Senior Application Security Engineer
Group 1001

Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding value and operational performance by combining financial strength and stability with deep insurance expertise and a can-do culture. Group1001's culture emphasizes the importance of collaboration, communication, core business focus, risk management, and striving for outcomes. This goal extends to how we hire and onboard our most valuable assets - our employees.

Group 1001, and its affiliated companies, is strongly committed to providing a supportive work environment where employee differences are valued. Diversity is an essential ingredient in making Group 1001 a welcoming place to work and is fundamental in building a high-performance team. Diversity embodies all the differences that make us unique individuals. All employees share the responsibility for maintaining a workplace culture of dignity, respect, understanding and appreciation of individual and group differences.

Job Title: Senior Application Security Engineer

Location: USA, Remote

Company: Group 1001

Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding value and operational performance by combining financial strength and stability with deep insurance expertise and a can-do culture. Group1001's culture emphasizes the importance of collaboration, communication, core business focus, risk management, and striving for outcomes. This goal extends to how we hire and onboard our most valuable assets - our employees.

Group 1001, and its affiliated companies, is strongly committed to providing a supportive work environment where employee differences are valued. Diversity is an essential ingredient in making Group 1001 a welcoming place to work and is fundamental in building a high-performance team. Diversity embodies all the differences that make us unique individuals. All employees share the responsibility for maintaining a workplace culture of dignity, respect, understanding and appreciation of individual and group differences.

Job Description:

The Application Security Engineer at Group 1001 will lead efforts to integrate security best practices into the software development lifecycle, ensuring the security and integrity of our applications from design to deployment. This role requires expertise in application security, secure coding, and process improvement. This is an exciting opportunity for the right candidate to drive significant positive change by setting development standards streamlined processes across a disparate population of highly successful development teams for profitable businesses.

Key Responsibilities:

• Collaborate with development teams to establish and implement secure coding guidelines and practices.
• Conduct security reviews and provide guidance on architectural designs to address security requirements.
• Develop and implement processes for integrating security testing tools and techniques into CI/CD pipelines.
• Lead efforts to automate security testing and vulnerability scanning as part of the development workflow.
• Monitor and analyze application security metrics to identify trends and areas for improvement.
• Stay updated on emerging threats and industry best practices in application security.

Required Qualifications:

• Bachelor's in Computer Science or related degree is expected.
• 7+ years of experience in application security, software development, or related fields.
• Strong understanding of secure coding practices and common vulnerabilities (e.g., OWASP Top 10).
• Experience with security testing tools and technologies (e.g., SAST, DAST, dependency scanning).
• Proficiency in scripting and automation (e.g., Python, PowerShell) for security tool integration.
• Familiarity with DevSecOps principles and CI/CD pipelines.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
• Relevant certifications such as CSSLP (Certified Secure Software Lifecycle Professional) are beneficial.

Compensation:

Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay for this position ranges from $200,000/year in our lowest geographic market up to $270,000/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

Benefits Highlights:

Employees who meet benefit eligibility guidelines and work 30 hours or more weekly, have the ability to enroll in Group 1001's benefits package. Employees (and their families) are eligible to participate in the Company's comprehensive health, dental, and vision insurance plan options. Employees are also eligible for Basic and Supplemental Life Insurance, Short and Long-Term Disability, and to enroll in the Company's Employee Assistance Program and other wellness initiatives. Employees may also participate in the Company's 401K plan, with matching contributions by the Company.

#LI-AS1 #LI-REMOTE

---