Company name
Humana Inc.
Location
Glen Allen, VA, United States
Employment Type
Full-Time
Industry
Engineering, It, Dot Net
Posted on
Apr 11, 2023
Profile
Description
This role will help drive the transition of Humana IT to a DevSecOps organization. This transition impacts culture, tools, automation, and development practices.
In this role you will be on a team of DevSecOps engineers doing analysis, hunting bugs, driving DevSecOps, cultural transformation and building our internal self-service tooling, while serving as a mentor for our development teams.
The Lead DevOps Engineer Enables the automation of software code deployment by eliminating functional silos existing between development and production. The Lead DevOps Engineer works on problems of diverse scope and complexity ranging from moderate to substantial.
Responsibilities
Tasks for this role include:
Work with application development teams to ensure that micro-service operations adhere to a common interface for service management and operational lifecycle
Engineer deployment and configuration management solutions to meet the needs of application deployment and management.
Guide and consult on infrastructure design and implementation, library and service integration, and coding practices.
Contribute to and execute secure software development strategy for the enterprise.
Execute on driving application security automation into teams across the enterprise
Partner with our Security Automation Product Owners, Compliance and governance, platform teams and DevOps teams.
Improve and expand application security quality across our entire portfolio of applications.
You are a great fit if the following are true:
You must love developers and are passionate about customer experience.
Have experience in software engineering with .NET Core, Microservices and Azure cloud.
You love breaking and building, you can code and hack.
You can handle complicated bugs, security issues, and pipeline problems.
You have a passion for protecting sensitive data and new ways of solving complex problems.
You have a strong scripting and automation background (you can write in one or more of the following python, JavaScript/TypeScript or PowerShell)
Architects, Junior Developers and Red Teamers don't scare you.
You mentor others, you love to share and support, serve as expert for escalated analysis.
Can demonstrate where you made a difference, solved problems and help make dev teams happy.
Know what the OWASP top 10 is and understand defensive techniques.
You can demonstrate building solutions with Terraform, Ansible, or other cloud native approaches.
You have strong engineering experience across a variety of technologies and languages.
You are passionate about developer experience, privacy, security, quality, and product delivery
Required Qualifications
Bachelor's Degree in Computer Science or related field
At least 10 years of experience architecting, developing, and testing software applications
At least 2 years of experience with Secure Engineering, including familiarity with the leading toolsets. Terraform, Ansible, Chef, Puppet, Hashicorp Vault, Nomad, Kubernetes, Cloud Foundry or similar experience.
Exposure to SAST, DAST, SCA, IAST tooling.
Knowledge of OWASP and risk remediation
Experience with .NET Core, MVC, C#, CSS, JS Frameworks (VueJS, Angular, NodeJS), PowerShell, REST APIs, and Databases (SQL Server, NoSQL/Mongo, Cognos)
Strong knowledge of cloud principals and patterns including Container or Kubernetes
Solid experience in writing scalable, stateless applications and APIs
Experience with Azure DevOps, GIT, CI/CD, TDD, and Automated Build Processes
Experience with Cloud Technologies (Azure, GCP, AWS, etc.)
Experience with DevSecOps, Software Development Life Cycle (SDLC), Agile (Scrum/Kanban), Service Oriented Architecture (SOA), Object Oriented Principles, and Continuous Improvement Processes
Experience with Design Patterns, Dependency Injection, Web API 2 and Microservices
Experience with Azure Devops or Github automation, or similar experience with CI/CD tooling.
Excellent communication skills with the ability to influence others, can navigate complex organization structures and processes.
Exceptional analytical and problem-solving skills
Preferred Qualifications
Strong experience in establishing and rolling out DevOps or DevSecOps
Experience in debugging highly distributed systems
Experience with Hashicorp Vault, Consul and Terraform enterprise.
Experience with CheckMarx, Contrast, HCL AppScan, or NowSecure.
Experience with Docker, LXC, Microsoft Containers or other container models
Experience orchestrating commercial off the shelf (COTS) products
Azure Cloud or Amazon Web Services (AWS) Certifications
Experienced in writing unit and integration tests
Knowledge of common information security management frameworks, including but not limited to:
ISO 27001/27002, ITIL, COBIT, NIST, BSIMM.
Professional certification, such as a Certified Information Systems Security Professional (CISSP), AZ-300, AZ-500, GCP Professional Cloud Architect or other similar credentials a plus but not required.
Development experience using Visual Studio, Typescript, Visual Studio Team Services (VSTS), NuGet Packages, JQuery, XML, JSON, HTML 5, and Browser Local Storage
Experience with CheckMarx, Contrast, ThreadFix, ThreatModeler, AppScan, LaunchDarkly, and Automated Test Tools
Experience with Secure Engineering, including familiarity with the leading toolsets. Terraform, Ansible, Chef, Puppet, Hashicorp Vault, Nomad, Kubernetes, Cloud Foundry or similar experience.
Experience using Helix, Service Oriented Helix Architecture (SOHA), Feature Flags, and Fast Health Interoperability Resources (FHIR)
Additional Information
Work-At-Home Requirements
WAH requirements: Must have the ability to provide a high-speed DSL or cable modem for a home office. Associates or contractors who live and work from home in the state of California will be provided payment for their internet expense.
A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required.
Satellite and Wireless Internet service is NOT allowed for this role.
A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information
Scheduled Weekly Hours
40
Humana complies with all applicable federal civil rights laws and does not discriminate on the basis of race, color, national origin, age, disability, sex, sexual orientation, gender identity or religion. We also provide free language interpreter services. See our https://www.humana.com/legal/accessibility-resources?source=Humana_Website.
Company info
Humana Inc.
Website : http://www.humana.com