Lead Cloud and Application Security Engineer @ Ryan Specialty | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Lead Cloud and Application Security Engineer jobs in Remote - United States
68 applicants
company-logo

Ryan Specialty · 21 hours ago

Lead Cloud and Application Security Engineer

positionRemote - United States
timeFull-time
remoteRemote
senioritySenior Level
money$152K/yr - $190K/yr
date7+ years exp
ftfMaximize your interview chances
Financial ServicesInsurance
check
Comp. & Benefits
check
H1B Sponsor Likelynote

Insider Connection @Ryan Specialty

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Collaborate with IT, development, and operations teams to embed security into every aspect of the cloud and application security lifecycle.
Advocate for security best practices, raising awareness and driving a security-first culture across the organization.
Develop and implement automated security solutions to streamline security processes, improve efficiency, and enhance response capabilities.
Collaborate with architecture and IT to design, implement, and manage security measures for our cloud environments.
Develop and enforce security best practices for Infrastructure as Code (IaC) to ensure secure deployment and configuration management.
Secure containerized environments, including Docker and Kubernetes, and ensure compliance with security benchmarks.
Partner with DevOps teams to integrate security into the CI/CD pipeline for container deployment and management.
Along with the Senior Application Security Engineer, lead application security initiatives, including secure code reviews, vulnerability assessments, and web application penetration testing.
Develop and maintain application security standards and guidelines, ensuring they are integrated into the software development lifecycle.
Stay abreast of the latest security threats, trends, and technologies, especially in cloud, IaC, and container environments.
Proactively identify and investigate security threats by analyzing security logs, conducting threat hunting exercises, and implementing advanced detection mechanisms
Continuously evaluate and improve security tools and processes to address evolving security.
Be action oriented, demonstrating high energy and an action-oriented approach to challenging work tasks, with a willingness to act swiftly and with minimal planning when opportunities arise.
Build strong peer relationships by finding common ground and fostering problem-solving for mutual benefit, advocating for information security interests while remaining equitable to other groups, promoting teamwork and cooperation, and maintaining open and honest communication with colleagues.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Cloud SecurityApplication SecurityInfrastructure as CodeAWSAzureGCPKubernetesDockerTerraformAnsibleStatic AnalysisDynamic AnalysisOWASP StandardsPythonGoJavaScriptYAMLCIS BenchmarksTechnical Documentation

Required

Bachelor’s degree in computer science/engineering/information security preferred.
Minimum of 7 years’ experience in Information Security within cloud-native or SaaS technology environments.
Proficiency in cloud platforms such as AWS, Azure, and GCP, container orchestration tools (Kubernetes, Docker), and Infrastructure as Code (Terraform, Ansible).
Experience in application security practices and tools, including static/dynamic analysis and familiarity with OWASP standards.
Strong analytical, problem-solving, and communication skills.
Ability to work collaboratively in a dynamic environment.
3-5 years of hands-on experience securing Infrastructure as Code, Application Security, and Policy as Code (PaC) using coding languages such as Python, Go, JavaScript, or YAML.
Minimum two years of experience automating and scaling CIS benchmarks or equivalent standards.
Extensive experience writing technical and business-friendly security documentation.
Strong written and verbal communication skills in English.

Preferred

Professional certifications such as Certified Information Systems Security Professional (CISSP) or Certified Cloud Security Professional (CCSP) are highly desirable.

Benefits

Paid time off for company holidays, vacation, sick and personal days
Paid parental leave
Mental health services

Company

Ryan Specialty

twittertwittertwitter
Glassdoor
3.7
company-logo
Ryan Specialty is an insurance firm that provides solutions for brokers, agents, and insurance carriers.
dateFounded in 2010
location
Chicago, Illinois, USA
people-size1,001-5,000 employees
web-link
https://ryanspecialty.com

H1B Sponsorship

Ryan Specialty has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (2)
2022 (5)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Katie Davies
CEO of JEM Specialty Underwriters, Technical Risk Underwriters and Per SE (Power.Energy.Risk)
linkedin
J
Jeremiah Bickham
Executive Vice President, Chief Financial Officer
linkedin

Recent News

Fortune
A few Election Day thoughts from the last 200 years
2024-11-06
Coverager - Insurance news and insights
Ryan Specialty completes acquisition of Innovisk Capital Partners
2024-11-05
Investor's Business Daily
Stock Market Retreats Before Election Day; Microsoft, Apple, Amazon, Google, Meta In Focus: Weekly Review
2024-11-01
Company data provided by crunchbase
logo

Orion

Your AI Copilot