Senior Information Security Engineer (T2P)

Senior Information Security Engineer (T2P)

What we need

• 12+ years of relevant experience
• Strong understanding of Cryptography, Authentication, Authorization, Secrets Management, Data Security, Web Technologies, and Cloud Security
• Hands-on experience with security testing tools (Burp Suite, OWASP, ZAP, etc.)
• Experience with secure coding practices and security frameworks (OWASP, NIST, CIS etc.)
• Experience building, supporting, and securing cloud-based web infrastructure with AWS and/or Azure
• Understanding of and ability to deal with and prevent security threats and risks
• Working knowledge of Software Engineering and Deployments (CI/CD pipelines, SCM)
• Deep understanding of web application infrastructure (.NET, JavaScript, etc.)
• Experience in DevSecOps with tech stack knowledge (Git, Docker, Windows, Linux, Datadog, SIEM, AWS Security products, Lambda, PowerShell, Terraform)

What you bring to the table

• Proactive and positive approach to solving problems and correcting issues
• Stays current with industry standards, best practices and security technologies
• Loves to learn and takes every opportunity you re given to develop knowledge and skills
• Brings your best each day willing to make an impact, with an excitement to wear multiple hats as part of a lean security team
• You are passionate about making incremental improvements
• A strong team player that enjoys working in a collaborative, team environment
• Brings a professional approach to situations, treating others with respect and understanding

Wish list

• Continued education and/or advanced degree(s)
• Experience in environments subject to HITRUST, HIPAA and/or PCI regulations
• Experience in software-as-a-service, actuarial science, and/or insurance underwriting indust