Senior Information Security Engineer - IntelliScript (Remote)

logo

Senior Information Security Engineer - IntelliScript (Remote)

Milliman

icon Brookfield, WI, US

iconFull Time

icon7 November 2024

Apply Now

What We Do

Milliman IntelliScript is a group of a few hundred experts in fields ranging from actuarial science to information technology to clinical practice. Together, we develop and deploy category-defining, data-driven, software-as-a-service (SaaS) products for a broad spectrum of insurance clients. We’re a business unit within Milliman, Inc., a respected consultancy with offices around the world.

Candidates who have their pick of jobs are drawn to IntelliScript’s entrepreneurial and collaborative culture of innovation, excellence, exceptional customer service, balance, and transparency. Every single person has a voice in our company, and we challenge each other to push the outer limits of our full, diverse potential. And, we’ve shown sustained growth that ensures you’ll have room to grow your skillset, responsibilities, and career.

Our team is smart, down-to-earth, and ready to listen to your best ideas. We reward excellence and offer competitive compensation and benefits. Visit our LinkedIn page for a closer look at our company, and learn more about our cultural values here.

Milliman invests in skills training and career development and gives all employees access to a variety of learning and mentoring opportunities. Our growing number of Milliman Employee Resource Groups (ERGs) are employee-led communities that influence policy decisions, develop future leaders, and amplify the voices of their constituents. We encourage our employees to give back to their varied professions, including leadership in professional organizations. Please visit our website to learn more about Milliman’s commitments to our people, diversity and inclusion, social impact, and sustainability.

What this position entails

As a Senior Information Security Engineer on the Information Security team at Milliman IntelliScript, you’ll play a key role in helping us continuously improve our security programs to ensure the safety of our technology, processes and data. This role will encompass tactical and strategic work of putting in place forward-looking initiatives as well as responding to external threats on an ongoing basis, which is a great opportunity for impact across all IntelliScript. We’re also modernizing and scaling quickly and are excited to bring someone onboard who can help us proactively tackle challenges – both in the day-to-day operations and anticipated future ones.

As a member of the Information Security team, you will collaborate with members of the Platform Engineering and Software Development teams to plan and implement various security initiatives. The team will look to you for your strategic expertise, reliable execution, and sound judgment to improve and maintain our security infrastructure, along with creating and improving processes for maintaining a secure product and environment.

You will be joining a team that is passionate about technology and helping pave the way for building great products together.

What you’ll be doing

  • Improve, monitor and maintain our Information Security Program
  • Execute security initiatives related to infrastructure, product and data
  • Contribute to the strategic planning of security work, make strategic recommendations and improvements to our security
  • Work with application developers to improve the security of various product features
  • Design and implement security controls and measures to protect our application and data
  • Monitor and analyze security events and incidents and respond promptly to security breaches
  • Collaborate with development teams to integrate security best practices throughout the software development lifecycle
  • Identify and prioritize security vulnerabilities and develop strategies for mitigation
  • Proactively prepare and train developers and raise the security awareness of everyone in the organization
  • Quickly and proactively respond to incoming security threats
  • Continually assess, address and report on the levels of threat and preparedness
  • Assist in maintaining compliance with industry standards relevant to our organization

What we need

  • 5+ years of relevant experience
  • Knowledge of security best practices for building web applications
  • Strong understanding of Cryptography, Authentication, Authorization, Secrets Management, Data Security, Web Technologies, and Cloud Security
  • Hands-on experience with security testing tools (Burp Suite, OWASP, ZAP, etc.)
  • Experience with secure coding practices and security frameworks (OWASP, NIST, CIS etc.)
  • Experience building, supporting, and securing cloud-based web infrastructure with AWS and/or Azure
  • Understanding of and ability to deal with and prevent security threats and risks
  • Working knowledge of Software Engineering and Deployments (CI/CD pipelines, SCM)
  • Ability to conduct security assessments of our applications.
  • Deep understanding of web application infrastructure (.NET, JavaScript, etc.)
  • Experience in DevSecOps with tech stack knowledge (Git, Docker, Windows, Linux, Datadog, SIEM, AWS Security products, Lambda, PowerShell, Terraform)

What you bring to the table

  • Proactive and positive approach to solving problems and correcting issues
  • Stays current with industry standards, best practices and security technologies
  • Loves to learn and takes every opportunity you’re given to develop knowledge and skills
  • Brings your best each day willing to make an impact, with an excitement to wear multiple hats as part of a lean security team
  • You are passionate about making incremental improvements
  • A strong team player that enjoys working in a collaborative, team environment
  • Brings a professional approach to situations, treating others with respect and understanding

Wish list

  • Continued education and/or advanced degree(s)
  • Experience in environments subject to HITRUST, HIPAA and/or PCI regulations
  • Experience in software-as-a-service, actuarial science, and/or insurance underwriting industry

 Location

This position is open to remote work. Applicants must be willing to travel to the Milliman office in Brookfield, WI, with quarterly travel to the office for PI Planning.

The salary range is $78,000 to $194,000, depending on relevant factors, including but not limited to education, skills, certifications, and location. If relevant experience is less than 10 years the range would be $78,000 to $157,000; for experience of greater than 10 years, the range would be $96,000 to $194,000. In addition, we offer a performance-based bonus plan, profit sharing, and generous benefits.

Milliman Benefits

At Milliman, we focus on creating an environment that recognizes – and meets – the personal and professional needs of the individual and their family. We offer competitive benefits which include the following based on plan eligibility:

  • Medical, dental and vision coverage for employees and their dependents, including domestic partners
  • A 401(k) plan with matching program, and profit sharing contribution
  • Employee Assistance Program (EAP)
  • A discretionary bonus program
  • Paid Time Off (PTO) starts accruing on the first day of work and can be used for any reason; full-time employees will accrue 15 days of PTO per year, and employees working less than a full-time schedule will accrue PTO at a prorated amount based on hours worked
  • Family building benefits, including adoption and fertility assistance and paid parental leave up to 12 weeks for employees who have worked for Milliman for at least 12 months and have worked at least 1,250 hours in the preceding 12-month period
  • A minimum of 8 paid holidays
  • Milliman covers 100% of the premiums for life insurance, AD&D, and both short-term and long-term disability coverage
  • Flexible spending accounts allow employees to set aside pre-tax dollars to pay for dependent care, transportation, and applicable medical needs  

This job posting is expected to close on June 14, 2024.

All qualified applicants will receive consideration for employment, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.