Senior Security Operations Engineer (Remote)
Remote
Applications have closed
Bestow
Bestow uses data to remove doctor visits and paper work of traditional life insurance, offering you an affordable plan without the hassle.Bestow is the leading digital platform for life insurance. As both a direct-to-consumer destination and an infrastructure provider, Bestow is on a mission to make life insurance accessible to millions of underserved families.
We strive for work-life balance and believe happy employees make for better experiences and happier customers. It’s a model that helped us land on Forbes’ Best Startup Employers 2021 and 2022 lists!
ABOUT THE TEAM
As our Senior Security Operations Engineer, you will be critical in supporting our company-wide information security/privacy risk and governance program. You will be responsible for setting up and running the security & privacy operational task to keep our customers and our company data safe.
With your technical skills, the successful candidate will have deep experience implementing security practices, guidelines, and recommendations. Your strong partnership with co-workers will help these process owners be successful during audits. Our team thrives in highly independent and autonomous work culture and values mentorship and learning.
Open to Austin, TX, Dallas, TX, Remote (US) #LI-Remote
ABOUT THE ROLE
- Collaborate with the Chief Security Officer (CSO) to assist with developing, maintaining, and implementing security standards.
- Partner with IT to ensure secure implementation of access controls and identity management
- Lead initiatives for the operating system, docker images, Kubernetes/GKE, and configuration hardening in the public cloud
- Design and implement comprehensive vulnerability and patch management programs
- Advise technical IT teams on remediation steps for vulnerabilities identified with scans or penetration tests
- Lead and collaborate with IT, Legal, Finance, Insurance Operations, External Examiners, and business areas appropriate during compliance exams
- Own the day-to-day operations of security scanning and web penetration testing tools
- Implement security monitoring measures to secure the production environment
- Serve as a technical advisor and provide regular metrics and updates on the state of the environment
- Continuously look for opportunities to improve our security tooling, apparatus, and best practices
THIS ROLE REPORTS TO
- Manager, Cloud Engineering
YOUR EXPERIENCE
- 5+ years of Information Security Experience
- Working experience with the Google Cloud Platform (GCP) or AWS
- Hands-on experience with automation and scripting such as Terraform and Shell/Python scripts
- Experience with managing penetration testing of web applications, network devices, and cloud configurations
- A self-starter, comfortable working with cloud infrastructure, software development, and information security risk issues
- Knowledge of information technology and/or software development risk management frameworks, including compliance practices
- Knowledge of NIST CSF and implementing Information Security Controls
- Ability to implement security policies, standards, and guidelines based on best practices and industry frameworks
- Excellent interpersonal, communication, and presentation skills, including formal report writing experience
- Industry security certifications (i.e. CCSP, CCSK, CCSE for cloud security) are a plus
Competitive salary and equity based on roleAnnual bonus based on company and individual performanceFlexible PTO plan100% paid premiums for medical, dental, and vision insurancePaid parental leaveAnnual lifestyle spending account to support your physical, emotional, and financial wellbeingFlexible work-from-home policy and open to remoteLearning & Development opportunities
We value diversity at Bestow. We hire, recruit, and promote without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, pregnancy or maternity, veteran status, or any other status protected by applicable law. We understand the importance of creating a safe and comfortable work environment and encourage individualism and authenticity in every member of our team.
Tags: Audits Automation AWS CCSP Cloud Compliance Docker Finance GCP Governance Kubernetes Monitoring NIST Pentesting Privacy Python Risk management Scripting Terraform Vulnerabilities
Perks/benefits: Career development Competitive pay Equity Health care Salary bonus Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs