This job post is closed and the position is probably filled. Please do not apply. Work for TigerConnect and want to re-open this job? Use the edit link in the email when you posted the job!
๐ค Closed by robot after apply link errored w/ code 404 1 year ago
\nAs an integral part of the DevSecOps team, the DevOps Security Engineer is passionate about security and wants to have a meaningful impact within the Healthcare space. This individual will be part of a team charged with making sure TigerConnect is secure and stays at the top level of security and reliability in the industry. Join us and help manage/secure our AWS hosted infrastructure. Responsibilities will include hands-on security management, monitoring, discovery, and remediation of all security related issues while working cross functionally with other departments on company-wide initiatives and compliance. \n\nThe ideal candidate's background will include a strong emphasis on information security, vulnerability management, infrastructure as code/automation, public cloud infrastructure, compliance, secure software development, and other security best practices. \n\n \n\nWhat You'll Own:โ\n\n\nContribute to the design and integration of cyber security toolsets to enable more automated discovery, remediation, and alerting of system vulnerabilities.\n\nBuild and integrate security tools into the CI/CD pipeline.\n\nDiscover, manage, and remediate findings from security tools, pen test reports, and compliance requirements.\n\nManage and maintain compliance and certifications (existing and new).\n\nHelp select and manage relationships with security vendors and partners.\n\nAnalyze and respond to production security notifications in a timely manner.\n\nFoster DevSecOps culture and advocate for a security-first mindset amongst Security, QA, Development, and DevOps teams.\n\nDeploying web and service-based applications in multiple instances of our PaaS.\n\nContinually research, evaluate, and apply emerging technologies to improve security for our products.\n\nProvide technical oversight to the development process including reviewing the technical design and the deployment architecture.\n\nWork cross functionally with all departments to assist with security related issues as it relates to engineering, client care, and sales teams.\n\nWillingness to take ownership, troubleshoot hands-on, and be on-call for security issues in a 24/7 environment.\n\n\n\n\nWhat You've Accomplished:\n\n\nExperience in monitoring and responding to security events\n\nProven track record of building and maintaining secure cloud architectures for mission critical Internet-facing applications.\n\nExperience implementing and maintaining compliance (HIPAA, HI-TRUST, FEDRAMP)\n\nExperience with build-time dependency management, unit testing and code-coverage tools, test automation techniques and tools.\n\nExperience and understanding of microservices architecture, design patterns, and secure software development methodologies.\n\nExperience building and managing infrastructure-as-code including automation/scripting tools and languages. \n\nExperience in DevOps culture and the ability to teach and profess is highly desired.\n\nAbility to communicate security and risk-related concepts to technical and nontechnical audiences at both the executive and working level.\n\n\n\n\nWhat You Bring to the Table:\n\n\n3+ years of experience, at least 2+ years of commercial experience as a Security Engineer (including at least 1 year of current commercial experience as a DevOps Engineer) with specific focus on public cloud infrastructure, multi-tenant enterprise software security, compliance programs (HIPAA/HiTrust/FedRamp), and supporting production 24x7 highly available infrastructure with a DevOps mindset. \n\nBackground in information security specializing in securing public cloud environments\n\n\n\n\n\nLinux and configuration management tools (Chef and Terraform)\n\nStrong public cloud experience (AWS)\n\nSecurity certifications are a plus (CCSP, CISSP, AWS Security)\n\nSecurity policy development, implementation and enforcement.\n\nIntegrating security into a CI/CD pipeline\n\nSSL certificate and key management policies\n\nScripting in either Python, Ruby, or Bash.\n\nAbility to communicate security and risk-related concepts to technical and nontechnical audiences at all levels\n\nAbility to build systems and tools with little oversight\n\nStrong team player, working with multiple departments to strengthen Security best practices\n\nStrong self learner, a track-record of implementing new and rapidly adapting technologies\n\nAbility to handle high stress situations with ease\n\n\n\n\n#ZP \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to DevOps, InfoSec, Engineer, Executive, Cloud and Sales jobs that are similar:\n\n
$75,000 — $120,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐ We hire old (and young)\n\n
\n\n#Location\nLos Angeles, California, United States
# How do you apply?\n\nThis job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.