Senior Cloud Security Engineer
WHO WE ARE:
Zinnia is simplifying how people buy, sell, and administer insurance products. Combining intuitive enterprise technology solutions and data insights, the Policygenius marketplace, and market-leading products including SmartOffice, AnnuityNet, LifeSpeed, WinFlex, TPP, VitalSales Suite, and Exchange Consulting, Zinnia is redesigning the insurance experience for shoppers, advisors, and insurers alike — and enabling more people to protect their financial futures along the way. Zinnia has over $173.7 billion in assets under administration across 100+ carrier clients, 2500 distributors and partners, and over 2 million policyholders.
WHO YOU ARE:
As a Senior Cloud Security Engineer, you will leverage your development, security and architecture experience to mitigate risk and enable security controls for our cloud infrastructure. You will create security controls as code and scalable security architecture, as well as working prototypes and production solutions to reduce risk in the cloud environments. You’ll build partnerships with our Site Reliability Engineering, Software Engineering and IT teams to ensure Zinnia is doing all we can to protect the company’s and our customers’ data.
As a trusted advisor, you will partner with tech and business stakeholders and enable them. You will be able to coach, mentor, educate, advise on system design and architecture, implement/configure/monitor security tools, and help drive an appreciation for security. If you like to automate, shift security left, manage risk, and further enable business, then this role is for you.
WHAT YOU’LL DO:
● Collaborate and build relationships with the product engineering and SRE teams
●Identify risks across all cloud environments, and assist in architectural design to mitigate risks
●Secure Zinnia’s cloud platforms to ensure compliance with various best practice frameworks and requirements
●Partner with the security team, platform and security engineers to assist in the development of a scalable threat modeling program (and conduct them as well!) for our cloud environment
●Develop, deploy and maintain various security tools and their SOPs
●Develop, evaluate, and respond to alerts and events from the security tools
●Adopt automation to shift security to the left and make it scalable
●Triage, escalate, and remediate vulnerabilities found as part of vulnerability management program
●Be part of an on-call rotation supporting the platform
●Be a humble mentor for our talented team members
WHAT YOU’LL NEED:
●9+ years of experience in a cloud security engineering or site reliability engineering role
●Extensive hands-on experience in GCP and/or AWS
●Extensive hands-on experience in securing Kubernetes and container orchestration technologies
●Experience in Python, or another programming language
●Experience in the development of security products or DevSecOps infrastructure
●Experience building and operationalizing SOAR, DevSecOps and IaC tools for cloud
●Familiarity with deployment automation tools such as Terraform, Helm, Atlantis, and BuildKite
●Familiarity with threat modeling
●Strong written and verbal communication skills
● Desire to build a cloud security program and coach junior engineers
WHAT’S IN IT FOR YOU?
At Zinnia, you collaborate with smart, creative professionals who are dedicated to delivering cutting-edge technologies, deeper data insights, and enhanced services to transform how insurance is done. Visit our website at www.zinnia.com for more information. Apply by completing the online application on the careers section of our website. We are an Equal Opportunity employer committed to a diverse workforce. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability
#LI-SC1
Apply for this job
*
indicates a required field