Overview
As the Security Operations Lead, you will ensure the security and integrity of cloud environments by developing and implementing measures against cyber threats. This collaborative player coach role promotes security across the organization and manages and mentors a team of security professionals.
Responsibilities
- Monitors and maintains cloud infrastructure security, including network security, identity and access management (IAM), configuration management, and encryption protocols.
- Manages, deploys, and implements information security tools, including SIEM, system monitors, access control, and other specific cloud security controls.
- Ensures customers’ data confidentiality, integrity, and availability are stored in our cloud environment through encryption, access controls, data loss prevention (DLP), and other data protection measures.
- Approves network flows and architecture to ensure secure and efficient operations.
- Manages and implements access controls and identity management to safeguard sensitive information.
- Collaborates with the CISO and Information Security team to ensure security best practices are integrated into all aspects of the organization.
- Stays current with the latest security trends, technologies, and regulatory requirements.
- Leads a team of Security Operations Engineers in implementing and maintaining robust security standards for our cloud solutions, ensuring the highest levels of protection and compliance.
- Manages a team of security professionals and is responsible for all aspects of performance management of team members, including leading team member review, evaluation, and compensation processes.
- Recruits, trains, and supports other security team members.
- Other duties as assigned
Qualifications
- Bachelor’s Degree required.
- 7+ years of Information Technology experience, with demonstrated, hands-on experience across multiple domains, e.g., Application CICD, Cloud Infrastructure, Endpoint Management/Defense, Information Security products
- 2+ years of direct Cloud IaaS/PaaS experience, AWS preferred
- Motivated self-starter capable of working independently while also collaborating with other team members
- Experience securing AWS public cloud environments
- Technical knowledge of Software Defined Networking
- Experience with secure software development lifecycle (SDLC) methodologies such as Agile, DevOps
- (Preferred) Experience with one or more scripting language such as Python
- (Preferred) Experience with Cloud Security Alliance (CSA), FISMA & FedRAMP compliance, ISO 27001/2 and NIST 800-53 security controls
- (Preferred) Experience with SSAE 16/18 SOC audits
- (Preferred) Working knowledge of security frameworks, development, test, and deployment models
Who We Are
Origami Risk provides integrated SaaS solutions to organizations across the risk and insurance ecosystem — from insured corporate and public entities to brokers and risk consultants, insurers, third party claims administrators (TPAs), and risk pools. We deliver our risk management and insurance core system solutions from a cloud-based platform that is highly configurable, completely scalable, and accessible via web browser and mobile app.
Dais Technology, a subsidiary of Origami Risk, provides a no-code platform that revolutionizes insurance product creation for MGAs, insurers, and reinsurers. Dais’ event-based architecture enables AI-driven bundling, automation, and real-time deployment.
Solutions from Origami Risk and Dais Technology are backed by a best-in-class service team of experienced risk and insurance professionals who possess a balance of industry knowledge and technological expertise. A singular focus on helping clients achieve their business objectives underlies our approach to developing, implementing, and supporting our risk management, safety, compliance, and insurance core system technology solutions.
Origami Risk is proud to be an equal opportunity employer. We thrive and benefit from diversity and are committed to creating an inclusive and equitable environment for all employees. We do not discriminate against any individual based upon race, religion, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, color, sex, national origin, age, marital status, military or veteran status, disability, or any other characteristic protected by applicable law.
Caution: Be alert to recruiting scams. We have received reports of individuals impersonating Origami Risk recruiters to deceive candidates into disclosing personal information. These impostors use fake Origami Risk domain names and email addresses. Please double-check that any email address from an Origami Risk recruiter ends with origamirisk.com or talent.icims.com. And to confirm the legitimacy of any recruiting communication, feel free to email transparencycheck@origamirisk.com.