Senior Threat and Vulnerability Engineer(remote)

at  Humana

BECOME A PART OF OUR CARING COMMUNITY AND HELP US PUT HEALTH FIRST

Do you have experience in IT Security Configuration Management? If so, you might be a good fit for a position on the Security Configuration Management Team at Humana. The Senior Security Configuration Management Engineer ensures that assets connected to our network adhere to internal/external mandates and security best practices such as CIS Benchmarks. The Senior Security Configuration Management Engineer work assignments involve moderately complex to complex issues where the analysis of situations or data requires an in-depth evaluation of variable factors.

The Senior Cloud Security Configuration Management Engineer manages cloud policy compliance scanning and onboarding, monitors overall compliance and configuration drift with regulatory mandates and security best practices. Begins to influence department’s strategy. Makes decisions on moderately complex to complex issues regarding technical approach for project components, and work is performed without direction. Exercises considerable latitude in determining objectives and approaches to assignments. Additional responsibilities include:

• Review and identify gaps to expand our cloud monitoring coverage
• Work with internal and external teams to identify opportunities to proactively prevent cloud security misconfigurations through use of technical controls
• Review, test and configure scanning and reports
• Drive remediation through transparent tracking and reporting (automated as much as possible)
• Partner with business and technology teams to define and drive security best practices to secure our assets
• Come along side internal Policy and Compliance teams to fully understand compliance requirements and apply those to our scanning & monitoring
• Design and document processes and procedures as necessary
• Champion process and user experience improvements in Security Configuration Management Team

REQUIRED QUALIFICATIONS

• Bachelor’s Degree
• 5 years experience in Threat and Vulnerability Management
• Highly experienced with the installation and configuration of firewalls, intrusion detection systems, anti-virus software, and vulnerability scanning systems.
• Must be passionate about contributing to an organization focused on continuously improving consumer experiences

PREFERRED QUALIFICATIONS

• Master’s Degree in a Technical Field
• Security Certification
• Prisma, Twistlock, Rapid 7

Remote/WAH requirements:

• WAH requirements: Must have the ability to provide a high speed DSL or cable modem for a home office. Associates or contractors who live and work from home in the state of California will be provided payment for their internet expense.
• A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required.
• Satellite and Wireless Internet service is NOT allowed for this role.
• A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information

DESCRIPTION OF BENEFITS

Humana, Inc. and its affiliated subsidiaries (collectively, “Humana”) offers competitive benefits that support whole-person well-being. Associate benefits are designed to encourage personal wellness and smart healthcare decisions for you and your family while also knowing your life extends outside of work. Among our benefits, Humana provides medical, dental and vision benefits, 401(k) retirement savings plan, time off (including paid time off, company and personal holidays, volunteer time off, paid parental and caregiver leave), short-term and long-term disability, life insurance and many other opportunities.

ABOUT US

Humana Inc. (NYSE: HUM) is committed to putting health first – for our teammates, our customers and our company. Through our Humana insurance services and CenterWell healthcare services, we make it easier for the millions of people we serve to achieve their best health – delivering the care and service they need, when they need it. These efforts are leading to a better quality of life for people with Medicare, Medicaid, families, individuals, military service personnel, and communities at large.

• Review and identify gaps to expand our cloud monitoring coverage
• Work with internal and external teams to identify opportunities to proactively prevent cloud security misconfigurations through use of technical controls
• Review, test and configure scanning and reports
• Drive remediation through transparent tracking and reporting (automated as much as possible)
• Partner with business and technology teams to define and drive security best practices to secure our assets
• Come along side internal Policy and Compliance teams to fully understand compliance requirements and apply those to our scanning & monitoring
• Design and document processes and procedures as necessary
• Champion process and user experience improvements in Security Configuration Management Tea