Job description
Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding value and operational performance by combining financial strength and stability with deep insurance expertise and a can-do culture. Group1001's culture emphasizes the importance of collaboration, communication, core business focus, risk management, and striving for outcomes. This goal extends to how we hire and onboard our most valuable assets - our employees.
Why This Role Matters:
• The Product Security Engineer at Group 1001 will lead efforts to integrate security best practices into the full product development lifecycle, ensuring the security and integrity of our revenue-generating applications and systems from design to deployment. This role requires experience across a number of security disciplines, including application security, cloud security, platform engineering, software engineering, and process improvement. This is an exciting opportunity to exert significant positive change by driving secure development practices and delivering security features to our end-user and internet-facing applications/systems in partnership with highly successful development teams for profitable businesses.
How You'll Contribute:
• Collaborate with development teams to employ and improve automated security analysis tooling.
• Contribute security improvements and features to production applications and supporting infrastructure.
• Commoditize developed security features and integrations to be leveraged across disparate engineering teams and their respective applications.
• Conduct security reviews and provide guidance on architectural designs to address security requirements.
• Lead efforts to design-in security features to product applications and systems (avoiding bolt-on security implementations).
• Stay up to date on emerging threats and industry best practices in product security.
What We're Looking For:
• Bachelor's in Computer Science or related degree, or equivalent work experience.
• 5+ years of experience in product security, application security, software development, or related fields.
• Strong understanding of secure coding practices and common vulnerabilities (e.g., OWASP Top 10).
• Experience with application security testing tools and technologies (e.g., SAST, DAST, SCA).
• Proficiency in one or more software programming languages (e.g. Python, JavaScript, Java, Kotlin, Golang).
• Proficiency in one or more infrastructure automation frameworks (e.g. Terraform, Ansible).
• Familiarity with modern platform, API, and application frameworks (e.g. Kubernetes, ArgoCD, Apollo GraphQL).
• Familiarity with major cloud platforms (e.g. AWS, Azure, GCP).
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
Compensation:
Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay for this position ranges from $225,000/year in our lowest geographic market up to $245,000/year in our highest geographic market. Pay is based on factors such as market location, job-related skills, and experience.
Benefits Highlights:
Employees who meet benefit eligibility guidelines and work 30 hours or more weekly, have the ability to enroll in Group 1001's benefits package. Employees (and their families) are eligible to participate in the Company's comprehensive health, dental, and vision insurance plan options. Employees are also eligible for Basic and Supplemental Life Insurance, Short and Long-Term Disability. All employees (regardless of hours worked) have immediate access to the Company's Employee Assistance Program and wellness programs-no enrollment is required. Employees may also participate in the Company's 401K plan, with matching contributions by the Company.
Group 1001, and its affiliated companies, is strongly committed to providing a supportive work environment where employee differences are valued. Diversity is an essential ingredient in making Group 1001 a welcoming place to work and is fundamental in building a high-performance team. Diversity embodies all the differences that make us unique individuals. All employees share the responsibility for maintaining a workplace culture of dignity, respect, understanding and appreciation of individual and group differences.
#LI-AS1 #LI-REMOTE
Requirements
• Bachelor's in Computer Science or related degree, or equivalent work experience
• 5+ years of experience in product security, application security, software development, or related fields
• Strong understanding of secure coding practices and common vulnerabilities (e.g., OWASP Top 10)
• Experience with application security testing tools and technologies (e.g., SAST, DAST, SCA)
• Proficiency in one or more software programming languages (e.g. Python, JavaScript, Java, Kotlin, Golang)
• Proficiency in one or more infrastructure automation frameworks (e.g
• Terraform, Ansible)
• Familiarity with modern platform, API, and application frameworks (e.g
• Kubernetes, ArgoCD, Apollo GraphQL)
• Familiarity with major cloud platforms (e.g
• AWS, Azure, GCP)
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams
