet the following criteria

Apply for this position