Group 1001Remote
Senior Security Engineer
United States
Full-time
4 days ago
$210,000 - $230,000 USD
H1B Sponsor Likely
Key skills
PythonAWSAzureGCPLambdaIAMPerformance OptimizationLeadershipCommunicationCritical ThinkingCollaborationCloud SecurityWAF
About this role
Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding value and operational performance. As a Senior Cybersecurity Engineer, you will play a critical role in safeguarding the organization by addressing emerging threats, implementing security measures, and providing strategic leadership to ensure cybersecurity resilience.
Responsibilities:
- Collaborate with cross-functional teams to design and implement secure architecture and solutions, ensuring the confidentiality, integrity, and availability of data
- Ensure availability of critical systems that enable the Cybersecurity mission, including SIEM, SOAR, and EDR solutions
- Own the design, configuration, and ongoing optimization of the SIEM platform, including data normalization, and parsing, and log ingestion
- Configure, deploy, and maintain EDR solutions across heterogeneous environments (endpoints, servers, and cloud workloads), including policy design, tuning, agent deployment strategies, and integration with SIEM/SOAR for automated response
- Develop, implement, and maintain cloud security strategies, policies, and best practices for public cloud platforms (e.g., AWS, Azure, GCP)
- Continuously monitor new and evolving security threats, vulnerabilities, and industry trends
- Identify areas for improvement in security processes, policies, and technologies and drive initiatives to enhance security effectiveness
- Assume accountability for projects, propose innovative solutions, and actively steer them to successful completion
Requirements:
- Bachelor's degree in Computer Science, Information Security, or related academic field
- 7-10 years of professional experience in information security, with focus on the financial sector
- Strong knowledge of public cloud platforms (e.g., AWS, Azure, GCP) from an infrastructure and development aspect and their related security features
- Experience working with cloud native solutions such as AWS Guard Duty, Cloudtrail, Lambda, IAM as well as related capabilities in Azure, GCP/Google Security Center
- Understanding of industry security frameworks, standards, and best practices (e.g., NIST, ISO, CIS)
- Experience with broad range of security tools and technologies (e.g., SIEM, CASB, CSPM, EDR, IDS/IPS, DLP, WAF)
- Hands-on experience engineering, administering, and tuning SIEM platforms (e.g., data onboarding, performance optimization, integration with other security tools)
- Hands-on experience deploying, configuring, and managing EDR solutions at enterprise scale, including policy design, tuning for noise reduction, and integration into incident response workflows
- Experience in modern coding languages such as Python, particularly for automation of security platform operations, health monitoring, and integration tasks
- Strong communication and collaboration skills, with the ability to work closely with engineering, operations and infrastructure teams
- Familiarity with compliance standards and regulations
- Creativity and critical thinking with the ability to work both independently and collaboratively in a fast-paced environment
- Be able to serve as a mentor or subject matter expert to other members within the organization, particularly in the areas of SIEM engineering, endpoint security, and logging strategy