Company name
Humana Inc.
Location
Colorado Springs, CO, United States
Employment Type
Full-Time
Industry
Engineering, It
Posted on
Jul 13, 2022
Profile
Description
This is a Work from Home / Remote Optional Position
In this role, you will be defining and operationalizing secrets governance framework and data security metrics for Humana. You will have direct contribution to the success of enhancing Humana's security posture by driving better tools and processes governing the organization's IT secrets with innovative solutions and technologies.
We are searching for an experienced engineer who can define and operationalize secrets management technologies and processes across the organization to increase Humana's security posture and deepen EIP's oversight of its application secrets.
As an Engineer you will play a key role in Enterprise Data Protection & Security team providing technical oversight of architecture and design of secrets related security tools, assessments and maturity roadmap. You will work closely with all areas of Enterprise Information Protection (EIP), business units, and strategic partners, and vendors to ensure data security initiatives and operations are in line with policies, standards and applicable controls.
Responsibilities
Design and implement secrets management technologies such as Venafi, Hashicorp Vault, Hardware Security Modules, Azure Key Vault etc.
Monitor and measure continuous adoption and use of the security certificate program.
Establish and manage on-boarding process for engineering teams for certificate issuance, renewal, and revocation processes across Humana's multi cloud and on prem enclaves.
Enable teams to pilot certificate automation capability and improve capability based on pilot feedback.
Advise on security best practices & routinized processes in the areas of data security.
Contribute and drive education for certificate automation and overall secrets governance.
Identify & maintain policies and standards to drive compliance.
Influence adoption and prioritization of policies and standards.
Develop strong partnership cross functionally with EIP and engineering teams.
Required Qualifications
7 years of experience in architecture, design and implementation of secrets governance and related technologies.
Experience in modern cryptography and its common applications, such as PKI, TLS 1.2/1.3, RSA/ECC cypher suites, DH key establishment, EST, OCSP, etc.
Experience with PKI processes and governance; establishment of PKI processes and PKI governance
Experience working with Cloud (Azure, AWS, GCP other cloud platforms) and common application architectures (app/web servers, containerization, etc.)
Working knowledge and understanding of systems development life cycle (SDLC), security regulations and best practices such as PCI DSS, SOX, HIPAA, GDPR and the ISO 27000 family of standards.
Basic understanding of modern application delivery through automation and pipelines
Agile delivery experience
Secure Coding experience
Preferred Qualifications
Bachelor's Degree in a Technical Field
CISSP, CISM or equivalent, Cloud Architecture / Cloud Security Certifications (AWS, Azure, GCP), Cloud Security Alliance (CCSP, CCSK)
Knowledge of the Mitre ATT&CK framework, NIST Cyber Security Framework, familiarity with common security controls in the enterprise (Firewall, Proxy, AV, SIEM, etc.
Experience with deploying and configuring Venafi and Hashicorp Vault and Terraform Enterprise in a highly available environment
Experience developing automation solutions in Python, Java or PowerShell
DH key establishment, EST, OCSP
Familiarity with Power BI, Power Apps, Power Automate, and SharePoint
Additional
Humana and its subsidiaries require vaccinated associates who work outside of their home to submit proof of vaccination, including COVID-19 boosters. Associates who remain unvaccinated must either undergo weekly negative COVID testing OR wear a mask at all times while in a Humana facility or while working in the field.
Work-At-Home Requirements
WAH requirements: Must have the ability to provide a high speed DSL or cable modem for a home office. Associates or contractors who live and work from home in the state of California will be provided payment for their internet expense.
A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required.
Satellite and Wireless Internet service is NOT allowed for this role.
A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information
#LI-WM1
#LI-Remote
#KPI
#SecretsGovernance
#Azure
#SecurityFramework
Scheduled Weekly Hours
40
Company info
Humana Inc.
Website : http://www.humana.com