Cardinal HealthRemote
Senior DevSecOps Engineer, Navista
United States
Full-time
5 days ago
$123,000 - $176,000 USD
H1B Sponsor Likely
Key skills
CI/CD solutionsDevSecOps practicesInfrastructure-as-codeKubernetes managementCloud computingMonitoring platformsSecurity complianceAgile practicesLeadership skillsCommunication skillsCollaboration skillsAnalyticsAzureGCPTerraformKubernetesJenkinsGitHub ActionsAnsibleIAMAzure DevOpsNew RelicSplunkDynatraceGitGitHubSource ControlAgileCI/CDLeadershipMentoringCommunicationCollaborationNetwork SecurityCloud Security
About this role
Cardinal Health's Navista is dedicated to empowering community oncology practices through advanced support services and technology. The Senior DevSecOps Engineer will lead technical initiatives, design and implement CI/CD pipelines, and enforce DevSecOps standards to ensure secure and reliable delivery of oncology applications across multi-cloud environments.
Responsibilities:
- Design, build, and maintain CI/CD pipelines (Azure DevOps, Harness, GitHub, Concourse, Jenkins, etc.) to support automated builds, testing, and deployments for Navista applications, ensuring quality through effective branching strategies, build automation, artifact management, and release governance
- Apply SRE principles by defining and maintaining SLIs/SLOs, implementing robust monitoring and alerting, and partnering with product and engineering teams to balance reliability, performance, and delivery velocity
- Leads implementation of security controls within CI/CD pipelines, infrastructure-as-code, and deployment workflows to ensure compliance with HIPAA and HITECH requirements
- Ensures applications and platforms adhere to security, privacy, and data protection standards across development, staging, and production environments
- Implements automated controls for vulnerability scanning, secure credential and key management, and audit logging
- Integrate security, compliance checks, and quality gates into CI/CD workflows, applying DevSecOps practices across the software delivery lifecycle
- Implement and maintain infrastructure-as-code (e.g., Terraform) to provision and manage cloud and on‑prem environments consistently
- Manage and optimize resources across multi‑cloud environments, including Kubernetes services, virtual machines, networking, storage, and related services in GCP, Azure, and data centers
- Collaborate closely with application, QA, security, and cloud platform teams to support product development and ensure high availability, performance, and resilience
- Troubleshoot and resolve build, deployment, performance, and environment issues, leading root cause analysis and driving long-term reliability improvements
- Evaluate and adopt emerging DevOps, SRE, and DevSecOps tools and practices to enhance automation, observability, and developer experience
- Document pipeline architectures, standards, and runbooks, contributing to a shared knowledge base for DevOps/SRE processes and tooling
- Serve as a technical thought leader, collaborating with global, cross-functional teams and guiding and mentoring engineers to uphold best practices, architectural standards, and a collaborative, inclusive, growth-oriented team culture
Requirements:
- 8-12 years of experience in technology domains such as software development, cloud computing, and systems engineering, with exposure to infrastructure, security, networking, and data & analytics
- Bachelor's degree in related field, or equivalent work experience
- 3+ years designing and operating CI/CD solutions in Azure DevOps; experience with build automation and source control (Git, GitHub)
- Proven experience implementing CI/CD using tools such as Jenkins, GitHub Actions, Maven/Gradle, and configuration/automation tools (e.g., Ansible)
- Strong proficiency with infrastructure-as-code tools (e.g., Terraform) for Azure, GCP, and on‑prem infrastructure
- Experience managing Kubernetes-based workloads and cloud services in GCP and/or Azure
- Demonstrated exposure to SRE practices such as SLIs/SLOs, error budgets, capacity planning, incident management, and post‑incident reviews
- Solid understanding of DevSecOps practices and cloud security concepts (IAM, secrets management, network security) and integrating security and compliance into pipelines
- Experience with monitoring, logging, and observability platforms (e.g., Dynatrace, New Relic, Splunk, or similar)
- Strong leadership, communication, and collaboration skills with the ability to influence technical direction and translate complex concepts for both technical teams and leadership audiences
- Exposure to Agile development practices
- 2+ years of experience with the Harness platform (feature flags, CI/CD, monitoring)
- Experience in healthcare or oncology-focused environments is a plus