What are the responsibilities and job description for the Director of DevSecOps Automation and Engineering(virtual remote) position at Humana?
Description
*Role is open to US Remote*This role will include managing a team of DevSecOps engineers, architects, testers, developers, and specialists who build and support our application security orchestration platform. Additionally, they will support various commercial application security tooling and contribute to enterprise application security strategy.
Responsibilities
This role will leverage agile software development practices and work to embed security throughout Humana information security and technology-related infrastructures (i.e., tools, applications, and systems). Designs, develops, test, and evaluates the security of Humana information security tools, applications, and systems throughout their development life cycle. Defines and establishes best practices for security tool integration and configuration. Decisions are typically related to the implementation of new/updated programs or large-scale projects for the function and supporting technical/operational procedures and processes, and implements strategic plans, drives goals and objectives, and improves performance.
This role reports directly to the Associate Vice President of Product Security
Responsibilities:
• Manages team of associates and contractors
• Manages professional services contract, software renewals, budget and capacity planning.
• Contribute to and execute on our secure software development strategy for the enterprise.
• Manage and drive automation to integrate Application Security into teams across the enterprise
• Partner with our Security Automation Product Owner, Product Security Product Manager, Product Security Governance, DevOps, Enterprise Information Protection and Enterprise Architecture teams.
• Improve and expand application security quality across our entire portfolio of applications
• Create and supports metrics that improved code quality, reduced security defects and progress over time
• Manage continuous release planning and execution and integrate with security design and engineering work across multiple groups and technical constituencies
• Develop and maintain relationships across technology organization, the security industry, peer organizations and other entities as necessary to benchmark Company Application Security program and keep current in best practices
• Develop and mentor staff to achieve career goals and maintain leadership succession planning
Required:
• Bachelor’s degree in related field (Business, Information Services, IT, Information Security, Computer Science etc.);
• 8 years of escalating managerial work-experience in a highly diversified organization. Experience with a complex work environment in progressive management roles in large, complex organizations.
• Experience in enabling organizations with DevOps, DevSecOps or similar large initiatives with high strategy involvement 1-2 yrs.
• Excellent communication skills with the ability to influence others
• Analytical and problem solving skills
• Must be passionate about contributing to an organization focused on continuously improving consumer experiences
• Must be passionate about developer experience, privacy, security and product delivery
Preferred but not required:
• Cloud experience with Azure, GCP, AWS, Heroku – Azure Preferred.
• Experience with developing solution architecture and application architecture
• At least 2 years of experience with product design, delivery, and ownership and managing an operational delivery team.
• Knowledge of common information security management frameworks, including but not limited to:
ISO 27001/27002, ITIL, COBIT, NIST, BSIMM.
• Professional security management certification, such as a Certified Information Systems Security Professional
• (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials preferred but not required if devsecops experience.
To ensure Home or Hybrid Home/Office associates’ ability to work effectively, the self-provided internet service of Home or Hybrid Home/Office associates must meet the following criteria:
At minimum, a download speed of 25 Mbps and an upload speed of 10 Mbps is recommended to support Humana applications, per associate.
Wireless, Wired Cable or DSL connection is suggested.
Satellite, cellular and microwave connection can be used only if they provide an optimal connection for associates. The use of these methods must be approved by leadership. (See Wireless, Wired Cable or DSL Connection in Exceptions, Section 7.0 in this policy.)
Humana will not pay for or reimburse Home or Hybrid Home/Office associates for any portion of the cost of their self-provided internet service, with the exception of associates who live or work from Home in the state of California, Illinois, Montana, or South Dakota. Associates who live and work from Home in the state of California, Illinois, Montana, or South Dakota will be provided a bi-weekly payment for their internet expense.
Humana will provide Home or Hybrid Home/Office associates with telephone equipment appropriate to meet the business requirements for their position/job
Scheduled Weekly Hours
40Salary : $12 - $0