Medical Mutual logo
Medical Mutual

An Ohio-based Fortune 500 company, Medical Mutual sells life and health insurance to individuals, families, and groups. Commonly referred to as MedMutual, the c

Application Security and DevSecOps Architect

Location

Ohio

Posted

10 hours ago

Salary

0

Seniority

Senior

Job Description

Application Security and DevSecOps Architect

Medical Mutual

Title: Application Security & DevSecOps Architect Location: Dublin, Ohio, 43017, United States Department: IT Architecture Full-Time Hybrid Job Description: Medical Mutual employees must submit their applications through MySource. This is a hybrid‑remote role based out of the Dublin, OH office, with employees expected to work onsite on designated in‑office days each week. Founded in 1934, Medical Mutual is the oldest and one of the largest health insurance companies based in Ohio. We provide peace of mind to more than 1.2 million members through our high-quality health, life, disability, dental, vision and indemnity plans. We offer fully insured and self-funded group coverage, including stop loss, as well as Medicare Advantage, Medicare Supplement, and individual plans. The Application Security & DevSecOps Architect will lead the design and implementation of secure application architecture and DevSecOps practices across the enterprise, embed security throughout the software development lifecycle (SDLC) to reduce risk, improve resiliency, and enable scalable, secure software delivery and serve as the primary technical authority for application security, vulnerability management, and DevSecOps pipeline security. We're seeking candidates with these preferred technical skills: - Hands-on experience with application security tooling: - SAST (Snyk, Wiz, Checkmarx, Veracode, Semgrep, SonarQube) - DAST (Qualys, Burp Suite, OWASP ZAP, Invicti) - SCA, IaC scanning, container security tools - Strong knowledge of: - OWASP Top 10, CWE Top 25 - Threat modeling (STRIDE, PASTA, or equivalent) - API security and authentication (OAuth2, OIDC, SAML) - Experience with: - CI/CD platforms (Azure DevOps, GitHub Actions, Jenkins, GitLab) - Cloud security (AWS, Azure) - Containers and orchestration (Docker, Kubernetes) - Working knowledge of secure architecture patterns and Zero Trust principles Architect I Job Summary: Assists in the development of solution options to arrive at better decisions that will reduce IT cost, improve system flows, increase agility, and remove duplicative functionality. Supports the management of risk associated with IT assets through the development and promotion of standards and polices. Expertise may be concentrated in one or more domains. Responsibilities: - Acts as a subject matter expert (SME) to assist various IT areas to support efficiencies in overall design for implementations of new technologies and improvement of existing processes. Advises on best practices and ensures policy and procedure adherence. - Assists in the definition of the current and future state and the transitional plan. Focuses on the incremental improvements that move toward the future state looking for opportunities to streamline environments and remove redundancy. - Collaborates within teams, participates in reviews of all prospective software and hardware acquisitions. Evaluates compatibility with current architecture and supports future architecture roadmaps. Identifies architectural risks and proposes alternatives and solutions. Documents exceptions to architectural standards. - Assists in the review and revisions of new and existing IT standards and policies evaluating their importance. Assists in the development of architectural metrics and reports. - Maintains active awareness of IT industry including new developments, emerging trends, development tools and best practices. - Performs other duties as assigned. Qualifications: Education and Experience: - Bachelor's degree in Computer Science or related field or equivalent combination of training/education and experience. - 3 years proven ability to transfer technology to end user applications/environments. - Experience in cutting edge web collaboration design patterns and best practices Professional Certification(s): - NA Technical Skills and Knowledge: - Expert in one or more technologies (Microsoft, OpenSource, Database (relational, graph, Map, document, etc.). - Basic knowledge in infrastructure and networks with focus on security. - Basic understanding of various project methodology disciplines with basic knowledge of information and systems architectures, highly proficient in website architectures. - Basic understanding of various data base platforms and data warehousing. Architect II Job Summary: Acts in a leadership role that ensures the IT architectural strategy aligns with the overall corporate strategy and is tune with evolving business trends and technology capabilities. Assists in the development of solution options to arrive at better decisions that will reduce IT cost, improve system flows, increase agility, and remove duplicative functionality. Supports the management of risk associated with IT assets through the development and promotion of standards and polices. Expertise may be concentrated in one or more domains. Responsibilities: - Translates overall IT roadmap into actionable processes. Supports the establishment of targeted architecture and develops standards for the organization covering all key domains (Application, Data, and Infrastructure). - Assists in the definition of the current and future state and the transitional plan. Focuses on the incremental improvements that move toward the future state looking for opportunities to streamline environments and remove redundancy. - Collaborates within teams, participates in reviews of all prospective software and hardware acquisitions. Evaluates compatibility with current architecture and supports future architecture roadmaps. Identifies architectural risks and proposes alternatives and solutions. Documents exceptions to architectural standards. - Reviews new and existing IT standards, and architectural plans modifies or creates standards and policies to support the future state. Develops architectural metrics and reports for the executive team, business and IT management. - Maintains active awareness of IT industry including new developments, emerging trends, development tools and best practices - Performs other duties as assigned. Qualifications: Education and Experience: - Bachelor's degree in Computer Science or related field or equivalent combination of training/education and experience. - 5 years proven ability to transfer technology to end user applications/environments. - 2 years of experience influencing technical direction in one of the following: application, data bases, or infrastructure. Professional Certification(s): - NA Technical Skills and Knowledge: - Expert in one or more technologies (Microsoft, OpenSource, Databased (relational, graph, Map, Document). - Experience with suite of IT applications including transactional, middleware integration, workflow, web based. - Solid knowledge in infrastructure and networks with a focus on security. - Solid understanding of various project methodology disciplines with solid knowledge of information and systems architectures, highly proficient in website architectures. - Solid understanding of various data base platforms and data warehousing. - Exposure to EA Framework such as FEAC, TOGAF or DODAF. Architect III Job Summary: Acts in a leadership role that ensures the IT architectural strategy aligns with the overall corporate strategy and is tune with evolving business trends and technology capabilities. Assists in the development of solution options to arrive at better decisions that will reduce IT cost, improve system flows, increase agility, and remove duplicative functionality. Supports the management of risk associated with IT assets through the development and promotion of standards and polices. Expertise may be concentrated in one or more domains. Responsibilities: - Translates overall IT roadmap into actionable processes. Supports the establishment of targeted architecture and develops standards for the organization covering all key domains (Application, Data, and Infrastructure). - Defines the current and future state and the transitional plan. Focuses on the incremental improvements that move toward the future state looking for opportunities to streamline environments and remove redundancy. - Collaborates within teams, participates in reviews of all prospective software and hardware acquisitions. Evaluates compatibility with current architecture and supports future architecture roadmaps. Identifies architectural risks and proposes alternatives and solutions. Documents exceptions to architectural standards. - Review new and existing IT standards, and architectural plans modifies or creates standards and policies to support the future state. develops architectural metrics and reports for the executive team, business and IT management. - Maintain active awareness of IT industry including new developments, emerging trends, development tools and best practices - Performs other duties as assigned. Qualifications: Education and Experience: - Bachelor's degree in Computer Science or related field or equivalent combination of training/education and experience. - 7 years proven ability to transfer technology to end user applications/environments. - 3 years of experience influencing technical direction in one of the following: application, data bases, or infrastructure. Professional Certification(s): - NA Technical Skills and Knowledge: - Expert in one or more technologies (Microsoft, OpenSource, Databased (relational, graph, Map, Document). - Experience with suite of IT applications including transactional, middleware integration, workflow, web based. - Advanced knowledge in infrastructure and networks with a focus on security. - Advanced understanding of various project methodology disciplines with advanced knowledge of information and systems architectures, highly proficient in wesite architectures. - Advanced understanding of various data base platforms and data warehousing. - Exposure to EA Framework such as FEAC, TOGAF or DODAF. Medical Mutual is looking to grow our team! We truly value and respect the talents and abilities of all of our employees. That's why we offer an exceptional package that includes: A Great Place to Work: - We will provide the equipment you need for this role, including a laptop, monitors, keyboard, mouse and headset. - Whether you are working remote or in the office, employees have access to on-site fitness centers at many locations, or a gym membership reimbursement when there is no Medical Mutual facility available. Enjoy the use of weights, cardio machines, locker rooms, classes and more. - On-site cafeteria, serving hot breakfast and lunch, at the Brooklyn, OH headquarters. - Discounts at many places in and around town, just for being a Medical Mutual team member. - The opportunity to earn cash rewards for shopping with our customers. - Business casual attire, including jeans. Excellent Benefits and Compensation: - Employee bonus program. - 401(k) with company match up to 4% and an additional company contribution. - Health Savings Account with a company matching contribution. - Excellent medical, dental, vision, life and disability insurance — insurance is what we do best, and we make affordable coverage for our team a priority. - Access to an Employee Assistance Program, which includes professional counseling, personal and professional coaching, self-help resources and assistance with work/life benefits. - Company holidays and up to 16 PTO days during the first year of employment with options to carry over unused PTO time. - After 120 days of service, parental leave for eligible employees who become parents through maternity, paternity or adoption. An Investment in You: - Career development programs and classes. - Mentoring and coaching to help you advance in your career. - Tuition reimbursement up to $5,250 per year, the IRS maximum. - Diverse, inclusive and welcoming culture with Business Resource Groups. About Medical Mutual: Medical Mutual’s status as a mutual company means we are owned by our policyholders, not stockholders, so we don’t answer to Wall Street analysts or pay dividends to investors. Instead, we focus on developing products and services that allow us to better serve our customers and the communities around us. There’s a good chance you already know many of our Medical Mutual customers. As the official insurer of everything you love, we are trusted by businesses and nonprofit organizations throughout Ohio to provide high-quality health, life, disability, dental, vision and indemnity plans. We offer fully insured and self-funded group coverage, including stop loss, as well as Medicare Advantage, Medicare Supplement and individual plans. Our plans provide peace of mind to more than 1.2 million Ohioans. We’re not just one of the largest health insurance companies based in Ohio, we’re also the longest running. Founded in 1934, we’re proud of our rich history with the communities where we live and work.

Related Categories

Related Job Pages

More Security Engineer Jobs

SupportYourApp logo

SOC Incident Response Specialist

SupportYourApp

Support-as-a-Service that helps companies scale faster by taking care of their customers’ needs.

Security Engineer11 hours ago
ContractRemoteTeam 1,001-5,000H1B No Sponsor

Role Description Our team is continuously growing alongside our expanding client base, so we are looking for a SOC Incident Response Specialist who is eager to apply their technical expertise, develop in the field of security, and work with real incidents and modern tools. What you will do: - Manage security and operational incidents end-to-end, including investigation, coordination, and response; - Communicate directly with Clients and stakeholders during Data Breach incidents; - Conduct Root Cause Analysis, develop preventive measures, and prepare management reports; - Analyze Clients’ workflows and incident trends to identify risks and improve security processes; - Assess the security of software, platforms, and third-party vendors; - Review new hiring locations for compliance with data protection and security standards; - Develop incident response procedures and maintain internal security documentation and knowledge base. Qualifications - Proven experience in investigating and handling information security incidents (from 1 year); - Experience in developing incident management procedures and documentation; - Analytical mindset and the ability to make fast decisions to mitigate incident impact; - Strong self-organization skills and the ability to prioritize work independently; - Understanding of data privacy principles and breach notification requirements; - English proficiency at level B2 or higher. Requirements - Proficiency in OSINT methodologies for investigations; - Experience in assessing the security of software, platforms, and third-party vendors; - Basic knowledge of security tools logic (SIEM, EDR, DLP, NGFW, VPN, VDI). Benefits - Providing services during business hours; - Opportunity to cooperate fully remotely; - Inclusive international environment; - Compensation in USD; - Rewards for referring friends; - Balance between project workload and personal time, but also – internal health policy; - Responsive leadership interested in your growth and long-lasting cooperation; - Greenhouse conditions for self-development; - A culture built on trust, with no time-tracking requirements. *The items listed in this section may vary depending on the terms of your engagement. Certain benefits and conditions typically apply to employees; independent contractors may not be eligible for all of these. The specific terms, including compensation, benefits, and work conditions, will be clearly defined in your agreement if selected.

Worldwide
IRIUM logo

Coordinador/a Pentesting

IRIUM

Líderes en gestión de servicios integrados de infraestructuras y plataformas IT.

Security Engineer15 hours ago
Full TimeRemoteTeam 501-1,000Since 2002H1B No Sponsor

• Colaborar en un proyecto del sector seguros en modalidad full-remote. • Coordinar y ejecutar pruebas de penetración. • Identificar riesgos de ciberseguridad y proponer enfoques de mitigación. • Estructurar y metodizar múltiples actividades de seguridad concurrentes.

Spain
€40K - €50K / year
Accenture logo

Data Security Specialist

Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.

Security Engineer18 hours ago
Full TimeRemoteTeam 10,001+H1B Sponsor

Role Description Explore new possibilities and make a meaningful impact. You will perform independently and become a subject matter expert while actively participating and contributing in team discussions. Your contributions will help provide effective solutions to work-related challenges. This opportunity invites you to engage deeply with Data Security, fostering growth and innovation. Join us to be part of an inspiring journey where your expertise will truly shine. - Design and implement security solutions that protect critical digital assets across various environments. - Govern the use of enterprise security tools and architecture frameworks to ensure robust protection. - Build and enhance digital identity, platform security, data protection, and cloud security measures. - Develop and maintain security operations centers to detect and respond to cyber threats effectively. - Align security strategies with enterprise policies and risk frameworks to maintain compliance and resilience. Qualifications - Advanced proficiency in Data Security. - Advanced proficiency in Data Encryption. - A minimum of 1 year of experience in relevant related skills. - High School Diploma/GED in relevant field of studies. Requirements - Intermediate proficiency in Secure AI. - Beginner proficiency in Cybersecurity Fundamentals. - Beginner proficiency in Security Data Privacy. - Advanced proficiency in risk assessment and mitigation. - Intermediate proficiency in threat analysis and incident response. Company Description Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. - We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. - Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. - We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. - Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. - We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.

Spain
General Dynamics logo

Multi-Cloud Security Engineer

General Dynamics

A business unit of General Dynamics, General Dynamics Information Technology (GDIT) supports some of the United States' most complex government, defense, and in

Security Engineer18 hours ago

Role Description Advance how our customers operate while you advance your career. Join GDIT as a Multi‑Cloud Security Engineer and build an impactful career in enterprise IT, working with technical professionals committed to protecting mission‑critical environments. As a Multi‑Cloud Security Engineer, you will support a FedRAMP‑regulated program by securing cloud workloads across AWS, Azure, Google Cloud Platform (GCP), and Oracle Cloud Infrastructure (OCI). You will be responsible for building, operating, hardening, and continuously improving security controls across diverse cloud platforms. Your day‑to‑day work will focus on hands‑on engineering, security automation, monitoring, threat mitigation, and compliance alignment. - Implementing and maintaining security configurations, guardrails, and baselines across AWS, Azure, GCP, and OCI. - Building and maintaining security automation using tools such as Terraform, Ansible, CloudFormation, Bicep, or Deployment Manager. - Operating cloud security tooling including SIEM/SOAR platforms, CSPM solutions, vulnerability scanners, key management, and logging/monitoring systems. - Managing IAM, roles, policies, conditional access, and least‑privilege models across multiple cloud identity systems. - Implementing FedRAMP and NIST 800‑53 security controls within multi‑cloud environments; supporting audits and continuous monitoring activities. - Hardening cloud resources including compute, storage, databases, containers, and serverless services. - Working with DevOps and engineering teams to integrate security into CI/CD pipelines. - Conducting vulnerability assessments, patching activities, configuration reviews, and remediation across cloud platforms. Qualifications - Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related technical field or equivalent experience. - Hands‑on cloud security engineering across at least two major cloud providers. - Strong experience with Linux/Unix, automation, cloud networking, and security tooling is highly beneficial. - One or more advanced certifications relevant to cloud security preferred: AWS Certified Security – Specialty, Microsoft Certified: Cybersecurity Architect Expert, Google Certified Professional Cloud Security Operations Engineer, Oracle Cloud Infrastructure Security Professional. - Additional cloud or security certifications such as CISSP are a plus. Requirements - Candidate will be subject to a government security investigation and must meet requirements for High‑Risk Public Trust access. - Location: remote, with some travel. - Timeline: Contingent posting, anticipated starting August 2026. Benefits - AI-powered tools to guide technical development and skill expansion. - Internal mobility resources to help you navigate your career path. - Competitive pay, PTO, 401(k) with company match, and comprehensive benefits and wellness programs. - Full-flex work week to help balance work and life priorities. - Award‑winning culture of innovation and a military‑friendly workplace.

United States
$111.2K - $150.4K / year