Digital Full Stack Security Architect

Ready to help us transform healthcare? Bring your true colors to blue.

At Blue Cross Blue Shield of Massachusetts, we have an exciting opportunity for a Digital Full Stack Security Architect who will be responsible for driving and integrating security into the design and development of products and promote software/application security throughout our digital development organization. This hands-on role allows you to express your passion as a security engineer and a full stack developer. You will collaborate with enterprise/application architecture, infrastructure design, application development, and product management teams to embed security into Blue Cross Blue Shield of Massachusetts’s web and mobile applications. As a technology leader and hands-on developer with a security focus, you will create and implement secure, innovative high-quality solutions to deliver innovative and intuitive digital experiences to our members.

Responsibilities:

• Lead and Perform security requirements analysis, security requirements definition, system security design, and security verification, and validation for the digital domain
• Provide security inputs to architectural solutions/designs and effectively choose the appropriate standards, processes, procedures, and tools throughout the system development life cycle to support the delivery of secure products
• Support system development by adding security rigor to the design, assessing the security posture and hardening dynamic operating environments
• Executes the security testing and evaluation to ensure the correct implementation of security requirements
• Performs security scanning and the analysis of the scan results. Address and remedy any security risks identified by the scans within a reasonable timeframe
• Create and participate in producing team deliverables (including architecture and technical design documentation, standards, code development, and QA) to high-quality standards
• Work closely with Product Management and development teams to satisfy business requirements for new features and the next generation of product offering by taking ownership of the solution from end to end and is responsible for translating functional requirements into web and mobile solutions
• Create performance metrics and traceability maps to determine the effectiveness of architecture solutions and facilitate governance
• Resolve technical issues and identify risks by building consensus among technical stakeholders

Education and Experience:

• Bachelor’s degree in Information Technology, Engineering, or related field preferred
• Minimum 6 years of programming experience with Full Stack JAVA development and developing UI and Services solutions
• Minimum of 2 years of experience in a leadership role delivering complex enterprise projects
• Strong understanding of cybersecurity specifications such as Risk Management Framework (RMF)
• Strong knowledge of cybersecurity technology and trends
• Effective in communicating issues, impacts, and corrective actions as they affect the cyber design and implementation
• Proven experience architecting, developing, delivering, and maintaining secure enterprise or consumer-facing web and mobile software systems using industry standard environments including Angular, Ionic, JS, OAUTH2, HTML5, node.js
• Experience with digital service integration (SOAP, REST, JSON, XML) to integrate digital applications to server-side systems
• Experience in a public cloud environment, preferably AWS
• Experience with DevOps & CICD including Jenkins, Docker, and GitLab/GitHub
• Proven ability to design, optimize, and integrate business processes across the disparate system and technologies

Additional Technical Considerations:

• Experience with IBM’s IIB, DataPower, Apigee, and Pivotal a plus
• Experience with Oracle database a plus
• Experience with Agile methodology (including Confluence & JIRA), web & mobile app testing tools, deployment, and configuration management tools, and secure infrastructure management
• Excellent analysis skills and the ability to develop processes and methodologies
• Good understanding of scaling technologies and solutions
• Great communication skills coupled with a strong desire for personal development and learning

LocationBoston, QuincyTime TypeFull time