Senior Security Engineer
Confirmed live in the last 24 hours
Ethos Life

501-1,000 employees

Streamlined, digital life insurance provider
Company Overview
Ethos is a life insurance company that leverages technology and data science to streamline the insurance process, transforming a traditionally lengthy procedure into a swift, digital experience. Their full-stack technology platform and use of predictive analytics have allowed them to issue billions in coverage each month, making life insurance more accessible and convenient. Recognized by CB Insights and BuiltIn, Ethos offers a range of term life and whole life insurance policies, catering to a wide demographic, and operates in 49 U.S. states, demonstrating their industry leadership and commitment to customer service.
Financial Services
Data & Analytics
B2C

Company Stage

Series D

Total Funding

$227.6M

Founded

2016

Headquarters

Austin, Texas

Growth & Insights
Headcount

6 month growth

5%

1 year growth

-9%

2 year growth

26%
Locations
San Francisco, CA, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Management
AWS
Development Operations (DevOps)
Data Analysis
CategoriesNew
IT & Security
DevOps & Infrastructure
Requirements
  • 5+ years of full time core, relevant InfoSec experience
  • Intimate familiarity with AWS cloud security, experience automating security processes in cloud environments
  • Proficiency in threat modeling, design reviews and security testing of various types of applications, technologies and platforms
  • Hands-on experience with CI/CD and DevOps tools
  • Ability to write automation scripts, ideally in more than one language
  • Experience in vulnerability/threat management activities at the infrastructure, platform, and application level
  • Experience with penetration tests/red team exercises, ideally the type that involve manual verification, exploitation, lateral movement, etc.
  • Expertise with event management/SIEM solutions, data modeling associated with building event detection and alerting capabilities
  • Must be able to come into our San Francisco, CA office once a week
Responsibilities
  • Design, develop, and deploy security mechanisms to protect against adversarial attacks, data breaches, and other security vulnerabilities
  • Design and build robust threat detection, monitoring, investigation workflows response architectures and the components of the security analytics platform
  • Monitor and evaluate operational/security alerts
  • Conduct Threat Modeling, Design Reviews and Security Testing
  • Communicate risks to engineering staff through training and technical demonstration of vulnerabilities and secure design patterns
  • Partner with the DevOps team to orchestrate/automate security controls in the Ethos infrastructure/platform
  • Lead the vulnerability management lifecycle at the infrastructure, platform, and application levels
  • Participate in investigations, threat hunting, and incident response activities; build playbooks for specific incident response scenarios
  • Assist with compliance activities, such as SOC2 control implementation and testing, vendor risk assessments, etc.
Desired Qualifications
  • Experience with event management/SIEM solutions
  • Experience in writing automation scripts in multiple languages