Hiring.fm
Group1001

Senior Cloud Security Engineer

Zionsville, Indiana Full time

Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding value and operational performance by combining financial strength and stability with deep insurance expertise and a can-do culture. Group1001’s culture emphasizes the importance of collaboration, communication, core business focus, risk management, and striving for outcomes. This goal extends to how we hire and onboard our most valuable assets – our employees.

Why This Role Matters:


The Product Security Lead at Group 1001 will lead efforts to integrate security best practices into the full product development lifecycle, ensuring the security and integrity of our technology systems from design to deployment. This role requires experience across a number of security disciplines, including application security, cloud security, platform engineering, software engineering, and process improvement. This is an exciting opportunity to exert significant positive change by driving secure development practices and delivering security features to both our end-user and internal applications/systems in partnership with cross-organizational engineering partners.


How You'll Contribute:

  • Lead a team to orchestrate Vulnerability Management, Cloud Security, and Application Security initiatives across the organization.
  • Collaborate with development, platform, and infrastructure teams to employ and improve automated security analysis tooling.
  • Strategize, plan, and execute the commoditization of security features and integrations to be leveraged across disparate engineering teams and their respective applications.
  • Conduct security reviews and provide guidance on architectural designs to address security requirements.
  • Lead efforts to design-in security features to internal and product applications and systems (avoiding bolt-on security implementations).
  • Stay up to date on emerging threats and industry best practices in product security.

What We're Looking For:

  • Bachelor’s in Computer Science, Cybersecurity, or related degree.
  • 7+ years of experience in product security, application security, software development, or related fields.
  • Strong understanding of secure coding practices and common application and infrastructure vulnerabilities (e.g., OWASP Top 10).
  • Experience with one or more software programming languages (e.g. Python, JavaScript, Java, Kotlin, Golang).
  • Experience with one or more infrastructure automation frameworks (e.g. Terraform, Ansible).
  • Familiarity with modern platform, API, and application frameworks (e.g. containerization, Kubernetes, WAF, API Gateway).
  • Familiarity with major cloud platforms (e.g. AWS, Azure, GCP).
  • Experience with application security testing tools and technologies (e.g., SAST, DAST, SCA).
  • Experience employing tools to introspect vulnerabilities and misconfigurations of cloud, virtual, and physical systems.
  • Experience managing a technical team or leading the design, delivery, and operation of technical initiatives/products.
  • Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.

Compensation:  

Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay for this position ranges from $200,000/year in our lowest geographic market up to $240,000/year in our highest geographic market.  Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

Benefits Highlights:  

Employees who meet benefit eligibility guidelines and work 30 hours or more weekly, have the ability to enroll in Group 1001’s benefits package. Employees (and their families) are eligible to participate in the Company’s comprehensive health, dental, and vision insurance plan options.  Employees are also eligible for Basic and Supplemental Life Insurance, Short and Long-Term Disability. All employees (regardless of hours worked) have immediate access to the Company’s Employee Assistance Program and wellness programs—no enrollment is required.  Employees may also participate in the Company’s 401K plan, with matching contributions by the Company.

 

Group 1001, and its affiliated companies, is strongly committed to providing a supportive work environment where employee differences are valued. Diversity is an essential ingredient in making Group 1001 a welcoming place to work and is fundamental in building a high-performance team. Diversity embodies all the differences that make us unique individuals.  All employees share the responsibility for maintaining a workplace culture of dignity, respect, understanding and appreciation of individual and group differences.

#LI-AS1 #LI-REMOTE