Skip to content

Senior DevSecOps Engineer

At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference.

Northwestern Mutual Life Insurance Company - Milwaukee, WI

Job Title: Senior DevSecOps Engineer

Job Description: The Senior DevSecOps Engineer at Northwestern Mutual Life Insurance Company in Milwaukee, Wisconsin will apply experience as a full stack engineer to work with architects, engineers, developers and business analysts to design build and maintain critical processes within public cloud and secure software development lifecycle. Utilize development and scripting skills including Python, Terraform, Bash, PowerShell in developing automated preventative/detective/reactive security controls and operationally supporting an immutable environment in public cloud. Develop preventative controls utilizing Terraform to create standardized templates with security controls integrated for application teams to utilize as part of software development lifecycle process. Develop detective controls utilizing AWS config to identify misconfiguration and vulnerabilities across our public cloud environment. Develop reactive controls utilizing AWS lambda to automatically remediate vulnerabilities across our public cloud environment. Utilize our cloud security posture management (CSPM) solution to develop policies that identify risk in our public cloud environment, leading to design and engineering of additional security controls. Work with industry standard frameworks such as NIST and the cloud security alliance matrix to assess risk of our public cloud environment and identify required controls to design and engineer. Participate in agile scrum ceremonies including backlog refinement, sprint planning, demos, retros, and PI planning. Respond to public cloud alerts utilizing solutions such as Splunk, Slack, and Grafana, resulting in various actions including remediation activities, lifecycle for interactively improving security controls, assist other cyber security teams such as incident response, and assist development teams in remediation efforts. Support both internal and external audits of public cloud environment and software development processes. Educate and mentor DevSecOps team members, as well as teams across the organization including development, engineering, architecture, risk management, and audit teams on cloud and application security topics.

Minimum Requirements: Bachelor's degree in Computer Science, Electronics Engineering or a related field plus five years of software development experience. Five years of work experience must include five years of experience with each of the following: (1) application development in programming and scripting languages including C#, Java, JavaScript, Python, or Bash; (2) identity and access management control design and implementation; (3) network and web protocols; and (4) applicable frameworks from NIST, OWASP, and CIS.

Interested candidates send resume to levaeharris@northwesternmutual.com. Reference code 116 in the subject line.

                       

This job is not covered by the existing Collective Bargaining Agreement.

Required Certifications:

Grow your career with a best-in-class company that puts our client’s interests at the center of all we do. Get started now! 

We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.

If you work or would be working in Colorado or outside of a Corporate location, please click here for information pertaining to compensation and benefits.


FIND YOUR FUTURE

We’re excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and commitment to diversity and inclusion.