DevSecOps Engineer

Posted: 07/01/2022
Information Technology Dublin, Ohio


Description

Location: This position is located at our Dublin, OH campus with hybrid flexibility.

We’re on a mission to make healthcare simpler and more effective. We fight to ensure our members get the care they need, when they need it, at the most affordable cost – that’s what makes us Healthcare Warriors™. If you’d like to join us, we’d love to talk to you – even if you don’t match every single requirement.

The Development, Security and Operations (DevSecOps) Engineer will add drive direct business value by enabling and implementing DevSecOps in our Amazon Web Services (AWS) environment, ultimately accelerating our time-to-value. This hands-on DevSecOps Engineer will lead automation of software development, testing and security of quality applications, along with their deployment into production. They will collaborate with a variety of stakeholders and act as a guide, coach, mentor and trainer to the Application Development leaders, partnering with them to develop accelerators to update strategies and roadmaps for our DevSecOps integration with our AWS platform.


What you’ll do

  • Serve as primary owner/stakeholder for SecOps scanning/vulnerability tools focused on: IaC, open source/supply chain, secure coding, and container security.
  • Maintain and support the CI/CD pipelines for existing assets as well as decompose monoliths using lean and agile practices, 12-factor techniques, cloud native, and cloud architecture to support migration of on premises assets to AWS.
  • Create and maintain new pipelines to support ongoing application development projects.
  • Develop and maintain Infrastructure-as-Code (IaC) for both cloud infrastructure and cloud applications with security embedded using technologies like Terraform and CloudFormation.
  • Guide, Coach, Mentor product teams on DevSecOps practices, understand and champion security and compliance aspects of DevSecOps.
  • Create and maintain technology accelerators, standards and decision trees, reference engineering implementations, training and educational materials for product teams and technical guides.
  • Perform current state analysis of the business’ system security controls and measures against industry leading security standards and provide recommendations for enhancement.
  • All other duties as assigned.


What you’ll bring

  • Education: Bachelor’s degree and/or 5+ years’ equivalent work experience in cloud application development required.
  • Certification / Licensure: Amazon Web Services (AWS) Professional Certification(s) preferred.
  • Experience designing and maintaining vulnerability workflows from identification and triage through resolution/remediation.
  • Experience with Cloud Security toolsets like: Cloud Conformity, Snyk, SonorQube, Security Information and Event Management (SIEM) tools, etc.
  • Functional skills in software development (Python, JavaScript, NodeJS, or TypeScirpt).
  • Experience working on multi-account, multiproduct environments within AWS.
  • Prior orchestration experience with AWS Infrastructure as Code using AWS CDK, CloudFormation, or Terraform.
  • Expertise provisioning and managing various services within AWS (ex: VPC, ECS, API Gateway, Aurora RDS, S3, CloudWatch, etc.).
  • Understanding of top server-less vulnerabilities and how to avoid them
  • Excellent written and oral communication skills, capable of translating technical concepts to non-technical stakeholders at all levels of the business.
  • Strong administrative/technical skills; Comfort working on a PC using Microsoft Office (Outlook, Word, Excel, PowerPoint), IM/video conferencing (Teams & Zoom), and telephones efficiently.
  • Trustworthy and accountable behavior, capable of viewing and maintaining confidential information daily.


What’s in it for you

  • Compensation: Competitive base pay, incentive plans and employee referral bonuses.
  • Coverage: Health, vision and dental featuring our best-in-class healthcare navigation services, along with life insurance, legal and identity protection, adoption assistance, EAP, Teladoc services and more.
  • Retirement: 401(k) plan with up to 4% employer match and full vesting on day one.
  • Balance: Paid Time Off (PTO), 7 paid holidays, parental leave, volunteer days, paid sabbaticals, and more.
  • Development: Tuition reimbursement up to $5,250 annually, certification/continuing education reimbursement, discounted higher education partnerships, paid trainings and leadership development.
  • Culture: Recognition as a Best Place to Work for 15+ years, dedication to diversity, philanthropy and sustainability, and people-first values that drive every decision. 
  • Environment: A modern workplace with a casual dress code, open floor plans, full-service dining, free snacks and drinks, complimentary 24/7 fitness center with group classes, outdoor walking paths, game room, notary and dry-cleaning services and more! Check out our home: https://youtu.be/xRnbvCW_YgA


What you should know

  • Internal Associates: Already a Healthcare Warrior? Apply internally through Jobvite.
  • Process: Application > Phone Screen > Online Assessment(s) > Interview(s) > Offer > Background Check
  • Diversity, Equity and Inclusion: Quantum Health welcomes everyone. We value our diverse team and suppliers, we’re committed to empowering our ERGs, and we’re proud to be an equal opportunity employer.
  • Agencies: Quantum Health does not accept unsolicited resumes or outreach from third-parties. Absent a signed MSA and request/approval from Talent Acquisition to submit candidates for a specific requisition, we will not approve payment to any third party. 
  • Sponsorship: Applicants must be legally authorized to work in the United States on a permanent and ongoing future basis without requiring sponsorship.

--
#LI-KT1 #LI-Hybrid