Unknown Company is hiring a Director of Product Security Architecture(remote)

Humana is looking for a Director of Product Security Architecture to secure our information systems and digital portfolio. You will manage a team of segment security architects and the threat modeling program, drive security outcomes, determine strategy for business units, and contribute to enterprise security architecture. This remote role operates with minimal supervision and involves advising executives.

What You'll Do

• Collaborate with engineering, operations, and security teams to integrate security best practices into development processes.
• Define and track key security metrics to measure the effectiveness of application security initiatives.
• Stay abreast of emerging security threats and technologies and incorporate them into strategy.
• Partner with cross-functional teams to ensure compliance with industry standards and regulations (e.g., SOC 2, ISO 27001, GDPR).
• Create and deliver executive-level presentations on security strategies and initiatives.
• Partner with Security Automation Product Owner, Compliance and governance, enterprise security architecture, enterprise architecture, DevSecOps and DevOps teams.
• Improve and expand product security across the entire portfolio of applications, systems, and platforms.
• Foster and build a security-conscious culture across the organization.
• Manage continuous release planning and execution and integrate with security design and engineering work across multiple groups.
• Develop and maintain relationships across technology organizations, the security industry, peer organizations to benchmark Company Application Security program.
• Develop and mentor staff to achieve career goals and maintain leadership succession planning.
• Take responsibility for budget and impact for your team.

What We're Looking For

• Bachelor’s degree in a related field (Business, Information Services, IT, Information Security, Computer Science, etc.).
• 5 years of director+ level work-experience in a highly diversified organization.
• Experience with a complex work environment in progressive management roles in large, complex organizations.
• At least 3 years of experience with Applications Security, including familiarity with leading toolsets supporting Application Security (dynamic and static).
• Experience with Checkmarx, AppScan, Burp Suite, Contrast, Veracode, Fortify or similar tooling.
• Strong experience executing application security or product security strategy.
• Excellent communication skills with the ability to influence others.
• Analytical, problem solving skills, self-starter, passionate and able to execute with little direction.
• Must be passionate about contributing to an organization focused on continuously improving consumer experiences.
• Must be passionate about developer experience, privacy, security and product delivery.

Nice to Have

• Strong experience in establishing and rolling out Threat Modeling enterprise wide that can be consumed by developers and engineers.
• Cloud experience with Azure, GCP, AWS, Heroku – Azure Preferred.
• At least 2 years of experience with product design, delivery, and ownership and managing an operational delivery team.
• Knowledge of common information security management frameworks, including but not limited to: ISO 27001/27002, ITIL, COBIT, NIST, BSIMM, CSF, etc.
• Professional security management certification, such as CISSP, CISM, CISA or other similar credentials preferred but not required if devsecops experience.

Technical Stack

• Checkmarx, AppScan, Burp Suite, Contrast, Veracode, Fortify
• Azure, GCP, AWS, Heroku

Team & Environment

You will manage a team of segment security architects and report to the Associate Vice President of Product Security.

Benefits & Compensation

• Medical, dental and vision benefits
• 401(k) retirement savings plan
• Time off (including paid time off, company and personal holidays, volunteer time off, paid parental and caregiver leave)
• Short-term and long-term disability
• Life insurance
• Compensation: $172,200 - $236,900 per year

Work Mode

This is a remote position.

Humana is committed to putting health first – for teammates, customers and company, and focused on delivering care and service to achieve better health. It is the policy of Humana not to discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability or protected veteran status.