Taking care of our customers,our communities and each other. That's the Travelers Promise. By honoring this commitment,we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do and where you do it.
**Job Description Summary**
You will work closely with the Claim Application Security and Software Engineering teams. This program includes interpretation of code scanning and open-source scanning results to help developers remediate vulnerabilities in internally developed applications. You will also be the point of contact for reviewing results of SAST,DAST and Open-Source scanning for Claim Technology Agile Release Trains (ARTs). You will be one of the primary points of contact for working with the Claim Engineering community on remediation of identified vulnerabilities from system security testing. You will interface with the Application Security team,Software Engineers and the Engineering community in Claim Technology to help solution security fixes and provide guidance on application/implementation of fixes.
The successful candidate for this role will be expected to think like an attacker and anticipate how they might exploit weaknesses. You will be responsible for researching relevant attack methods and engage with the ARTs and other Application Security Engineers to help ensure that all relevant risks are identified and addressed throughout the DevSecOps process. You will work directly with Agile teams to ensure security fixes are implemented and validated by engaging the necessary Application Security Engineer. You will work with Claim Technology Software Engineers to ensure applications are onboarded for scanning and track team remediation efforts.
**Primary Job Duties & Responsibilities**
+ Work directly with Claim Technology Engineers and Application Security Engineers on identifying and remediating vulnerabilities.
+ Research relevant attack methods and engage with Claim Technology Application Security Engineers,Travelers Cyber Security and Enterprise Security Engineering.
+ Guide product and engineering teams to building secure features through security architecture design reviews and threat modeling.
+ Be an advocate for secure coding practices across all engineering teams.
+ Work with the ARTs to ensure security is embedded throughout the entire development process.
+ Serve as the go between for Claim Technology Engineers and Travelers Cybersecurity for remediation solutioning.
+ High school diploma or equivalent required.
+ Five years of work experience within Computer Science or a related field required.
**Education,Work Experience,& Knowledge**
+ Strong written and verbal communications skills.
+ Experience in developing in common languages and frameworks such as .NET,Java,React,Angular,etc. a plus
+ Ability to work independently and as part of a team.
+ Experience with Linux a plus.
+ Certifications such as Security+ a plus.
+ Experience working in an Information Security group a plus.
+ Experience assessing and documenting the design of security controls to mitigate risk a plus.
**Job Specific Technical Skills & Competencies**
+ Problem Solving:
+ Demonstrates sound analytic and diagnostic skills dealing with issues that are loosely defined and/or conflict with available information.
+ Knows where to obtain information needed to make the appropriate decisions.
+ Breaks a problem down to manageable pieces and implements effective,timely solutions. Is very good at identifying the problem versus the symptom.
+ Deals increasingly with problems that require involvement of others to solve.
+ Has the ability to reach sound decisions quickly.
+ Carefully evaluates alternative risks and solutions before taking action. Optimizes the use of all available resources.
+ Team Orientation:
+ Maintains partnerships across the organization,and is able to influence senior management,peers and staff through an inclusive style and recognition of their abilities to achieve results.
+ Puts success of the team is above own interest.
+ Manages functional objectives and priorities supporting multiple assigned business units.
+ Responsibilities are assigned with latitude for setting priorities and decision-making using generally accepted guidelines.
+ Results are reviewed with next-level manager for clarification according to predefined objectives.
+ Planning and Project Management:
+ Develops operational plans and provides resource estimation for task planning.
+ Proposes plans of action that are timely,realistic,and positive.
+ Sets appropriate goals for projects and monitors progress against the plan.
**Environmental / Work Schedules / Other**
+ On call as needed.
Travelers is an equal opportunity employer. We value the unique abilities and talents each individual brings to our organization and recognize that we benefit in numerous ways from our differences.
If you have questions regarding the physical requirements of this role,please send us an email (TAPHYREQ@travelers.com) so we may assist you.
Travelers reserves the right to fill this position at a level above or below the level included in this posting.