The senior security engineer will support, deliver, and lead many aspects associated with the offensive security strategy. This includes guidance on the design, implementation, development, and execution of solutions to maintain and improve the security posture of our environment. This role will require advanced understanding of all aspects of information security and information technology – including policies, standards, technical procedures/processes, and regulatory requirements. The solutions shall be designed to mitigate and/or reduce business exposure to information security threats.
This will be accomplished by executing on the follow key strategies:
-
Penetration Testing: Security Testing of applications and infrastructure from an adversary view.
-
Responsible Disclose: Managing the communication path with security researchers (AKA Ethical Hackers) to report cyber security issues to Assurant.
-
Bug Bounty: Work with upper tier security researchers to find cyber security issues at Assurant and provided compensation for notable findings uncovered via paid bounties.
-
Attack Surface Analysis: Discover critical misconfigurations, obsolete infrastructure, improve our security posture, and improve Assurant’s cyber security business rating.
-
Adversary Simulations: Use of adversary tradecraft to attempt to uncover attack paths that could be used to compromise critical controls and to test our resilience against various types of cyber-attacks.
-
Critical Controls Testing: Perform testing of critical controls as requested by Senior Management Team.
Previous Experience:
-
7+ years of experience in the field of IT, information security, security engineering, security event monitoring, incident response, eDiscovery forensic, infrastructure administration, compliance, security administration, audit and/or risk.
-
Professional certification(s) in Information Security.
-
CompTIA Security+
-
GIAC Security Essentials
-
Certified Security Analyst (ECSA)
-
Certified Ethical Hacker (CEH)
-
Certified Red Team Operator (CRTO)
-
Offensive Security Certified Professional (OSCP)
-
Certificated Information Systems Security Professional (CISSP)
Any posted application deadline that is blank on a United States role is a pipeline requisition, and we'll continue to collect applications on an ongoing basis.
Any posted pay range considers a wide range of compensation factors, including candidate background, experience, and work location, while also allowing for salary growth within the position.
Helping People Thrive in a Connected World
Connect with us. Bring us your best work and your brightest ideas. And we’ll bring you a place where you can thrive. Learn more at jobs.assurant.com.
For U.S. benefit information, visit myassurantbenefits.com. For benefit information outside the U.S., please speak with your recruiter.
What’s the culture like at Assurant?
Our unique culture is a big reason why talented people choose Assurant. Named a Best/Great Place to Work in 13 countries and awarded the Fortune America’s Most Innovative Companies recognition in 2023, we bring together top talent around the world. Although we have a wide variety of skills and experiences, we share common characteristics that are uniquely Assurant. A passion for service. An ability to innovate in practical ways. And a willingness to take chances. We call our culture The Assurant Way.
Company Overview
Assurant is a leading global business services company that supports, protects, and connects major consumer purchases. A Fortune 500 company with a presence in 21 countries, Assurant supports the advancement of the connected world by partnering with the world’s leading brands to develop innovative solutions and deliver an enhanced customer experience through mobile device solutions, extended service contracts, vehicle protection services, renters insurance, lender-placed insurance products, and other specialty products.
Equal Opportunity Statement
Assurant is an Equal Employment Opportunity employer and does not use or consider race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, or any other characteristic protected by federal, state, or local law in employment decisions.
Job Scam Alert
Please be aware that during Assurant's application process, we will never ask for personal information such as your Social Security number, bank account details, or passwords. Learn more about what to look out for and how to report a scam here.
