Portfolio Jobs

Want to work with one of our portfolio companies? Click below to view current openings.

Security Engineer

Cover Genius

Cover Genius

Software Engineering
Mexico City, Mexico
Posted on Sunday, March 10, 2024
The Company
Cover Genius is a Series E insurtech that protects the global customers of the world’s largest digital companies including Booking Holdings, owner of Priceline, Kayak and Booking.com, Intuit, Uber, Hopper, Ryanair, Turkish Airlines, Descartes ShipRush, Zip and SeatGeek. We’re also available at Amazon, Flipkart, eBay, Wayfair and SE Asia’s largest company, Shopee. Our partners integrate with XCover, our award-winning insurance distribution platform, to embed protection for millions of customers worldwide each year.
Our team and products have been recognized with dozens of awards including by the Financial Times which ranked Cover Genius as the #1 fastest-growing company in APAC in 2020. Our diverse team across 20+ countries and many language groups commit itself to diverse cultural programs, in particular “CG Gives” which makes social entrepreneurs out of us all and funds development initiatives in global communities.
Our People are
Bold, Authentic, Purposeful and Inspired
Our People are not
Perfect, Traditional, Complacent or Cautious
About the Role
Our organization is on the hunt for a knowledgeable and experienced Security Engineer to enhance our security posture. The ideal candidate will have a robust understanding of information security standards, a flair for strategizing and implementing security measures, and a track record of managing employee compliance. Familiarity with identity providers such as Okta is vital. This role will also work independently to improve application and platform security, collaborate with other teams, and undertake regular security testing.

What will your day look like? You will...

  • Write Risk Management Framework (RMF)-based policies and procedures, and develop comprehensive cyber security processes to contain implementation.
  • Assessing cloud infrastructure against security best practices and compliance requirements.
  • Remediating and/or coordinating with appropriate teams to ensure strategies are in place to mitigate cloud infrastructure security issues. Assisting other engineering teams to implement a shift left security culture e.g. pipeline SAST/DAST.
  • Providing advice, tooling and training to allow engineering teams to secure their web applications.
  • Creating and rolling out MDM policies to corporate devices and ensuring corporate devices are compliant with security policies.
  • Provision, deprovision and track employee hardware. Or where appropriate that any BYO hardware is used in a sufficiently controlled fashion in compliance with infosec policies.
  • Partake in technical design reviews, integration, testing, and documentation work.
  • Providing information to current and prospective customers/partners regarding security.
  • Conducting risk assessments for current and potential Cover Genius vendors.
  • Assisting employees with corporate policy compliance.
  • Coordinating and conducting regular access reviews.
  • Creating security awareness training for employees.
  • Assisting the organization in increasing Phishing awareness by creating phishing campaigns.
  • Assisting the organization in meeting compliance framework requirements (e.g SOC2).
  • Co-ordinating scheduled external security testing (e.g. annual penetration testing).

To help us level up, you'll ideally have:

  • Strong attention to detail with an analytical mind and outstanding problem-solving skills.
  • Passion for security and awareness of current best practices and trends in the security space.
  • Experience with AWS and/or GCP platforms and associated security best practices.
  • Experience in securing web applications and frameworks Ideally some experience with Organization management tools (e.g. Google Workspace, Okta).
  • Comfortable scripting & developing internal tooling with at least one programming language and ideally some experience with shell scripting (e.g. bash).
  • Ideally some experience working with infrastructure & configuration as code tools such as Terraform.
  • Ideally experienced with container technology such as Docker and Kubernetes and general familiarity with cloud native approaches to infrastructure & security.
  • Experience working with Linux.
  • Basic understanding of networking and system architecture.
  • Bachelor Degree in Computer Science/Engineering, Information Security, or equivalent practical experience.

To be successful, you'll bring:

  • Strong communication and documentation skills (both written and spoken)Curious and self motivated learner.
  • Professional approach.
  • Organizational and time management skills.
  • Excellent attention to detail.
  • Positive approach to change.
Why Cover Genius?
Cover Genius not only cares about being the best in our industry, we care about our team. We’re a business that understands life can be fluid and so we flex to ensure we provide the environment to suit that. What does that mean?
• Flexible PTO. Taking time out is important for our teams to enjoy life and stay fresh.
• Employee Stock Options - we want our people to share in our success, we reward them with ownership for their contribution in creating a world-class company.
• Work with like-minded people who are passionate about both the work we're doing and giving back. Our CG Gives programs enables us to all become philanthropists through our peer recognition and rewards system.
• Social Initiatives - pictures speak a thousand words!
Sound interesting? If you think you have the best composition of the above, send us your resume and let's chat!
* Cover Genius promotes diversity and inclusivity. We don't tolerate discrimination, demeaning treatment of anyone, or harassment due to race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or any other legally protected status.