Humana Security Architect - Penetration Tester in Louisville, Kentucky

Role: Security Architect - Penetration Tester

Assignment: IT

Location: Louisville, KY

In the fast-paced, ever-growing world of Healthcare, Humana relies on the latest technology and trends for sharing and storing information, communication and security. We need experts in technology to help us develop and maintain our networks, hardware, and software—to ensure our systems run smoothly and efficiently, keep us on the forefront of innovation in healthcare, and retain our competitive edge. At Humana, we want to help people everywhere, including our associates lead their best lives and achieve lifelong well-being. We look for talented individuals who share this passion for helping others, who have naturally curious and innovative minds, and who want a career where they can use their technical skills to make a positive impact on the lives of our members.

Assignment Capsule

Humana is seeking an Security Penetration Tester that will be responsible for reviewing and evaluating the internal controls and practices for the Enterprise Information Security functions within Humana. The Security Pen Tester is also responsible for reviewing and evaluating the internal controls over the computer and operating systems, data centers, policies and procedures, and other information technology functions within the company. This senior position works under the direction and supervision of the manager of Enterprise Information Security Assurance, performs assurance and compliance reviews as assigned and works closely with Humana’s Internal Audit consulting Group. The goal of Enterprise Information Security is to effectively manage risks to Humana’s business relating to Information Technology, infrastructure, applications and data.

The successful candidate must possess an understanding of IT terminology, be organized, have excellent written and verbal communication skills. Must be able to multi-task and be proactive in addressing issues quickly. Specific Responsibilities will include:

  • Performing Penetration Tests of various attack surfaces such as network, software applications, human (social engineering, trusted insider) and working with business owners to identify remediation strategies for identified issues
  • Reviewing and evaluating IT operations, physical security, hardware configurations, IT systems and operating procedures in use throughout the Humana for compliance with established controls, policies, standards and procedures.
  • Identifying technology and control risks within each area
  • Providing technical consultation on Security Tools and Technical Controls
  • Recommending improvements in procedures, processes, operations and systems across Humana
  • Other special projects as necessary

    Role Essentials

  • Broad IT, IT Security and IT audit experience, preferably in a large corporate environment

    Role Desirables

  • Minimum 3 years Penetration testing experience on applications or infrastructure

  • One or more of the following certifications: CISSP, CISA, CISM, CEH, ECSA, LPT, OSCP, OSWP

  • Bachelor’s Degree or equivalent

    Reporting Relationships

    This position reports to a Technology Manager and area is under the leadership of the SVP & Chief Information Officer.

    Additional Information

    Humana is an organization with careers that change lives—including yours. As an innovator in the fast-paced industry of healthcare, we offer our associates careers that challenge, support and inspire them to use their passion for helping others and to lead their best lives. If you’re ready to help people achieve lifelong well-being, and be a part of an organization that is growing and poised to make an impact on the future of healthcare, Humana has the right opportunity for you.

Title: Security Architect - Penetration Tester

Location: KY-Louisville

Requisition ID: 189953

Humana Inc., headquartered in Louisville, Ky., is a leading health care company that offers a wide range of insurance products and health and wellness services that incorporate an integrated approach to lifelong well-being. By leveraging the strengths of its core businesses, Humana believes it can better explore opportunities for existing and emerging adjacencies in health care that can further enhance wellness opportunities for the millions of people across the nation with whom the company has relationships.

Humana complies with all applicable federal civil rights laws and does not discriminate on the basis of race, color, national origin, age, disability, or sex. We also provide free language interpreter services. See our full accessibility rights information and language options.