Crum & Forster - New York, NY

posted 30 days ago

Full-time - Entry Level
New York, NY
1,001-5,000 employees
Insurance Carriers and Related Activities

About the position

The Seneca Security Ambassador role at Crum & Forster involves representing Seneca by collaborating with the Cyber and Compliance Teams to identify, plan, and lead remediation efforts for vulnerabilities in applications and cloud workloads. This hybrid position requires a proactive approach to building a security culture, monitoring security throughout the CI/CD pipeline, and managing various security assessments and projects. The role also includes project management responsibilities, ensuring effective communication and coordination among teams to deliver security solutions.

Responsibilities

  • Liaise with Cyber and Compliance Teams to identify and lead remediation efforts for vulnerabilities.
  • Build and develop a culture of security to support digital growth.
  • Provide weekly reports on security threats.
  • Interpret, validate, prioritize, and resolve SAST, DAST, and Penetration Testing vulnerabilities.
  • Ensure implementation of security controls for containers and orchestration services.
  • Participate in security assessments and provide guidance for implementing security controls.
  • Monitor security throughout the CI/CD pipeline and provide security requirements to the development team.
  • Perform threat and risk modeling for applications and cloud environments.
  • Support security training and awareness for application development teams.
  • Coordinate and monitor Business and Cyber/Information Security projects using appropriate project management methodologies.
  • Schedule and facilitate communications, meetings, and decision-making processes.
  • Lead team meetings and represent content practices to diverse audiences.
  • Prepare and present status reports to senior management.

Requirements

  • Bachelor's degree in a technical discipline or equivalent experience.
  • 1-3 years of Information Security experience.
  • 1-3 years of Application and/or Cloud Security experience.
  • Understanding of relevant application and cloud cyber threats and risks.
  • Knowledge of security frameworks such as OWASP Top 10 or SANS Top 20.
  • 2+ years in a Project Management or Scrum Master role, including 1 year in a Cybersecurity or IT focused Project Management role.
  • Strong knowledge of Atlassian Confluence and Jira or other project management applications.
  • Proficiency in driving change and garnering support from stakeholders and leadership.
  • Working knowledge of agile methodology, techniques, and frameworks, such as Scrum or Kanban.
  • Proven experience in managing multiple projects simultaneously.
  • Experience with infrastructure and networking projects.

Nice-to-haves

  • Knowledge of container security and implementing container orchestration.
  • Experience deploying and/or maintaining security and compliance in AWS, Azure, and GCP cloud environments.
  • Experience conducting source code security reviews for various programming languages.
  • Knowledge of DevSecOps and CI/CD principles.
  • Knowledge of secure architecture concepts.
  • Relevant certifications such as CEH, Security+, AWS or Azure certifications.

Benefits

  • Competitive compensation package
  • Generous 401K employer match
  • Employee Stock Purchase plan with employer matching
  • Generous Paid Time Off
  • Excellent health, dental & vision benefits
  • Tuition reimbursement and professional training opportunities
  • Dynamic and exciting work environment
  • Social and community responsibility programs
  • Inclusivity and diversity commitment
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service