Director Of Product Security Architecture(remote) - Remote Eligible

Become A Part Of Our Caring Community And Help Us Put Health First

This role will include managing a team of segment security architects, our threat modeling program, drive security outcomes, determining security strategy for our various business units, and contributing to our enterprise security architecture strategy. They are looking for someone with at least 7+ years of application security and security architecture experience. You will be critical in helping secure Humana's information systems and digital portfolio. You will work with relevant Humana stakeholders to create, prioritize, and manage product iteration backlogs. Ensure final products meet IT and Humana standards and deliver maximum value to end-users. Advise executives to develop functional strategies (often segment specific) on matters of significance. Exercises independent judgment and decision making on complex issues regarding job duties and related tasks, and works under minimal supervision, uses independent judgment requiring analysis of variable factors and determining the best course of action. You are a passionate self-starter and drive to outcomes with little oversight or direction. You will report directly to the Associate Vice President of Product Security.

Responsibilities

• Collaborate with engineering, operations, and security teams to integrate security best practices into our development processes
• Define and track key security metrics to measure the effectiveness of our application security initiatives
• Stay abreast of emerging security threats and technologies, and incorporate them into our strategy
• Partner with cross-functional teams to ensure compliance with industry standards and regulations (e.g., SOC 2, ISO 27001, GDPR)
• Create and deliver executive-level presentations on security strategies and initiatives
• Partner with our Security Automation Product Owner, Compliance and governance, enterprise security architecture, enterprise architecture, DevSecOps and DevOps teams.
• Improve and expand product security across our entire portfolio of applications, systems and platforms. Foster and build a security-conscious culture across the organization
• Manage continuous release planning and execution and integrate with security design and engineering work across multiple groups and technical constituencies
• Develop and maintain relationships across technology organizations, the security industry, peer organizations and other entities as necessary to benchmark Company Application Security program and keep current in best practices
• Develop and mentor staff to achieve career goals and maintain leadership succession planning
• Responsibility for budget and impact for your team.

Use Your Skills To Make An Impact

Required:

• Bachelor's degree in related field (Business, Information Services, IT, Information Security, Computer Science etc.);
• 5 years of director+ level work-experience in a highly diversified organization. Experience with a complex work environment in progressive management roles in large, complex organizations.
• At least 3 years+ of experience with Applications Security, including familiarity with the leading toolsets supporting Application Security (dynamic and static). Experience with Checkmarx, AppScan, Burp Suite, Contrast, Veracode, Fortify or similar tooling.
• Strong experience executing application security or product security strategy
• Excellent communication skills with the ability to influence others
• Analytical, problem solving skills, self-starter, passionate and able to execute with little direction.
• Must be passionate about contributing to an organization focused on continuously improving consumer experiences
• Must be passionate about developer experience, privacy, security and product delivery

Preferred:

• Strong experience in establishing and rolling out Threat Modeling enterprise wide that can be consumed by developers and engineers
• Cloud experience with Azure, GCP, AWS, Heroku – Azure Preferred.
• At least 2 years of experience with product design, delivery, and ownership and managing an operational delivery team.
• Knowledge of common information security management frameworks, including but not limited to: ISO 27001/27002, ITIL, COBIT, NIST, BSIMM, CSF, etc.
• Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials preferred but not required if devsecops experience.

Remote/WAH requirements:

• Must have the ability to provide a high speed DSL or cable modem for a home office. Associates or contractors who live and work from home in the state of California will be provided payment for their internet expense.
• A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required.
• Satellite and Wireless Internet service is NOT allowed for this role.
• A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information

Travel: While this is a remote position, occasional travel to Humana's offices for training or meetings may be required.

Scheduled Weekly Hours 40

Pay Range The compensation range below reflects a good faith estimate of starting base pay for full time (40 hours per week) employment at the time of posting. The pay range may be higher or lower based on geographic location and individual pay will vary based on demonstrated job related skills, knowledge, experience, education, certifications, etc. $172,200 - $236,900 per year This job is eligible for a bonus incentive plan. This incentive opportunity is based upon company and/or individual performance.

Description of Benefits Humana, Inc. and its affiliated subsidiaries (collectively, "Humana") offers competitive benefits that support whole-person well-being. Associate benefits are designed to encourage personal wellness and smart healthcare decisions for you and your family while also knowing your life extends outside of work. Among our benefits, Humana provides medical, dental and vision benefits, 401(k) retirement savings plan, time off (including paid time off, company and personal holidays, volunteer time off, paid parental and caregiver leave), short-term and long-term disability, life insurance and many other opportunities. Application Deadline: 09-04-2025

About Us

Humana Inc. (NYSE: HUM) is committed to putting health first – for our teammates, our customers and our company. Through our Humana insurance services and CenterWell healthcare services, we make it easier for the millions of people we serve to achieve their best health – delivering the care and service they need, when they need it. These efforts are leading to a better quality of life for people with Medicare, Medicaid, families, individuals, military service personnel, and communities at large.

Equal Opportunity Employer It is the policy of Humana not to discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability or protected veteran status. It is also the policy of Humana to take affirmative action, in compliance with Section 503 of the Rehabilitation Act and VEVRAA, to employ and to advance in employment individuals with disability or protected veteran status, and to base all employment decisions only on valid job requirements. This policy shall apply to all employment actions, including but not limited to recruitment, hiring, upgrading, promotion, transfer, demotion, layoff, recall, termination, rates of pay or other forms of compensation and selection for training, including apprenticeship, at all levels of employment.