Security Engineer - Vulnerability

Stop searching. Start growing. It's time to build a meaningful career where you can grow, your ideas can thrive, and you are recognized and valued. Join a team committed to your excellence, and apply to Safety National today!

Ready for a rewarding career? Follow this link to view all of our available careers and apply: https://www.safetynational.com/careers-page/

This opportunity is in the Information Technology Department.

As the company's largest department, I.T. is responsible for supporting both ongoing operations and our next innovative project. At Safety National, information technology is instrumental to our success, allowing us to partner with colleagues to securely enable and support new capabilities every day. Utilizing a diverse set of technologies, like Guidewire, Salesforce, Java, C#/.NET, Mule, and Azure, the available career opportunities continue to grow rapidly. Our department consists of agile teams who employ the Scaled Agile Framework for enterprises (SAFe) to effectively deliver solutions and add value. I.T. is also a team where individual contributions are recognized, and career advancement is nurtured.

About the Role

As a Security Engineer, you will design, implement, and maintain a risk-based vulnerability management program, integrating threat intelligence, automation, and remediation workflows. You will assess risks, prioritize vulnerabilities, and provide strategic security recommendations while mentoring team members. This role requires a deep technical understanding of cybersecurity frameworks, cloud security, and emerging threats.

Key Responsibilities

Vulnerability & Threat Management

• Develop and execute a risk-based vulnerability management program.
• Conduct vulnerability scans, risk assessments, and manage remediation processes.
• Automate vulnerability detection, remediation workflows, and reporting dashboards.
• Provide guidance on patch management, secure software development, and mitigation strategies.
• Research emerging threats and vulnerabilities to stay ahead of evolving risks.
• Communicate risk findings to technical and non-technical stakeholders with clear recommendations.

General Security & Compliance

• Implement and maintain security policies and audit documentation.
• Participate in 24x7 security monitoring and on-call rotations.
• Respond to security incidents, perform root cause analysis, and implement corrective measures.
• Ensure compliance with NIST, MITRE ATT&CK, OWASP Top 10, and industry security frameworks.

Collaboration & Leadership

• Work closely with IT, Security, Compliance, and Risk teams to align security initiatives with business goals.
• Mentor team members on vulnerability management best practices.
• Represent the company in industry research, conferences, and training events.

Qualifications

Education:

• Bachelor's degree in Computer Science, Information Assurance, or a related field (preferred)

Required Qualifications:

• Must be presently authorized to work in the U.S. without the need for work authorization sponsorship now or in the future.
• Experience securing AWS, Azure, and Google Cloud environments.
• Familiarity with threat intelligence platforms and integration strategies.
• Advanced understanding of network security, authentication, cryptography, and application security.
• Ability to communicate complex security topics to both technical and non-technical audiences
• Candidates should meet at least two of the following criteria:




• 5+ years in system, network, or application administration.
• 7+ years in cybersecurity, vulnerability management, or a related field.
• 5+ years hands-on experience with vulnerability detection tools, penetration testing, and risk assessments.
• Proven experience managing a vulnerability management program.
• Relevant security certifications (CISSP, CISM, CEH, OSCP, GIAC)

Protect the confidentiality, integrity and availability of information and technology assets against unauthorized disclosure, destruction and/or alteration, in accordance with Safety National policies, standards, and procedures.

Safety National is a leading specialty insurance and reinsurance provider. Our culture is built upon relationships, which allow us to demonstrate our expertise gained through our rich 80-year history. As a wholly-owned subsidiary of Tokio Marine, Inc., we appreciate the benefits and support provided by our affiliation with one of the top 10 insurance companies in the world.

Total Rewards That Put Employees First

In our vision to be First with Co-Workers, compensation that includes base salary, holiday bonus, and incentive awards is only a small portion of the comprehensive total rewards package we offer. Our total rewards approach recognizes and rewards the time, talents, efforts, and results of our valued employees. Highlights of our exceptional benefits include generous health, dental, and vision coverage, health savings accounts, a 401(k) retirement savings match and an annual profit sharing contribution. We proudly offer family forming benefits for adoption, fertility, and surrogacy, generous paid time off and paid holidays, paid parental and caregiver leave, a hybrid work environment, and company paid life insurance and disability. To support employees in their career journeys, we provide professional growth and development opportunities in addition to employee recognition and well-being programs. Apply today to learn more.

Safety National is committed to fair, transparent pay and we strive to provide competitive, market-based compensation. In our vision to be First with Co-Workers, compensation is only one piece of the comprehensive total rewards package we offer. The target base salary range for this position is $109,000 to $142,000. Compensation for the successful candidate will consider the candidate's particular combination of knowledge, skills, competencies, experience and geographic location.

#LI-Hybrid