Job Description
Job Description
Put your technical expertise to work at one of the nation’s top academic medical centers!
The Security Development Operations (SecDevOps) Architect is responsible for the design, development, and implementation of web applications, command line scripts, and diverse technical deliverables of the Security Development Operations (SecDevOps) Team under NYP Information Security. The SecDevOps Architect will use agile methodologies and modern development practices to conceptualize, create, operationalize, and support bespoke applications that provide vital capabilities to Information Security and other stakeholders.
Core Skillsets / Experience :
- Ten (10) or more years of professional experience designing and developing scalable web applications using the Django framework. (Preference will be given to candidates that also have Node.js experience.)
- Ability to write clean and maintainable code that adheres to application security best practices.
- Extensive experience creating, securing, and implementing APIs for integration with third-party systems.
- Strong understanding and experience with DevOps practices, tooling, and agile methodologies.
- A strong communicator and technical leader that is equally comfortable in front of an audience or at the keyboard.
Essential Job Duties :
Design, develop, and maintain scalable web applications using modern Python and Node.js frameworks.Write clean, maintainable, and secure code following best practices and internal coding standards.Write HTML, JavaScript, and CSS to satisfy user interface requirements.Create, secure, and implement APIs for data exchange and integration with other systems.Write performant SQL queries for relational databases that support web application functionality.Develop and execute unit tests to ensure code quality.Debug, diagnose, and correct issues impacting the performance of web applications, scripts, and other solutions.Use version control system (e.g., Git) for all development activities.Work with a DevOps platform to manage code repositories, track work, and collaborate with team members.Develop CI / CD pipelines to automate and streamline deployments.Participate in, and contribute to, code reviews and other collaborative technical sessions.Create and maintain detailed technical documentation.Perform periodic system administration and configuration tasks in Linux server environmentsContinually improve web application functionality and user experience through ongoing collaboration with stakeholders and Information Security leadership.Collaborate with project stakeholders to identify emerging requirements, operational and technical gaps, and potential targets for automation.Implement and utilize various open-source and commercial software solutions to strengthen software development practices and enhance security.Stay up to date on industry trends, new technologies, and best practices directly applicable to the role.Organize and lead technical workshops for team members and other user-facing training events.Work effectively as part of a team and independently.Perform various technical, administrative, and other tasks as required.May require occasional on-site presence; therefore, should live within a commutable distance. No relocation assistance available.”
Required Qualifications :
Bachelor’s degree in Computer Science, Information Technology, or a computer related discipline or equivalent experienceSEC401, Security , or similar security professional certificationsExperience creating web applications using Python frameworksExperience creating web applications using Node.js frameworksExperience writing command line scripts with PythonExperience working with REST APIsExperience writing HTML, CSS, and JavaScript for user interfacesExperience with relational databases and SQLExperience with the Linux operating system10 years of relevant web application development experienceExperience configuring and administering web and application services in LinuxStrong communication skills to communicate systems proposals to management and customers, and provide systems diagnoses and resolution for current systemsStrong organization skills to prioritize work and deliver on complex projectsStrong interpersonal skills to interact with customers, leadership, and team members.Able to work autonomously and collaborativelyPreferred Qualifications :
Knowledge and experience with authentication and authorization mechanisms, including two-factor and federation platforms.Knowledge and experience with networking, network security platforms including SIEM, firewalls, intrusion detection and prevention, web proxies and internet content filtering.Knowledge and experience with the following security technologies : cryptography and encryption products, data handling and classification procedures, vulnerability remediationKnowledge and experience of security operations orchestration platforms, infrastructure monitoring platforms, and automation fundamentalsJoin a healthcare system where employee engagement is at an all-time high. Here we foster a culture of respect, diversity, and inclusion. Enjoy comprehensive and competitive benefits that support you and your family in every aspect of life. Start your life-changing journey today.Skills and Certifications [note : bold skills and certification are required]
Bachelor’s degree in Computer Science, Information Technology, or a computer related discipline or eSEC401, Security , or similar security professional certifications10 years of relevant web application development experienceIdeal Candidate :
Someone who is experienced in the following
Ten (10) or more years of professional experience designing and developing scalable web applications using the Django framework. (Preference will be given to candidates that also have Node.js experience.)Ability to write clean and maintainable code that adheres to application security best practices.Extensive experience creating, securing, and implementing APIs for integration with third-party systems.Strong understanding and experience with DevOps practices, tooling, and agile methodologies.A strong communicator and technical leader that is equally comfortable in front of an audience or at the keyboard.
