Security Engineer

Security Engineer

About Us

At Resilience, we’re creating a new category that integrates cybersecurity, cyber insurance, and cyber risk management. Founded in 2016 by experts from across the highest tiers of the US military and intelligence communities – and built by prominent leaders and innovators from the insurance, technology, and cybersecurity industries – Resilience is rewriting the rules of how cyber risk is assessed, measured, and managed. Our integrated cyber risk solutions connect risk quantification software, cybersecurity experts, and A+ rated cyber insurance, all purpose-built for middle and large organizations. We are a cybersecurity company, a Cyber and Tech E&O-focused MGA, a fintech startup, and a data science powerhouse, all purposefully built into one. Resilience is proud to be backed by leading technology investment firms, including General Catalyst, Lightspeed Venture Partners, Intact Ventures, Founders Fund, CRV, and Shield Capital.

The Hook: Why this role matters now

Step into a critical role to build, defend, and scale the security posture of our category-defining SaaS platform and internal corporate systems. As a Security Engineer, you won't just monitor alerts or patch vulnerabilities; you will take complete ownership of engineering proactive guardrails, automating incident response workflows, and securing emerging technologies like AI and machine learning. Operating at the highly collaborative intersection of Security, IT, and DevOps, you will aggressively dig into legacy processes to architect permanent, automated fixes rather than applying temporary patches.

The Mission: What you will achieve in the first 6 months

In your first six months, you will take full accountability for designing and maintaining automated response playbooks using orchestration workflows (e.g., n8n, Tines, or XSOAR) to heavily reduce manual intervention. You will pioneer our agentic security engineering efforts by developing custom SecOps applications and autonomous workflows that seamlessly triage alerts and accelerate our defense capabilities. Furthermore, you will completely own cloud infrastructure security by implementing "Infrastructure as Code" (Terraform) across our multi-cloud footprint (AWS/GCP), while establishing robust security guardrails for AI platforms and developer tools to mitigate risks like prompt injection and data leakage.

The Toolkit:

• 4+ years of experience in a Security Engineering, DevSecOps, or high-level SecOps role. You must possess a relentless