Centene - St. Louis, MO
posted about 2 months ago
You could be the one who changes everything for our 28 million members by using technology to improve health outcomes around the world. As a diversified, national organization, Centene's technology professionals have access to competitive benefits including a fresh perspective on workplace flexibility. The position involves applying cybersecurity and privacy principles to ensure the organization's applications and services are implemented according to internal security standards. This role recognizes vulnerabilities in security systems through vulnerability and compliance scanning, overseeing and performing threat modeling, security code reviews, security assessments, and security hardening reviews throughout the Secure Software Development Life Cycle (SSDLC) process. The successful candidate will engineer and develop cloud automation routines to streamline operations while promoting understanding and adherence to the SSDLC Policy and Standards. This position requires direct collaboration with application development teams to ensure that application weaknesses and identified vulnerabilities are mitigated or remediated based on Service Level Agreements (SLA). Additionally, the role involves reviewing and improving existing plans, policies, and procedures for incident response and recovery. The candidate will champion understanding and adherence to the secure SDLC policy and standard, oversee the development of training on procedures around application security testing (AST) platform operations and outage response, and respond to security incidents, providing escalation support as needed. The role also includes supporting knowledge transfer and education for Tier 1 and Tier 2 Applications Security Engineers and serving as a liaison between other IT Security teams and development teams. Other duties may be assigned as necessary, and compliance with all policies and standards is expected.