Address
Form of workSenior Information Security Engineer
Job Summary:
Are you an experienced Information Security Engineer with a passion for protecting cloud infrastructures from cyber threats? Do you thrive on designing and implementing innovative security solutions to safeguard the confidentiality, integrity, and availability of cloud environments? If so, we want you to join our team!
As our Senior Information Security Engineer, you will be a key player in developing and implementing cutting-edge security solutions for our cloud-based infrastructures. You will leverage your significant hands-on experience with Microsoft Cloud Security technologies to design and implement security policies, procedures, and controls that provide top-notch protection against evolving cyber threats. You will collaborate closely with our cross-functional teams to ensure that our cloud environments meet the highest standards of security and compliance.
In this role, you will have the opportunity to work on exciting projects that challenge you to stay ahead of the curve in cloud security. You will have access to the latest tools and technologies and will be empowered to make a real impact on the security posture of our cloud infrastructures. If you're a self-starter who is passionate about cloud security and loves solving complex problems, we want to hear from you! Join us and be part of a dynamic team that is shaping the future of cloud security at National Life Group.
Duties and Responsibilities:
- Develop and implement security solutions for cloud-based infrastructures.
- Design and implement security policies, procedures, and controls to ensure the security of cloud environments.
- Collaborate with stakeholders to determine appropriate security requirements to ensure compliance with industry standards and regulations.
- Develop and maintain security documentation and standards.
- Develop and maintain security incident response plans.
- Participate in incident response and investigations.
- Stay current with emerging technologies and trends in cloud security.
- Provide guidance and support to junior team members.
- Highly desirable:
- Conduct application security assessments, including vulnerability scanning, penetration testing, and code review, using automated tools and manual techniques.
- Develop and maintain secure coding standards, guidelines, and best practices for software development teams, and provide guidance and training on secure coding practices.
- Collaborate with development teams to ensure secure coding practices and continuous integration/continuous deployment (CI/CD) pipelines.
Qualifications:
- Bachelor’s degree in computer science, cybersecurity, or related field.
- Minimum of 5 years of Information security experience
- Minimum 3 years of experience in Microsoft Cloud Security including:
- Microsoft Defender: Identity, O365, Endpoint, Cloud Apps, / Information Protection and Governance / eDiscovery.
- Azure Active Directory
- Intune
- Strong understanding of networking, operating systems, and cloud technologies.
- Experience designing and implementing Container Security, API Security
- Experience with Cybersecurity Incident Response
- Excellent analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Relevant industry certifications such as CISSP, CCSP, CCSK, Microsoft Certified: Cybersecurity Architect Expert.
- While not mandatory, candidates who additionally possess the following skills would be highly desirable:
- Expertise in automation tools such as Terraform, Ansible, Chef, or Puppet, and proficiency in scripting languages such as Python, Bash, or PowerShell.
- Knowledge of containerization technologies such as Docker, Kubernetes, or OpenShift, and experience in securing containerized workloads and microservices architectures.
- Familiarity with DevOps and Agile methodologies, and experience in integrating security testing and analysis in the CI/CD pipeline using tools such as Jenkins, GitLab, or CircleCI.
The base compensation range represents the low and high end of the range for this position. Actual compensation will vary and may be above or below the range based on various factors including but not limited to qualifications, skills, competencies, location, and experience. The range listed is just one component of our total compensation package for employees.Other rewards may include an annual bonus, quarterly bonuses, commissions, and other long-term incentive compensation, depending on the position. National Life offers a competitive total rewards package which includes: a 401(k) retirement plan match; medical, dental, and vision insurance; a company funded wellness account for director and below employees; 10 paid holidays; a generous paid time off plan (22 days of combined time-off for non-exempt employees and exempt employees have discretion in managing their time, including scheduling time off in the normal course of business, but in no event will exempt employees receive less sick time than required by state or local law); 6 weeks of paid parental leave; and 6 weeks of paid family leave after a year of full-time employmentNational Life Group® is a trade name of National Life Insurance Company, Montpelier, VT – founded in 1848, Life Insurance Company of the Southwest, Addison, TX – chartered in 1955, and their affiliates. Each company of National Life Group is solely responsible for its own financial condition and contractual obligations. Life Insurance Company of the Southwest is not an authorized insurer in New York and does not conduct insurance business in New York. Equity Services, Inc., Member FINRA/SIPC, is a Broker/Dealer and Registered Investment Adviser affiliate of National Life Insurance Company. All other entities are independent of the companies of National Life Group.Fortune 1000 status is based on the consolidated financial results of all National Life Group companies. National Life Group1 National Life DrMontpelier, VT 05604
#LI-CS
#LI-Hybrid
