CNO Financial Group Cloud Security Developer-Remote in US Central or Eastern Time Zone in Orlando, Florida
CNO’s Worksite Division, Optavise, is hiring a Cloud Security Developer to act as a key member of the Cloud Engineering Team within the Optavise Information Technology department. This role will govern our Application Vulnerability Management, guiding Development and Quality Assurance resources in the discovery, assessment, and remediation of application code defects. The Cloud Security Developer is a key resource and leader in inculcating and developing a security-first mindset across the practices of Development, DevOps, SecOps, and IT Ops. The Cloud Security Developer also plays a key role in the administration of our Service Organizational Controls (SOC) 2 compliance.
This is your opportunity to develop secure solutions for computer, networking, databases, caching, file and object storage, containerization, serverless, content delivery, media services, logging/metrics/telemetry, analytics, identity management, and compliance. The Optavise solution is tapped for strategic growth as we scale to support larger and more complex clients.
As a Cloud Security Developer, your responsibilities will include:
Develop secure cloud computing infrastructure solutions comprising many AWS managed services (including, but not limited to: EC2, VPC, EBS, EFS, S3, RDS, CloudFront, CodeDeploy, IAM, ECS/ECR, Route 53)
Leverage CloudFormation to adhere wherever possible to the ideals of Infrastructure-as-Code (IaC) and immutable infrastructure
Govern Application Vulnerability Management regime, orchestrating continuous vulnerability scanning of application code and infrastructure systems, and assisting the Development Team in the identification, assessment, and remediation of code defects and the quality assurance testing of application code fixes
Liaise with the Development Team to educate developers on security best practices, jointly architect secure full stack solutions, and ensure adherence to application and data security standards as established by the Chief Technology Officer
Maintain superior knowledge of published hardware and software vulnerabilities and exploits, common threat actors and attack vectors, through constant analysis of government, industry, vendor, and other community channels (e.g. CISA, US-CERT, CVE, &c.)
The Cloud Security Developer position is well-suited for you if you:
Demonstrate wide knowledge of application and infrastructure development in the Amazon Web Services (AWS) ecosystem, with extensive experience of foundational managed services (e.g. EC2, VPC, EBS, EFS, S3, RDS, CloudFront, CodeDeploy, IAM, ECS/ECR, Route 53, &c.) as they are commonly employed in the delivery of mission-critical business web applications, especially the security dimensions thereof
Possess solid grounding in security vulnerabilities and exploits, as well as common threat actors and attack vectors
Have secure software development, with three to four years’ experience in reading, writing, and analyzing application source code
Know secure coding standards and frameworks (e.g. OWASP, SEI CERT Coding Standards)
Assess application vulnerabilities within the context of the specific systems and overall business, employing a risk-based approach to prioritizing remedial activities
Work closely with software developers and quality assurance analysts to communicate the nature and severity of security flaws, propose and coordinate specific remedial action, to validate the same, and to effect changes to development techniques and tools for continuous improvement
Have used common cybersecurity frameworks, especially SOC 2
Communicate effectively both oral and written, with the ability to independently document system architecture, operational procedures, policies, to a high standard
Qualified candidates will have:
Bachelor’s Degree in Computer Science
Advanced AWS engineering/security certifications. Other advanced cloud certifications considered.
5 years of experience in an advanced cloud engineering role (any public or hybrid cloud computing platform; cloud computing paradigm, not “Lift-and-Shift”)
3 years of experience in a cloud security role
3 years of experience of advanced engineering experience in Amazon Web Services (AWS)
3 years of experience reading, writing, and analyzing application source code
3 years of experience with Agile development and DevOps (preferably in a web application development shop)
This role is full time work from home (WFH), also known as Remote . This role can be performed from any US based location within the central or eastern time zone. CNO Financial Group offices reopened in April 2022 and is pursuing a hybrid working model. Associates who live within a 60-mile radius of a corporate office (Birmingham, Carmel, Chicago, Philadelphia, Orlando and Milwaukee) will have access to come into that Office up to 2 days/week, and work from home at least 3 days/week. Work cannot be performed from outside of the United States.
CNO provides life and health insurance, annuities, financial services, and workforce benefits solutions through our family of brands and supported by our associates and agents. Our customers work hard to save for the future, and we help protect their health, income and retirement needs with 3.2 million policies and more than $35 billion in total assets. Our 3,400 associates, 8,600 exclusive agents and independent partner agents guide individuals, families, and businesses through a lifetime of financial decisions.
We are financially strong and well positioned for continued growth, and we are grounded in our core values of Diversity, Equity & Inclusion (DE&I), Integrity, Customer Focus, Excellence, and Teamwork. We have offices in more than 260 communities in the U.S., including our headquarters in Carmel, Indiana, and corporate offices in Birmingham, Chicago, Philadelphia, Orlando and Milwaukee.
At CNO Financial Group, we’re always looking forward—to the security and stability we help create for our insurance brands’ customers, and the growth we create within our own company. We're looking for ambitious people who want to do more. We'll provide you with opportunities to grow your skills through challenging professional experiences.
If you're looking for a culture that encourages development, helps you reach your potential, and rewards you for your contribution, then CNO Financial Group is right for you. For more information, visit CNOinc.com.
Category: Information Technology
Job Type: Full-Time