Senior Security Engineer

About Us

Resilience is the next-generation cyber risk company that's on a mission to help make the world cyber resilient.  

Founded in 2016 by experts from across the highest tiers of the US military and intelligence communities, augmented by prominent leaders and innovators from the insurance and technology industries, the privately-held firm is rewriting the rules of how cyber risk is assessed and managed for middle to large market enterprises. Rooted in decades of experience, Resilience helps financial, risk, and information security leaders continuously improve their organizations' cyber resilience by connecting cyber insurance coverage with advanced cybersecurity visibility and a shared plan to reinforce actionable cyber hygiene.  

Resilience is proud to be backed by leading technology investment firms including General Catalyst, Lightspeed Venture Partners, Intact Ventures, Founders Fund, CRV, and Shield Capital. With headquarters in San Francisco, Resilience's team is globally dispersed, with offices in New York, Chicago, Baltimore, Toronto, and London. Resilience offers insurance coverage through its licensed and appointed insurance agency and security services through its expert security team.  

For more information, visit us at www.cyberresilience.com

Resilience is searching for an extraordinary Sr. Security Engineer in North America to provide expert advice and analysis to help customers better assess, measure, and manage their cyber risk as an integral part of Resilience's holistic cyber risk solution. Leveraging Resilience's proprietary risk visibility and prioritization SaaS solution, you will work with customers to develop strategies to enhance their resilience against cyber threats. You will work closely with customers' security, risk, and finance stakeholders to translate security into risk, provide recommendations, and guide clients to make financially-prioritized risk/security decisions as a part of Resilience's Human-in-the-Loop capabilities.

Resilience is a fast-paced, high growth, evolving mid-to-late stage startup environment. You will need to work confidently and quickly, be the voice of the customer, and share customer insights with other Resilience team members to propel the company-wide internal feedback loop. Resilience has a global presence with both foundational and execution needs across all geographies, so flexible working hours are required.

Responsibilities:

• Participate in customer engagements to translate security concepts into risk impact.
• Create impactful experiences for key customer stakeholders which include mid-level through C-suite security, risk, and finance professionals.
• Assess the impact of security vulnerabilities and weaknesses in a company's networks and quickly recommend changes to processes and technologies to reduce customer cyber risk.
• Own the technical solution response to the customer and help deliver a comprehensive Resilience solution response that leverages the Resilience SaaS portal and your expertise.
• Present the solution proposal to the customer, demonstrate how it reduces the customer's risk and the financial impact of that risk reduction, and how the solution is differentiated from the competition.
• Act as the technical bridge for internal (Product, Engineering, Data Science, and Underwriting) and external (customers and insurance brokers) audiences that connects security to risk.
• Assist with risk selection in collaboration with Underwriting.
• Anticipated Travel: 15-20%.

Qualifications:

• 7+ years of experience with and knowledge of cyber risk management principles and frameworks such as CMMC, GDPR, HIPAA, ISO 27001, NIST CSF, PCI DSS, etc.
• Strong communication and interpersonal skills to effectively collaborate with mid-level to C-suite stakeholders.
• Ability to assess the impact of security vulnerabilities and weaknesses in a company's networks and quickly recommend changes to processes and technologies to remediate.
• Experience in conducting risk assessments and developing risk mitigation strategies.
• Understanding of incident response procedures and best practices.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills to effectively collaborate with mid-level to C-suite stakeholders.
• Relevant professional certifications (e.g. CISSP, CISA, CISM, CRISC) are a plus.
• Ability to work independently and manage multiple tasks in a fast-paced environment.
• Strong attention to detail.
• Ability to work in a self-directed environment that is highly collaborative and cross-functional.
• Bachelor's degree in computer science, information security, risk management, a related field, or equivalent work experience.

$140,000 - $180,000 a year

-Our comprehensive package: competitive salary, stock options, bonus structure and a 401K plan. 

-We understand you need time off to recharge. Our employees are given flexible PTO, that they are encouraged to use!

-Flexible work environment and a remote first work culture. Resilience also has offices in San Francisco, Chicago, New York, Los Angeles and Baltimore for local and traveling employees. 

-Resilience offers competitive health plans for employees.

-As a quickly growing company, we are able to offer employees professional development and career growth opportunities.

-Connection: interest driven Slack channels help to keep our remote workforce connected with one another (#foodies, #pets, #fitness), as well as company off-site events.

We want to ensure you're able to perform as well as possible in your interview. As part of that, if you have any accessibility-related needs to ensure a comfortable visit, please let us know. We'll do our best to provide reasonable accommodations to suit your working style during your interview and if you join our team.

If you require a reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to our Human Resources team at humanresources@cyberresilience.com.