AppSec Jobs
← Back to all jobs

Athene

Identity and Application Security Lead

West Des Moines, IAWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Athene

Athene Holding Ltd. is a prominent retirement services company that specializes in annuities, managing $430 billion in total assets as of September 30, 2025. With operations in the United States, Bermuda, Canada, and Japan, Athene is dedicated to providing financial security through retirement income and savings products. The company is licensed to sell products in all 50 U.S. states and is recognized as one of the fastest-growing writers of fixed annuities, which are essential for retirement income. Headquartered in West Des Moines, Iowa, Athene operates under a subsidiary-focused model and has received strong financial ratings, reflecting its commitment to meeting customer obligations. The company offers a diverse range of annuity products, including fixed annuities, fixed indexed annuities, immediate annuities, and pension group annuities. Athene also provides tailored solutions for corporate pension plans and supports distribution partners with various tools and resources to enhance their operations. Through its innovative offerings, Athene aims to help individuals and corporations achieve their retirement goals.

Industry

financial services

Employees

2,000

99 engineers

Revenue

$26B

Website

Visit →

Security at Athene

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • Athene's AppSec philosophy focuses on developer enablement and self-service, aiming to 'make the secure path the easy path.' They prioritize building solutions that development teams can consume directly.
  • Their risk management approach includes proactive measures such as threat modeling and secure design reviews to provide remediation guidance during the development process.

Security Team

  • Athene's security leadership includes Steve Kozman, SVP and CISO, and Ryan Stone, Director of Information Security Operations.
  • The team recently sought an 'Identity and Application Security Lead' to act as a 'builder who works at the intersection of identity and application security.' While the exact organizational reporting line for the AppSec team is not publicly stated, the role involves designing solutions for both development and security teams to consume directly.

Key Initiatives

  • A key active initiative at Athene is the 'Security Guardians' champions program.
  • Operational workflows include performing testing and validation of security controls in code and APIs, as well as conducting threat modeling and secure design reviews.
  • The team is also focused on automating identity infrastructure using Infrastructure as Code (IaC) patterns with tools like Terraform and CloudFormation.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.