Security Engineer, Product Security
Chainlink LabsSalary not specified
Full Time
Mid-level (3 to 4 years), Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Insurance, Financial Services, Information TechnologyIndustries
Requirements
- 10+ years of IT systems engineering or IT security engineering experience
- Bachelor's degree in computer science or cyber security is preferred
- Proven experience in secure design and operations of IT systems
- Cloud (Azure, AWS, GCP) security testing experience preferred both offensive and defensive
- Web API / web service dev/ops or API security experience
- Strong communicator, both verbal and written
- Commitment to advancing skills in the IT risk/security field
- Demonstrated success leveraging scripting and automation skills to improve IT processes and workflows
- Excellent problem-solving abilities and analytical mindset
- Demonstrated understanding of computer engineering fundamentals including familiarity with common offensive and defensive tactics
- Proven success in challenging operational environments including dealing with change, ambiguity and competing priorities
- Risk management experience a plus
- Web development or reversing or exploitation experience preferred
- Familiarity with IP stack and related protocols a must
- Familiarity with web services, servers and related protocols a must
- Experience in one or more of Linux, Windows, Active Directory, Azure Directory, O365
- Familiarity with one or more of BurpSuite, PostFix, Mulesoft or other API proxies, is a plus
- Familiarity with data integration systems and concepts is a plus
- Incident handling/response, malware analysis, adversary experience (implied from context)
Responsibilities
- Identify vulnerabilities, exploit weaknesses, and challenge assumptions within security protocols, enabling the organization to understand potential threats from an attacker's perspective
- Replace and extend current manual processes through automation or other appropriate techniques
- Develop and implement additional risk and performance metrics
- Design and supervise implementation of data quality controls and workflows
- Improve vulnerability discovery and risk-based prioritization models
- Collaborate on event management and treatment of emergent vulnerabilities
- Engage with peers in IT architecture and operations, security architecture, red team, effectiveness testing team, hunt team, CTI team, SOC, and other teams to identify and pursue additional opportunities for improvement
- Collaborate with data integration/analytics team to integrate additional findings and finding types into the vulnerability data model
Skills
Security Remediation
Threat Assessment
Vulnerability Identification
Penetration Testing
Red Teaming
Offensive Security
TTPs
Automation
Risk Analysis
IT Security
AIG
Global insurance provider for individuals and businesses
About AIG
AIG provides a variety of insurance products and services aimed at individuals, families, and businesses. Their offerings include life insurance, retirement planning, and commercial insurance, which help clients manage risk and protect their assets. AIG operates by underwriting insurance policies and managing risk, while also investing the premiums collected to generate income. This company stands out from competitors by not only focusing on traditional insurance but also emphasizing cybersecurity and data protection to keep clients' information safe. AIG's goal is to help clients achieve financial security and peace of mind through comprehensive insurance solutions.
New York City, New YorkHeadquarters
1919Year Founded
IPOCompany Stage
Cybersecurity, Financial ServicesIndustries
10,001+Employees
Benefits
Health, dental, & vision coverage
Flexible Spending Accounts (FSA)
401(k)
PTO
Commuter Expense Reimbursement Account
Risks
Sale of personal travel business may reduce AIG's market presence in travel insurance.
Expansion in Atlanta could pose financial risks if expected growth does not materialize.
Deconsolidation of Corebridge Financial might lead to loss of synergies and increased costs.
Differentiation
AIG offers a wide range of insurance products globally, serving diverse client needs.
Corebridge Financial, a subsidiary, enhances AIG's offerings in retirement planning and financial futures.
AIG emphasizes cybersecurity and data protection, ensuring clients' information remains secure.
Upsides
AI adoption in underwriting and claims processing enhances efficiency and reduces costs for AIG.
InsurTech partnerships offer AIG opportunities to enhance digital capabilities and drive innovation.
Telematics and usage-based insurance allow AIG to offer personalized and flexible products.
Related Jobs
RemoteRemoteSr. Vulnerability Management Engineer (Remote)
CrowdstrikeSalary not specified
RemoteDetection & Response Engineer III - NG-SIEM (Remote)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteRisk Analysis Engineer
OkloSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSecurity Architect
EarnestSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteStaff Threat Intelligence Analyst
Huntress$190,000 - $210,000/year
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Operations Lead
EarnestSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Application Security Engineer
M&T BankSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)