Senior Security Engineer

About UsResilience is the next-generation cyber risk company that’s on a mission to help make the world cyber resilient. 
Founded in 2016 by experts from across the highest tiers of the US military and intelligence communities, augmented by prominent leaders and innovators from the insurance and technology industries, the privately-held firm is rewriting the rules of how cyber risk is assessed and managed for middle to large market enterprises. Rooted in decades of experience, Resilience helps financial, risk, and information security leaders continuously improve their organizations' cyber resilience by connecting cyber insurance coverage with advanced cybersecurity visibility and a shared plan to reinforce actionable cyber hygiene. 
Resilience is proud to be backed by leading technology investment firms including General Catalyst, Lightspeed Venture Partners, Intact Ventures, Founders Fund, CRV, and Shield Capital. With headquarters in San Francisco, Resilience’s team is globally dispersed, with offices in New York, Chicago, Baltimore, Toronto, and London. Resilience offers insurance coverage through its licensed and appointed insurance agency and security services through its expert security team.  

Resilience is searching for an extraordinary Sr. Security Engineer in North America to provide expert advice and analysis to help customers better assess, measure, and manage their cyber risk as an integral part of Resilience’s holistic cyber risk solution. Leveraging Resilience’s proprietary risk visibility and prioritization SaaS solution, you will work with customers to develop strategies to enhance their resilience against cyber threats. You will work closely with customers’ security, risk, and finance stakeholders to translate security into risk, provide recommendations, and guide clients to make financially-prioritized risk/security decisions as a part of Resilience’s Human-in-the-Loop capabilities.
Resilience is a fast-paced, high growth, evolving mid-to-late stage startup environment. You will need to work confidently and quickly, be the voice of the customer, and share customer insights with other Resilience team members to propel the company-wide internal feedback loop. Resilience has a global presence with both foundational and execution needs across all geographies, so flexible working hours are required.
This position is a Hybrid position located in one of the following locations: Los Angeles or San Francisco.

Responsibilities:

• Participate in customer engagements to translate security concepts into risk impact.
• Create impactful experiences for key customer stakeholders which include mid-level through C-suite security, risk, and finance professionals.
• Assess the impact of security vulnerabilities and weaknesses in a company’s networks and quickly recommend changes to processes and technologies to reduce customer cyber risk.
• Own the technical solution response to the customer and help deliver a comprehensive Resilience solution response that leverages the Resilience SaaS portal and your expertise.
• Present the solution proposal to the customer, demonstrate how it reduces the customer’s risk and the financial impact of that risk reduction, and how the solution is differentiated from the competition.
• Act as technical security subject matter expert for internal (Product, Engineering, Data Science, and Underwriting) and external (customers and insurance brokers) audiences that connect security to risk.
• Assist with risk selection in collaboration with Underwriting.
• Anticipated Travel: 15-20%.

Qualifications:

• 7+ years of experience with and knowledge of cyber risk management principles and frameworks such as CMMC, GDPR, HIPAA, ISO 27001, NIST CSF, PCI DSS, etc.
• Strong communication and interpersonal skills to effectively collaborate with mid-level to C-suite stakeholders.
• Ability to assess the impact of security vulnerabilities and weaknesses in a company’s networks and quickly recommend changes to processes and technologies to remediate.
• Experience in conducting risk assessments and developing risk mitigation strategies.
• Understanding of incident response procedures and best practices.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills to effectively collaborate with mid-level to C-suite stakeholders.
• Relevant professional certifications (e.g. CISSP, CISA, CISM, CRISC) are a plus.
• Ability to work independently and manage multiple tasks in a fast-paced environment.
• Strong attention to detail.
• Ability to work in a self-directed environment that is highly collaborative and cross-functional.
• Bachelor's degree in computer science, information security, risk management, a related field, or equivalent work experience.

What Resilience Offers YouInnovative company cultureFlexible work schedulesFamily paid leavePaid healthcare for employees401kProfessional development & career advancementsFlexible paid time offEmployee referral bonus
Accommodations and AccessibilityWe want to ensure you're able to perform as well as possible in your interview. As part of that, if you have any accessibility-related needs to ensure a comfortable visit, please let us know. We'll do our best to provide reasonable accommodations to suit your working style during your interview and if you join our team.
If you require a reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to our Human Resources team at humanresources@cyberresilience.com.