Origami Risk · 2 days ago
Senior Security Engineer
Wonder how qualified you are to the job?
Maximize your interview chances
InsuranceRisk Management
H1B SponsorshipComp. & Benefits
Insider Connection @Origami Risk
Responsibilities
Mentor team members and help to scope upcoming projects and support agile approaches to work management.
Use analytical skills against loosely defined requirements to develop clarifying questions for shaping project tasks.
Experience in leading or participating in Red Team/Blue Team exercises.
Conduct comprehensive network and security assessments of cloud environments to identify vulnerabilities, misconfigurations, and compliance gaps.
Ensure network security best practices are implemented and maintained across all platforms.
Work closely with DevOps Engineers and Site Reliability Engineers to design, implement, and manage security controls and technologies on public cloud platforms (e.g., AWS, Azure, Google Cloud), such as identity and access management (IAM), encryption, key management, and network security controls.
Familiarity with firewall, email security, Extended Detection and Response (XDR), Endpoint Detection and Response (EDR), Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and security automation tools and methodologies.
Collaborate with Compliance and Product Security teams to build a robust vulnerability management program using automations and workflows to drive timely remediations, with focus on increasing visibility with reporting and metrics.
Assist in developing, auditing, and implementing security policies and procedures, and the review of security controls to ensure compliance with established security standards such as CIS, NIST, GDPR, ISO 27001 and others.
Stay abreast of emerging trends, threats, and security technologies in public cloud environments, and proactively recommend and implement measures to mitigate risks.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
BS in computer science, networking, information systems, or computer engineering with 5+ years’ experience in security engineering.
Minimum of two years’ experience in the design, implementation, support, and evaluation of security-focused tools and services.
Minimum of two years’ experience in risk management for Cloud Architectures.
Minimum of two years’ experience with three or more of the following areas: cryptography, web and network protocols, data structures and algorithms, software development, threat modelling, pen tests, or vulnerability assessments.
Strong analytical background with the ability to assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
Experience with securing Infrastructure as Code (IaC) and CI/CD pipelines.
Experience with Cloud Security Posture Management (CSPM), EDR/EXR, and Vulnerability Management solutions. (e.g., Prisma Cloud, Wiz, Qualys, Crowdstrike)
Comfortable with Linux, Windows, and Cloud Provider CLIs.
Experience with scripting and programming languages such as Python, Bash, PowerShell, etc.
Self-motivated individual with the ability to leverage technical skills and correlate data to streamline analysis quickly and effectively.
Industry Certifications such as CISSP, GPEN, GXPN, OSCP, GCIA, GSEC, GREM.
Cloud Security Certifications such as CCSP, CCAK, CCSK, AWS Certified Security Specialty is preferred.
Company
Origami Risk
Origami Risk operates as a web-based software provider for the Risk and Insurance Industry.
H1B Sponsorship
Origami Risk has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2022 (2)
Funding
Current Stage
Late StageTotal Funding
unknownKey Investors
Spectrum Equity
2018-03-19Private Equity· Undisclosed
Leadership Team
Recent News
2024-05-24
FinTech Global
2024-05-24
2024-05-24
Company data provided by crunchbase