Taking care of people is at the heart of everything we do, and we start by taking care of you, our valued colleague. A career at Sedgwick means experiencing our culture of caring. It means having flexibility and time for all the things that are important to you. It’s an opportunity to do something meaningful, each and every day. It’s having support for your mental, physical, financial and professional needs. It means sharpening your skills and growing your career. And it means working in an environment that celebrates diversity and is fair and inclusive. 

A career at Sedgwick is where passion meets purpose to make a positive impact on the world through the people and organizations we serve. If you are someone who is driven to make a difference, who enjoys a challenge and above all, if you’re someone who cares, there’s a place for you here. Join us and contribute to Sedgwick being a great place to work.

Great Place to Work®
Most Loved Workplace® 
Forbes Best-in-State Employer

Security Engineer - Secure Software Development

PRIMARY PURPOSE:   Ensuring the security of Sedgwick software development processes and products. This role involves working closely with Enterprise Architecture, developers, product managers, and other stakeholders to integrate security throughout the development lifecycle.

ESSENTIAL FUNCTIONS and RESPONSIBILITIES

Identifies and defines system security requirementsConduct SAST code scanning using SNYK and assist with remediation as necessaryCollaborate with developers and product managers for continuous security validation, outline remediation options, and oversee mitigationSupport the ability to “shift left” and incorporate security early on and throughout the development lifecycle via SNYKEngage with internal and external teams performing vulnerability assessments, DAST, and penetration testingJoin forces and provision security principles in architecture, infrastructure, and codeProficient in one or more scripting languages (e.g., Python, PowerShell, JavaScript, Go, and Bash)Provide OWASP and secure coding trainingDesigns computer security architecture and develops detailed cyber security designsPrepares and documents standard operating procedures and protocolsWorks closely with management on assigned projects from inception through implementation ensuring adequate internal communication and user involvement is maintained

ADDITIONAL FUNCTIONS and RESPONSIBILITIES

Performs other duties as assignedSupports the organization's quality program(s)Travels as required

QUALIFICATIONS

Education & Licensing

Bachelor’s degree in information systems, computer science, or related technology field from an accredited college or university preferred. Related technical institute certification preferred.

Experience

Four (4) years of secure software development experience or equivalent combination of educated and experience required.

Skills & Knowledge

Proven experience in secure software development and security engineeringStrong understanding of security best practices in cloud environments (AWS, Azure, GCP)Strong knowledge of SAST, DAST, and penetration testing methodologiesProficiency in scripting languages such as Python, PowerShell, JavaScript, Go, and BashFamiliarity with source code scanning tools like SNYKExcellent collaboration and communication skillsAbility to work effectively with cross-functional teamsKnowledge of information technology security frameworksExcellent oral and written communication skills, including presentation skillsAnalytical and interpretive skillsStrong organizational skillsExcellent interpersonal skillsAbility to create and complete comprehensive, accurate and constructive written reportsAbility to meet or exceed Performance Competencies

WORK ENVIRONMENT

When applicable and appropriate, consideration will be given to reasonable accommodations.

Mental:  Clear and conceptual thinking ability; excellent judgment, troubleshooting, problem solving, analysis, and discretion; ability to handle work-related stress; ability to handle multiple priorities simultaneously; and ability to meet deadlines.

Physical:  Computer keyboarding, travel as required.

Auditory/Visual:  Hearing, vision and talking.

The statements contained in this document are intended to describe the general nature and level of work being performed by a colleague assigned to this description.  They are not intended to constitute a comprehensive list of functions, duties, or local variances.  Management retains the discretion to add or to change the duties of the position at any time.

Sedgwick is an Equal Opportunity Employer and a Drug-Free Workplace.

If you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, consider applying for it anyway! Sedgwick is building a diverse, equitable, and inclusive workplace and recognizes that each person possesses a unique combination of skills, knowledge, and experience. You may be just the right candidate for this or other roles.