Information Security Engineer - Enterprise Applications

Job Title:  Information Security Engineer – Enterprise Applications

Department:  Information Security

Location:  Remote

About Acrisure

Acrisure is a global Fintech leader that combines the best of humans and high tech to offer multiple financial products and services to millions of businesses and individual clients. We connect clients to solutions that help them protect and grow what matters, including Insurance, Reinsurance, Cyber Services, Mortgage Origination and more.

Acrisure employs over 17,000 entrepreneurial colleagues in 21 countries and have grown from $38 million to $4.3 billion in revenue in just over ten years. Our culture is defined by our entrepreneurial spirit and all that comes with it: innovation, client centricity and an indomitable will to win.

Responsibilities:

• Security Assessments: Conduct comprehensive security assessments of existing and future enterprise applications to identify vulnerabilities, misconfigurations, and compliance gaps.
• Remediation: Develop and implement remediation plans to address identified security issues in areas such as Single Sign-On (SSO), logging, API implementations, security groups, Role-Based Access Control (RBAC), and encryption.
• Security Consultation: Provide security guidance and expertise to the Enterprise Apps team throughout the application lifecycle, including procurement, implementation, and ongoing maintenance.
• Oversight: Maintain oversight of the Enterprise Apps team's security practices, ensuring adherence to security policies and industry best practices.
• Access Management: Review and manage access controls for enterprise applications, ensuring appropriate user access and minimizing the risk of unauthorized access.
• This description is not meant to be all-inclusive and may be modified from time to time at the discretion of management.
• Vendor Management: Collaborate with vendors to ensure the security of their applications and address any security concerns.
• Security Awareness: Promote security awareness among the Enterprise Apps team and end-users.

Education/Experience:

• 5+ years in IT or 2+ years in Information Security
• Experience with security assessment tools and techniques
• Familiarity with various enterprise applications, including SSO, CRM, ERP, and collaboration tools
• Knowledge of access management, identity and access management (IAM), and RBAC
• Ability to communicate technical concepts clearly and effectively to both technical and non-technical audiences.
• Strong problem-solving and analytical skills.
• Ability to work independently and as part of a team.

Benefits & Perks:

• Competitive Compensation
• Industry Leading Healthcare
• Savings and Investments
• Charitable Giving Programs
• Offering hybrid work option           
• Opportunities for Growth
• Parental Leave
• Generous time away