Who are we?
A strategic and trusted insurance partner, Berkshire Hathaway Specialty Insurance (BHSI), provides a broad range of commercial property, casualty and specialty insurance coverages and outstanding service to customers and brokers around the world. Part of Berkshire Hathaway’s insurance operations, we bring our solutions to market with our stellar brand name, top-rated balance sheet, and the expertise of our global team of professionals, who exude excellent capabilities and strong character.
We are a values-based organization where respect, integrity, excellence, collaboration, and passion define who we are and how we do business. We value diversity of backgrounds, experience, and perspectives and strive to foster an inclusive environment that enables all our team members to bring their best selves to work. We are one team committed to building a culture where every teammate has the opportunity to contribute and be recognized. Want to be part of the team building the finest property, casualty and specialty lines insurance company in the world?
Learn more about our unique culture and history .
Job Opportunity
Berkshire Hathaway Specialty Insurance (BHSI) is seeking a forward‑thinking Cloud Security leader with a strong grounding in AI Security to join our Boston-based team. This role offers a unique opportunity to define and advance our cloud security strategy across modern, mission‑critical platforms, operating at the intersection of technology, risk, and business impact.
As a core member of our cybersecurity leadership team reporting directly to the CISO, you will drive the evolution of our cloud and AI security ecosystems—establishing governance, controls, and compliance across our cloud infrastructure while helping secure our growing Artificial Intelligence footprint. If you are passionate about shaping the future of cloud security and influencing how secure systems and services are built and governed, we’d welcome the conversation.
Duties & Responsibilities
- Cloud Security /AI Security Strategy & Governance:
- Develop and maintain the organization’s cloud security and AI security strategy, standards, and policies across IaaS, PaaS, and SaaS environments.
- Define and enforce cloud architecture security principles aligned with Zero Trust.
- Identify and enforce AI security controls and configurations aligned with our cloud architecture
- Lead cloud and AI risk assessments, gap analysis, and initiative planning.
- Guide migration and modernization efforts to ensure secure-by-design implementations.
- Operational Security & Threat Management:
- Oversee the configuration, monitoring, and continuous improvement of:
- CSPM (Cloud Security Posture Management)
- CWPP/CNAPP (Cloud Workload Protection / Cloud-Native Security)
- SIEM/SOAR integrations for cloud telemetry
- Identity threat detection (ITDR)
- Direct incident response for cloud-related security events in collaboration with SOC/IR teams.
- Ensure continuous monitoring for misconfigurations, vulnerabilities, and anomalies.
- Identity, Access, and Data Protection
- Support cloud & AI IAM frameworks (least privilege, conditional access, workload identities).
- Drive cloud-related adoption of encryption, secrets management, and key management (BYOK/CMK).
- Ensure efficacy of data classification and DLP controls across cloud environments.
- DevSecOps & Engineering Partnership
- Embed security controls and testing into CI/CD pipelines in collaboration with AppSec.
- Oversee IaC scanning and container security while supporting SAST/DAST and supply chain security.
- Collaborate with engineering to remediate findings and architect secure workloads.
- Compliance & Risk Management
- Ensure cloud environments meet regulatory and compliance requirements.
- Own cloud security and AI security audits and evidence collection.
- Mature asset inventories, risk registers, and control documentation.
- Leadership & Stakeholder Management
- Build and mentor a team of cloud security & AI security engineers/analysts.
- Provide regular reporting to security leadership and executives.
- Partner across technology, infrastructure, DevOps, and architecture.
Qualifications, Skills And Experience
- 5–10+ years of experience in cybersecurity, with a focus on cloud security.
- Hands-on experience with AWS, Azure, or GCP security services.
- Strong knowledge of:
- Cloud IAM and identity governance
- Network security (VPCs/VNets, firewalls, segmentation)
- Cloud-native monitoring, threat detection, and logging
- Infrastructure-as-Code (Terraform, CloudFormation, Bicep)
- Experience with CSPM, CWPP/CNAPP, SIEM, SOAR, and vulnerability management tools.
- Knowledge of compliance frameworks and cloud shared responsibility models.
BHSI Offers
- A competitive package and exciting growth opportunities for career-oriented teammates
- A dynamic, action oriented, and thoughtful environment centered on always doing the right thing for our customers, teammates and our other stakeholders
- A purposely non-bureaucratic organization that embraces simplicity over complexity and emphasizes individual excellence in a team framework
- Benefits that support your life and well-being, which include:
- Comprehensive Health, Dental and Vision benefits
- Disability Insurance (both short-term and long-term)
- Life Insurance (for you and your family)
- Accidental Death & Dismemberment Insurance (for you and your family)
- Flexible Spending Accounts
- Health Reimbursement Account
- Employee Assistance Program
- Retirement Savings 401(k) Plan with Company Match
- Generous holiday and Paid Time Off
- Tuition Reimbursement
- Paid Parental Leave
The base salary range for this position in Boston is $150,000.00 to $220,000.00, along with annual bonus eligibility. Total compensation for a candidate is determined by their relevant skills, location, and experience. We value our teammates – both their capabilities and character – as demonstrated by our amazing culture.
NOTE: Compensation will be commensurate with experience. This job description is not intended to be all-inclusive. Team Member may perform other related duties as negotiated to meet the ongoing needs of the organization
