Security Operations Engineer II

ABOUT BESTOW

Life insurance is one of the world's most important products. It's also one of the hardest to build, distribute, and modernize. Bestow exists to change that.

Bestow is a leading vertical technology platform serving some of the largest and most innovative life insurers. Our platform unifies the fragmented, legacy value chain, enabling carriers to launch products in weeks instead of years. Carriers choose us to scale and operate at unprecedented speed, powered by AI and automation.

Bestow isn't selling policies. We're building the infrastructure that helps an entire industry move faster, reach more people, and deliver on its promise.

Backed by leading investors (Goldman Sachs, Hedosophia, NEA, Valar, 8VC) and trusted by major carriers, Bestow is powered by a team that moves with precision, purpose, and heart. If you want to help reimagine a centuries-old industry with lasting impact, join us.

Bestow offers flexible remote/hybrid work, meaningful benefits, equity, and substantial growth opportunities.

Bestow participates in the E-Verify Program.

ABOUT THE TEAM

As our Security Operations Engineer II, you will play an important role in supporting our company wide information security/privacy risk and governance program. You will be responsible for executing security & privacy operational tasks to help keep our customers and company data safe.

With your growing technical skills, the successful candidate will have hands-on experience applying security practices, guidelines, and recommendations. Your ability to collaborate effectively with co-workers will help support process owners in being successful during audits.

ABOUT THE ROLE

• Collaborates with the CSO Team to support the development, maintenance, and implementation of security standards.

• Partner with IT to support the secure implementation of access controls and identity management

• Participate in and contribute to initiatives for operating system, Docker images, Kubernetes/GKE and configuration hardening in the public cloud

• Support the execution of vulnerability and patch management programs, including tracking remediation efforts.

• Work with engineering teams to communicate remediation steps required for vulnerabilities identified through scans or penetration tests.

• Support IT, Legal, Finance, Insurance Operations, External Examiners, and business areas during compliance exams.

• Assist with the day-to-day operations of security scanning and web penetration testing tools

• Support the implementation of security monitoring measures to secure the production environment

• Contribute to regular metrics and reporting on the state of the environment

• Identify and surface opportunities to improve security tooling, processes, and best practices.

YOUR EXPERIENCE

• 3+ years of Information Security Experience

• Working experience with the Google Cloud Platform or AWS

• Hands-on experience with automation and scripting such as Terraform and shell/Python scripts

• Experience supporting or participating in penetration testing of web applications, network devices, and cloud configurations

• A self-starter, comfortable working with cloud infrastructure, software development, and information security risk issues

• Foundational knowledge of information technology and/or software development risk management frameworks and compliance practices

• Familiarity with the NIST CyberSecurity Framework and control testing; exposure to audits and some experience with SOC2, HiTrust, or similar audits and certifications is a plus

• Ability to apply security policies, standards, and guidelines based on best practices and industry frameworks

• Strong interpersonal and communication skills, with the ability to clearly document and convey security findings

• Industry security certifications (i.e. CCSP, CCSK, CCSE for cloud security) are a plus

• You are passionate about learning and supporting a culture of security awareness and compliance across the organization.

TOTAL REWARDS

At Bestow, we’re proud to be awarded for our team members, innovative products, and culture. Our standard benefits include:

• Competitive salary and equity based on role

• Policies and managers that support work/life balance, like our flexible paid time off and parental leave programs

• 100% paid-premium option for medical, dental, and vision insurance

• Lifestyle stipend to support your physical, emotional, and financial wellbeing

• Flexible work-from-home policy and open to remote

• Remote and WFH options, as well as a beautiful, state-of-the-art office in Dallas’ Deep Ellum, for those who prefer an office setting

• Employee-led diversity, equity, and inclusion initiatives

Recent Employer Awards include:

• Best Place for Working Parents 2023 + 2024 + 2025

• Great Place to Work Certified, 2022 + 2023 + 2024 + 2025

• Built In Best Places to Work, 2022 + 2023 + 2025

• Fortune’s Best Workplaces in Texas 2022 + 2023

• Fortune’s Best Workplaces in Financial Services and Insurance 2022 + 2023 + 2024

We value diversity at Bestow. The company will hire, recruit, and promote regardless of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, pregnancy or maternity, veteran status, or any other status protected by applicable law. We understand the importance of creating a safe and comfortable work environment and encourage individualism and authenticity in every team member.

Thanks for considering a job at Bestow!