Openly is rebuilding insurance from the ground up. We are re-envisioning and enhancing every aspect of the customer experience. Doing this requires a rapidly growing team of exceptional, curious, empathetic people with a wide range of skill sets, spanning technology, data science, product, marketing, sales, service, claims handling, finance, etc. Now is the perfect time to join the journey. Here’s why: It’s working. We’re in multiple states and on our way to operating countrywide. We have thousands of agents selling our product and millions of dollars of annual customer premiums. We’re well-backed & stable. We closed our $100M Series D fundraise. We are supported by some of the top investors globally, including Google’s “Gradient” AI-focused fund, Obvious Ventures, Advance Venture Partners, Eden Global Partners, and Clocktower Technology Ventures. It’s not too late! Despite this traction and stability, we’re still early enough in the journey that there’s time to make a real difference during Openly’s formative period. If you’d like to understand more about Openly’s mission, consider checking out this video from a company pitch we gave several years ago at Techstars. Job Details You’re responsible for reviewing, triaging, and remediating alerts and findings from other security programs and processes across the company’s attack surface, including vulnerability management and endpoint detections. You’re developing automations and solutions that scale to help collect, analyze, action and support the remediation of threats and communicate findings to risk decision makers. You’re closely collaborating with your peers in Corporate IT, Security, and Engineering to support the technology & business needs of our rapidly growing company. You love uncovering security threats, developing automations, and collaborating to remediate security events. Key Responsibilities Responding to and investigating security events; communicating the appropriate context and insight to risk decision makers Maintaining and building tools, automations, runbooks, dashboards, and metrics to support rapid detection, triage, analysis, and response Integrating various tools and technologies to form a coherent detection infrastructure Proactively hunting for malicious activity across our environment Staying current with new technology and cybersecurity best practices; making recommendations for efficiency Requirements BS degree in Computer Science, IT, related technical discipline or equivalent years of experience. A minimum of 4 years of professional experience leading Information Security initiatives. Extensive experience across the information security domain, with familiarity in a combination of endpoint, email, network, identity management, cloud security; vulnerability management; incident response; and threat intelligence. Experience implementing, using, and configuring common security tools - e.g., OSQuery, EDR, Threat Intel Platforms. Hands-on experience analyzing and responding to security events, such as conducting log analysis, developing queries and analytics, troubleshooting security issues, and correlating complex data sets. Experience with scripting and automation to reduce repetitive tasks, enforce consistent processes, and enhance productivity. Communication Excellent written and verbal communication skills. Proactive communication with risk stakeholders and colleagues; you work well with others, see the value of a team, and partner effectively with all stakeholders. Process Thinking Strong problem-solving and analytical skills, with the ability to diagnose and resolve complex technical issues involving multiple parties. You can identify trends, insights, and relationships between internal and external data and intelligence sources to provide recommended risk mitigation. Proactive mindset, continuously seeking opportunities for process improvement, automation, and optimization within our technology stack and related workflows.
Openly