Humana
Senior Cloud Security Engineer(remote)
Humana, Cheyenne, Wyoming, United States, 82007
Humana Senior Cloud Security Engineer (remote) Cheyenne, Wyoming
Become a part of our caring community and help us put health firstThe Senior Cloud Security Engineer ensures that cybersecurity policies are engineered and deployed in cloud environments to meet compliance requirements. They automate cloud security controls to minimize and reduce threats, vulnerabilities, and risks. They ensure that cross-functional business processes are in place for cloud security control engineering and implementation, with proper visibility and approvals. The engineer begins to influence departmental strategy, makes decisions on moderately complex to highly complex issues regarding technical approaches for project components, and performs work without direction. They exercise considerable latitude in determining objectives and approaches to assignments.Join our team as a Senior Cloud Network Security Engineer!We are looking for an experienced professional with expertise in managing
GCP Next-Generation Firewalls (NGFW) ,
Azure Network Security Groups (NSGs) , and the
Prisma Cloud security suite . This role focuses on securing multi-cloud environments by automating security policies using
Infrastructure as Code (IaC)
with
Terraform , while leveraging
Prisma Cloud
tools to ensure comprehensive workload protection and compliance.Use your skills to make an impactResponsibilitiesDeploy and provide operational support for
hierarchical NGFW policies
in
GCP
using security tags, and automate configurations using
Terraform
and
DevOps principles .Manage and troubleshoot
Azure Network Security Groups (NSGs)
at scale, using
Terraform
to automate deployment, updates, and scaling of security rules across multiple environments, ensuring continuous network protection and performance.Ensure all infrastructure changes are deployed through
CI/CD pipelines
using
Terraform modules , following best practices for
DevSecOps .Develop and implement security policies, standards, and procedures for cloud-based applications and infrastructure employing
Prisma Cloud’s
comprehensive security solutions, including
Workload Protection (Compute) ,
Cloud Security Posture Management (CSPM) , and
Code Security
modules.Integrate robust code security measures and scanning capabilities into
CI/CD pipelines
and other cloud workflows using
IaC .Implement and manage enterprise security policies using
Prisma CSPM’s
advanced capabilities, including preventive guardrails and automated remediations, to ensure proactive measures are in place.Leverage
IaC
and
CI/CD
to seamlessly deploy, patch, and upgrade Prisma Cloud and cloud-based security systems.Configure vulnerability items, misconfigurations, and other alerts in
Prisma Cloud , actively assisting stakeholders with timely remediation efforts.Assist the
SOC
and
Cyber Defense & Response Team
during security incidents, involving timely configuration changes to Prisma and frequent participation on major incident bridges.Manage user access in
Prisma portal
based on least privilege roles, and provide operations training and support, as needed.Participate in a
24/7 on-call rotation
to ensure rapid incident response, maintaining operational integrity and minimizing downtime across enterprise systems.Required QualificationsBachelor’s Degree
in Computer Science, Information Technology, Cybersecurity or related field.7+ years of experience
supporting and implementing
multi-cloud security solutions
with a focus on
GCP
and
Azure , including configuration, deployment, troubleshooting, and ongoing maintenance.3+ years of direct, hands-on experience
with
GCP network access control
and
Azure NSGs , leveraging
IaC automation
(Terraform) for efficient and secure cloud operations.Proficiency in deploying and managing
NGFW policies
using
security tags
and
hierarchical firewall rules
within
GCP .Strong ability to manage and troubleshoot
Azure NSGs , leveraging
Terraform
for automation and scaling.Experience implementing security policies via
IaC
using
Terraform
and managing deployments through
Azure DevOps (ADO)
and
GitHub Actions .Expertise in
DevSecOps
and
shift-left
principles, actively ensuring security risks and misconfigurations are addressed early in the development process.Ability to work in a
24x7 on-call rotation , triage incidents, and participate in
incident bridges
with senior leadership teams (SLT).Proven experience in
incident response
and security operations, including assisting the
SOC
during critical events.Capable of providing training and guidance to team members on cloud security best practices.Preferred QualificationsAdditional certifications such as
CISSP ,
CCSP ,
Security+ , or relevant tracks for
Azure
and
GCP .Advanced experience with
Terraform
and managing large-scale IaC automation through
CI/CD pipelines .Experience implementing and managing
Policy as Code (PaC)
in cloud environments, including
Azure Policy ,
GCP Organizational Policy , or
HashiCorp Sentinel .Familiarity with
Agile methodology , including
Scrum
and
Kanban
frameworks.Proficiency with
scripting languages
such as
PowerShell ,
Python ,
YAML , and
Bash .Experience troubleshooting
Linux
environments using tools like
cURL ,
tcpdump ,
netstat , etc.Remote/WAH requirements:Must have the ability to provide a high-speed DSL or cable modem for a home office. A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required. Satellite and Wireless Internet service is NOT allowed for this role. A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information.Scheduled Weekly Hours:
40Pay Range:
The compensation range below reflects a good faith estimate of starting base pay for full time (40 hours per week) employment at the time of posting. The pay range may be higher or lower based on geographic location and individual pay will vary based on demonstrated job related skills, knowledge, experience, education, certifications, etc. $104,800 - $144,300 per year. This job is eligible for a bonus incentive plan based on company and/or individual performance.Description of Benefits:
Humana, Inc. offers competitive benefits that support whole-person well-being. Associate benefits are designed to encourage personal wellness and smart healthcare decisions for you and your family while also knowing your life extends outside of work. Among our benefits, Humana provides medical, dental and vision benefits, 401(k) retirement savings plan, time off (including paid time off, company and personal holidays, volunteer time off, paid parental and caregiver leave), short-term and long-term disability, life insurance and many other opportunities.About us:
Humana Inc. is committed to putting health first – for our teammates, our customers and our company. Through our Humana insurance services and CenterWell healthcare services, we make it easier for the millions of people we serve to achieve their best health – delivering the care and service they need, when they need it.Equal Opportunity Employer:
It is the policy of Humana not to discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability or veteran status.
#J-18808-Ljbffr
Become a part of our caring community and help us put health firstThe Senior Cloud Security Engineer ensures that cybersecurity policies are engineered and deployed in cloud environments to meet compliance requirements. They automate cloud security controls to minimize and reduce threats, vulnerabilities, and risks. They ensure that cross-functional business processes are in place for cloud security control engineering and implementation, with proper visibility and approvals. The engineer begins to influence departmental strategy, makes decisions on moderately complex to highly complex issues regarding technical approaches for project components, and performs work without direction. They exercise considerable latitude in determining objectives and approaches to assignments.Join our team as a Senior Cloud Network Security Engineer!We are looking for an experienced professional with expertise in managing
GCP Next-Generation Firewalls (NGFW) ,
Azure Network Security Groups (NSGs) , and the
Prisma Cloud security suite . This role focuses on securing multi-cloud environments by automating security policies using
Infrastructure as Code (IaC)
with
Terraform , while leveraging
Prisma Cloud
tools to ensure comprehensive workload protection and compliance.Use your skills to make an impactResponsibilitiesDeploy and provide operational support for
hierarchical NGFW policies
in
GCP
using security tags, and automate configurations using
Terraform
and
DevOps principles .Manage and troubleshoot
Azure Network Security Groups (NSGs)
at scale, using
Terraform
to automate deployment, updates, and scaling of security rules across multiple environments, ensuring continuous network protection and performance.Ensure all infrastructure changes are deployed through
CI/CD pipelines
using
Terraform modules , following best practices for
DevSecOps .Develop and implement security policies, standards, and procedures for cloud-based applications and infrastructure employing
Prisma Cloud’s
comprehensive security solutions, including
Workload Protection (Compute) ,
Cloud Security Posture Management (CSPM) , and
Code Security
modules.Integrate robust code security measures and scanning capabilities into
CI/CD pipelines
and other cloud workflows using
IaC .Implement and manage enterprise security policies using
Prisma CSPM’s
advanced capabilities, including preventive guardrails and automated remediations, to ensure proactive measures are in place.Leverage
IaC
and
CI/CD
to seamlessly deploy, patch, and upgrade Prisma Cloud and cloud-based security systems.Configure vulnerability items, misconfigurations, and other alerts in
Prisma Cloud , actively assisting stakeholders with timely remediation efforts.Assist the
SOC
and
Cyber Defense & Response Team
during security incidents, involving timely configuration changes to Prisma and frequent participation on major incident bridges.Manage user access in
Prisma portal
based on least privilege roles, and provide operations training and support, as needed.Participate in a
24/7 on-call rotation
to ensure rapid incident response, maintaining operational integrity and minimizing downtime across enterprise systems.Required QualificationsBachelor’s Degree
in Computer Science, Information Technology, Cybersecurity or related field.7+ years of experience
supporting and implementing
multi-cloud security solutions
with a focus on
GCP
and
Azure , including configuration, deployment, troubleshooting, and ongoing maintenance.3+ years of direct, hands-on experience
with
GCP network access control
and
Azure NSGs , leveraging
IaC automation
(Terraform) for efficient and secure cloud operations.Proficiency in deploying and managing
NGFW policies
using
security tags
and
hierarchical firewall rules
within
GCP .Strong ability to manage and troubleshoot
Azure NSGs , leveraging
Terraform
for automation and scaling.Experience implementing security policies via
IaC
using
Terraform
and managing deployments through
Azure DevOps (ADO)
and
GitHub Actions .Expertise in
DevSecOps
and
shift-left
principles, actively ensuring security risks and misconfigurations are addressed early in the development process.Ability to work in a
24x7 on-call rotation , triage incidents, and participate in
incident bridges
with senior leadership teams (SLT).Proven experience in
incident response
and security operations, including assisting the
SOC
during critical events.Capable of providing training and guidance to team members on cloud security best practices.Preferred QualificationsAdditional certifications such as
CISSP ,
CCSP ,
Security+ , or relevant tracks for
Azure
and
GCP .Advanced experience with
Terraform
and managing large-scale IaC automation through
CI/CD pipelines .Experience implementing and managing
Policy as Code (PaC)
in cloud environments, including
Azure Policy ,
GCP Organizational Policy , or
HashiCorp Sentinel .Familiarity with
Agile methodology , including
Scrum
and
Kanban
frameworks.Proficiency with
scripting languages
such as
PowerShell ,
Python ,
YAML , and
Bash .Experience troubleshooting
Linux
environments using tools like
cURL ,
tcpdump ,
netstat , etc.Remote/WAH requirements:Must have the ability to provide a high-speed DSL or cable modem for a home office. A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required. Satellite and Wireless Internet service is NOT allowed for this role. A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information.Scheduled Weekly Hours:
40Pay Range:
The compensation range below reflects a good faith estimate of starting base pay for full time (40 hours per week) employment at the time of posting. The pay range may be higher or lower based on geographic location and individual pay will vary based on demonstrated job related skills, knowledge, experience, education, certifications, etc. $104,800 - $144,300 per year. This job is eligible for a bonus incentive plan based on company and/or individual performance.Description of Benefits:
Humana, Inc. offers competitive benefits that support whole-person well-being. Associate benefits are designed to encourage personal wellness and smart healthcare decisions for you and your family while also knowing your life extends outside of work. Among our benefits, Humana provides medical, dental and vision benefits, 401(k) retirement savings plan, time off (including paid time off, company and personal holidays, volunteer time off, paid parental and caregiver leave), short-term and long-term disability, life insurance and many other opportunities.About us:
Humana Inc. is committed to putting health first – for our teammates, our customers and our company. Through our Humana insurance services and CenterWell healthcare services, we make it easier for the millions of people we serve to achieve their best health – delivering the care and service they need, when they need it.Equal Opportunity Employer:
It is the policy of Humana not to discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability or veteran status.
#J-18808-Ljbffr