Integrate security at every phase of the software development lifecycle.
Collaborate with engineering and product teams in Agile/Scrum environments to prioritize, track, and remediate security issues during sprint cycles.
Develop and maintain threat models and perform design reviews. Lead threat modeling sessions and conduct in-depth security architecture reviews.
Educate development teams on secure coding practices.
Contribute to secure backlog grooming and definition of security-related user stories and acceptance criteria.
Actively support the organization's secure software development lifecycle (SDLC) initiatives by integrating security controls, processes, and testing into development workflows and CI/CD pipelines.
Support documentation and evidence collection for SOC 2 Type II audits and HIPAA security risk assessments.
Support audit activities and create documentation for security controls.
Required Skills:
Integrate security at every phase of the software development lifecycle.
Collaborate with engineering and product teams in Agile/Scrum environments to prioritize, track, and remediate security issues during sprint cycles.
Develop and maintain threat models and perform design reviews.
Lead threat modeling sessions and conduct in-depth security architecture reviews.
Educate development teams on secure coding practices.
Contribute to secure backlog grooming and definition of security-related user stories and acceptance criteria.
Actively support the organization's secure software development lifecycle (SDLC) initiatives by integrating security controls, processes, and testing into development workflows and CI/CD pipelines.
Automate security checks to ensure continuous compliance and early detection.
Ensure integration of security scanning outp
Benefits
Health insurance
Additional Information
It's fun to work in a company where people truly BELIEVE in what they're doing!
We're committed to bringing passion and customer focus to the business.
Public Partnerships LLC supports individuals with disabilities or chronic illnesses and aging adults, to remain in their homes and communities and "self" direct their own long-term home care. Our role as the nation's largest and most experienced Financial Management Service provider is to assist those eligible Medicaid recipients to choose and pay for their own support workers and services within their state-approved personalized budget. We are appointed by states and managed healthcare organizations to better serve more of their residents and members requiring long-term care and ensure the efficient use of taxpayer funded services.
Our culture attracts and rewards people who are results-oriented and strive to exceed customer expectations. We desire motivated candidates who are excited to join our fast-paced, entrepreneurial environment, and who want to make a difference in helping transform the lives of the consumers we serve. (learn more at www.pplfirst.com ).
Job Summary
We are seeking an experienced and proactive Application Security (AppSec) and DevSecOps Engineer to embed security throughout the software development lifecycle and CI/CD pipelines. You will collaborate with development, operations, and security teams to design, implement, and maintain security best practices in our applications and infrastructure. This role ensures our systems are secure by design and compliant with industry standards, including HIPAA, SOC2, OWASP, NIST 800-53, and NIST SSDF.
Publicpartnerships · Remote