Carex Consulting Group is hiring a Senior Security Engineer – Identity for a direct hire opportunity with a remote first company. You must be located in one of these states to be considered AZ, CA, FL, IL, LA, MD, MI, MN, MO, NJ, NV, NY, OH, OR, TN, TX, VA, WA or WI.
What you’ll do:
- Collaborating with architects and recommending adjustments to the architecture
- Improving overall product quality and integration efficiencies
- Monitor key performance metrics to ensure compliance of established standards, processes, and procedures
- Participate in daily stand-ups, planning meetings and review sessions. Comfortable with working in various agile frameworks such as Scrum and KANBAN based on the needs of the project.
- Lead level technical development expertise in software development disciplines including design, coding, testing, deployment, and software management and integration. Possesses strong initiative, results-oriented drive and a solid work ethic requiring minimal direction
- Incorporate a Site Reliability Engineer’s mentality bringing observability, sustainability and optimized reliability when both building and running applications and services that support the health, performance, and security of our Identity Platform
- Apply engineering skills to increase velocity, reduce toil, increase reliability enhancing an extensible service-oriented identity architecture
- Design, develop, execute, and maintain complex automated test code, scripts, and data which are used as critical quality gates for our CI/CD pipeline
- Facilitate paired programming, mob sessions, and code reviews, leading and mentoring less experienced engineers
- Work closely with 3rd party identity management provider partners
- Share responsibility with your teammates for occasional after-hours on-call rotation for support of production level system.
What you’ll bring:
- 5+ years of professional experience in application design and development at an enterprise level
- 5+ years of experience with JAVA or Kotlin
- 5+ years of experience implementing, supporting, or migrating to identity management systems or 3rd party identity providers
- 3+ years of experience designing and developing in a microservices environment
- Worked with or as a site reliability engineer optimizing self-authored code for resiliency, and high velocity delivery
- Experience in automated test development and execution (for example, REST-assured, Selenium, etc)
- Experience creating and consuming APIs
- Experience in working with developers in a SaaS environment using CI/CD and DevOps methodology
- Experience working on an Identity team with “Secure by Design” as a process
- Experience using tools like Lucidchart to communicate complex architectural concepts in the form of UML diagrams
- Experience using Docker when engineering containerized application services
- Occasional travel to company offices or meetings as required when safety travel guidelines are in place
- Must be presently authorized to work in the U.S. without a requirement for work authorization sponsorship by our company for this position now or in the future
- Must be at least 18 years of age
- For flexible or full remote work from home positions, reliable high speed Internet connection and dedicated work space are required
- Must be located in one of the following locations: AZ, CA, FL, IL, LA, MD, MI, MN, MO, NJ, NV, NY, OH, OR, TN, TX, VA, WA or WI
Preferred:
- Bachelor’s Degree in computer science, Computer Information Systems, Management Information Systems, or related field of study.
- Experience in front-end technologies, such as: Angular or React
- Experience with object-oriented programming language, including JAVA, Kotlin, TypeScript or C#
- Experience designing and developing in a micro-service environments
- Experience working with enterprise grade identity management systems such as Okta, Azure, or Auth0
- Experience creating applications in cloud-based and cloud +native development environments (ex. Azure, AWS, Google, Kubernetes)
Qualified candidates should also possess:
- “Problem ? Solution First” mentality and consider personal preferences on coding frameworks, libraries, and technologies less important than achieving the technical objectives they share with their team
- The consideration of “Big Bang Rollouts” risky and see “Migration by Design” a key component of success when architecting identity solutions that have a broad reaching impact on co-workers, customers, sub-organizations, and engineers
- Curious approach when presented with concepts or ideas that are unfamiliar or unknown. This candidate will see these as opportunities to learn and be willing to engage in thoughtful conversation with team members.
- Detail oriented approach when coding and architecting solutions because it matters for the performance, reliability, and security of the Identity solutions we provide to the platform
- Mature and balanced approach when developing solutions inside complex software systems. This candidate will commit to a continual and delicate management of pros and cons and never consider a single choice, technology, or implementation to be the “magic fix” and considers nuance
- Understanding of Oauth2 Authentication flows
- Proficiency with coding against and designing for relational and unstructured databases such as MySQL and MongoDB
- Strong coding skills using Java or Kotlin, with the knowledge and willingness to lean into Kotlin
- Proficiency in designing for and implement asynchronous programming paradigms with and without queueing and messaging
- Proficiency with developing applications in Java and Kotlin for cloud container orchestration systems such as Kubernetes
- Understanding with how various business operations impact identity work across and influence product roadmap initiatives from a technical and non-technical perspective
- Resiliency when priorities and requirements change
- Strong communication skills both written and verbal
- Proficiency in designing for and implement asynchronous programming paradigms with and without queueing and messaging
- Proficiency with coding and developing applications and microservices in Java and/or Kotlin for cloud container orchestration systems such as Kubernetes.
#LI-SR1
Our partner is looking for a Remote Senior Information Security Analyst’s to be the internal point of contact and administrator for HITRUST certification and maintenance. The Senior Information Security Analyst also generally works to ensure both the partner's platform and the broader team maintain compliance surrounding HIPAA, HITRUST, and general cybersecurity best practices. Working in conjunction with the CTO, the Senior Information Security Analyst develops, refines, and enforces policies and procedures across the organization.
This position reports to the Chief Technology Officer.
Core Responsibilities
- Assessing information risk
- Reporting on and facilitating remediation of identified vulnerabilities for IT security and IT risk across the organization
- Manages the continuous protection of systems and information assets by contributing to or leading teams in the execution and implementation of information security defense improvements involving architecture, processes, tools and automation
- Assists in establishing, reviewing and maintaining security related policies, plans, processes and procedures to contribute toward the protection of critical business functions from disruption due to system failure or unavailability and to ensure enterprise applications have appropriate protections in place
- Collaborates with IT staff and external security vendors to monitor the security posture of all networked systems and leads efforts to take appropriate steps to quickly deal with any identified vulnerabilities
- Provides network and security expertise and guidance for all aspects of information assurance
- Maintains a high level of technical expertise on server/network hardware and software and appropriate security tools
- Assists in the selection, evaluation, and implementation of information system security infrastructure and strategic and operational planning
- Supports efforts to meet HIPAA and HITRUST requirements utilizing established security framework, leading/contributing efforts toward assessment completion and action plan follow through
- Performs duties in compliance with and according to organizational policies and procedures, regulatory requirements and sound business practices.
Knowledge / Skills / Abilities
- Bachelor’s Degree from an accredited university or college in Computer/Information Science/Business required.
- Minimum of six (6) years of technical experience in an enterprise-wide system, network or security-related IT position. Equivalent combination of experience and education (min Bachelors) may be considered.
- Leadership, project management, use of methodology, time management and organizational skills to direct security efforts with the project team.
- Demonstrated ability to lead high visibility projects, to work effectively and carefully under pressure, to meet project deadlines, to learn independently, to communicate effectively with a variety of people and to write well is required.
- Demonstrated ability to work cooperatively and strategically in a team environment with all levels of professional, technical, and administrative staff
- Excellent interpersonal and communication skills
- Ability to deal with highly confidential information and act as a liaison between the Chief Technology Officer, the Data Science teams, and Engineering teams
- Skills to collaborate with and achieve actionable results through and with others
- Ability to build strong and sustainable relationships
We encourage people from historically underrepresented communities in technology to apply, including but not limited to women, people of color, people with disabilities, people of all age brackets, people with complex work and life histories, and those who identify as LGBTQ. We are a distributed team with hubs in the Denver area and Madison. Denver/Boulder is preferred, but candidates living anywhere are encouraged to apply and will not be required to relocate. US work authorization required.