Security Engineer

Esurance San Francisco , CA 94118

Posted 3 months ago


Esurance is looking for a Security Engineer to join a dynamic and award-winning team of individuals who are committed to making insurance smarter, easier, and dare we say- cooler. As part of a growing company that is focused on providing an outstanding customer experience, you'll have the opportunity to expand your skills and discover your potential.

If you're looking for a career at a socially conscious company that offers great benefits including matching 401k and tuition reimbursement then you may have just found your new home.

Esurance combines the spunk of a startup company with the backing of Allstate (the largest publicly held personal lines insurer in the U.S.) to create a unique, energized, and exciting place to work.


The Security Engineer coordinates security responses with and trains engineers from other groups within the IT Function such as the MIS team, the NOCC, Network Engineering and the Production Support organization. This role requires availability for off-hour support and 10% travel.

Job Responsibilities:
  • The primary responsibility of the Security Engineer is information security incident management. This includes:

  • Responds to information security incidents in a quick, effective and orderly manner

  • Monitors systems, alerts and vulnerabilities

  • Collects evidence for administrative follow-up or legal action

  • Conducts postmortems, enhancing controls and training others

  • Analyzes security incidents and reports finding to management

  • Documents and maintains the following types of procedures:

  • Recovery procedures that address specific classes of security incidents such as malicious code, denial of service attacks, breaches of confidentiality and internal misuse of information systems

  • Contingency plans for system recovery that identify the cause of an incident, detail how to contain the threat and identify corrective action for preserving live systems data

  • Guidance on how to collect forensic evidence for civil or criminal proceedings

  • Emergency actions and control procedures that will reduce the likelihood of recurrence


  • Familiarity with Unix/Linux, Windows Active Directory, OWASP, Network protocols and how to secure them.

  • Familiarity with with Netscreen, , Palo Alto, Checkpoint or other Firewall tecnologies, various IDS/IPS and SEIM systems. Experience implementing information security controls

  • Knowledge of other Security systems such as DLP, Application scanning, or Vulnerability assessment.

  • Demonstrated flexibility in approach and in developing solutions

  • Demonstrated ability to work independently as well as a member of a team

  • Demonstrated analytical skill, technical knowledge and practical application of information security at a business aware and technical level

  • Ability to explain complex IT concepts in non-technical terms

  • Demonstrated flexibility in approach and in developing solutions

  • Experience in the Financial Services industry and solid understating of SOX, PCI and SDP compliance requirement

  • Take charge personality, and the ability to drive a plan to completion

  • CISSP certification is highly desirable. Other industry standard certifications such as MCSE, CCSE, CCNA, CEH, Security+ or SANS also desirable.

Experience / Education:

  • Bachelor's degree (B.S.) in Computer Science or equivalent job experience

  • Minimum 3 years security experience in implementing security solutions and processes

  • Minimum 5 years experience of implementation and maintenance some of the following IT systems, with a security focus; Windows 2008, 2012 server, Remote Access solutions, SSL/IPSEC VPN services, border routers security, firewalls, IP/VoIP network, DNS, WINS, IP network, TCP/IP, SSL certificates and Intrusion Detection System (IDS), IDS Alerts, and IDS signature upgrades, local and wide area networks

Why you'll love working for us

Esurance offers an exciting total rewards package to include:

  • Benefits eligibility on day 1

  • 401k + company matching

  • 3 weeks paid parental leave following the birth, adoption or foster placement of a child

  • Tuition reimbursement & student loan repayment program

  • Pet insurance discount

  • Give Time, Get Time volunteer program

  • And much more!

To perform this job successfully, an individual must be able to perform each essential job duty satisfactorily. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform essential job functions.

The candidate(s) offered this position will be required to submit to a background investigation, which includes a drug screen.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Security Engineer


Posted 5 days ago

VIEW JOBS 1/17/2020 12:00:00 AM 2020-04-16T00:00 About Us Launched in 2011, Twitch is a global community that comes together each day to create multiplayer entertainment: unique, live, unpredictable experiences created by the interactions of millions. We bring the joy of co-op to everything, from casual gaming to world-class esports to anime marathons, music, and art streams. Twitch also hosts TwitchCon, where we bring everyone together to celebrate, learn, and grow their personal interests and passions. We're always live at Twitch. Stay up to date on all things Twitch on LinkedIn, Twitter and on our Blog. About the Role Twitch is looking for a Security Engineer to join our Security Architecture & Engineering group. The team is responsible for designing and implementing key security controls and event monitoring technologies, providing input on Security concerns across the company, and being general Security subject matter experts for all kinds of various needs. We're looking for a person that wants to participate in a positive, encouraging team that cares about the people it protects. Does that sound like you, or like someone you want to be? Cool. We would like for you to apply. This team is focused on the following responsibility areas of information security. You will focus on one or more of them. You can expect to learn about all of them to some degree as you spend time on this team and as your role expands. We do not expect that you're an expert in all of these responsibilities. We want you to be familiar with several of the team's responsibility areas, or well versed in one of them and interested in the other areas. We know that lots of good people don't give themselves enough credit for their own competency. If you think that you're interested, and that you may be qualified, please contact us. You cannot waste our time. Let us worry about our time. You'll find a Requirements section far below. If you meet all these then we encourage you to apply. If you only meet some of them but think this role sounds like something you'd be great at, we encourage you to apply. If you meet just one of them but think you bring something unique to the team, we encourage you to apply. You Will: * Proactively identify security flaws and vulnerabilities. Spend time thinking both like an attacker and defender * Build security tools and systems to solve capability challenges * Evaluate the impact to the organization of current security trends, advisories, publications, and academic research. * Conduct sophisticated security reviews - from high level web application architecture to OS level parameters in order to meet security goals * Recognize, adopt and instill good practices in security engineering fields throughout the organization: development, cryptography, network security, security operations, incident response, security intelligence, and more. We're building good habits across the org * Exercise risk-based judgment, and to help teams to make the right security calls * Design and coordinate cohesive security-centric strategies and toolsets to achieve our team's goals * Fulfill periodic on-call responsibilities You Have: * BS degree in Computer Science, Computer Engineering, Electrical Engineering, or 3+ years equivalent technology experience * 3+ years of demonstrated experience with focus in areas such as systems, network or security * Strong demonstrated knowledge of web protocols and an in-depth knowledge of Linux/Unix tools and architecture * Demonstrated software development proficiency (Go, Python, Perl, Java, etc.) * Comprehension of algorithms and processes for programmatic automation via scripting or programming languages (Go, Python, Ruby, shell, perl, etc.) * Well-rounded background in host, network and application security * Maturity, judgment, mentoring, nurturing, negotiation/influence skills, analytical skills, and team leader skills * Particularly strong communication skills * Must be willing to work from SF office Bonus Points * Strong AWS fluency * You've worked with Go before. * Masters from a Technical Science, Engineering, or Statistics program * You love working with people and love to facilitate customer feedback * Creative problem solving ability and a bias towards action. * Avid user of Twitch with a passion for the Twitch community Perks * Medical, Dental, Vision & Disability Insurance * 401(k) * Maternity & Parental Leave * Flexible PTO * Commuter Benefits * Amazon Employee Discount * Monthly Contribution & Discounts for Wellness Related Activities & Programs (e.g., gym memberships, off-site massages, etc.) * Breakfast, Lunch & Dinner Served Daily * Free Snacks & Beverages We are an equal opportunity employer and value diversity at Twitch. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Twitch San Francisco CA

Security Engineer