Senior Cybersecurity Engineer

About Integrated Specialty Coverages

Integrated Specialty Coverages, LLC (ISC) is a growth stage technology and data-driven commercial MGA and insurance wholesaler leading innovation in the market.

Backed by one of the leading private equity firms, Onex Partners, and led by a forward-thinking management team, ISC is combining the worlds of insurance and technology to create an Insurtech powerhouse. As a leading online distributor of insurance products for a range of industries and “Main Street USA”, we are looking for the right people to help us in our mission of achieving exponential growth. We strive to be the number one place to go for brokers and agents to source insurance. To accomplish this, we’re building a digitally focused team that deeply understands the intersection between user experience, data, and AI/ML to optimize the way we engage with our customers and partners.

Job Summary

We’re looking for a Senior Cybersecurity Engineer to design, build, and operate preventative and detective security controls and automation across our AWS‑first and enterprise environments. Reporting to the CISO, this role implements guardrails, platforms, and integrations and partners with infrastructure, platform, and application teams to embed security by default in our AWS cloud and enterprise environments. The role will perform hands-on engineering in multiple security domains including network security, endpoint security, email security, data security, vulnerability management, container security, and identity and access management.

Position Responsibilities

• Control Engineering & Operation
  • Design, implement, and maintain controls in AWS (IAM, KMS, VPC, GuardDuty, Security Hub, Detective, CloudTrail/CloudWatch), network, endpoint, email, data security, vulnerability, and identity domains.
  • Define SLOs for control availability, latency, coverage, and drift; implement telemetry to continuously measure those SLOs.
• Security Automation & “Policy as Code”
  • Partner with infrastructure, platform, and application teams to build IaC modules (Terraform/CloudFormation) and platform automations (e.g., Python/Lambda, Step Functions) to enforce guardrails (account vending, baseline hardening, logging enablement, key policies, SCPs) using Git.
  • Implement break‑glass patterns and least‑privilege workflows that are auditable and reversible.
• Detection Enablement
  • Engineer data pathways (e.g., CloudTrail, VPC Flow, ECS audit, identity logs) into SIEM/MDR tooling; ensure completeness, timeliness, and schema quality.
  • Translate Detection and Response Lead feedback on false positives/gaps into logging or control adjustments.
• Vulnerability & Exposure Engineering
  • Own scanners/integrations, asset coverage, tagging standards, and develop risk‑based remediation pipelines (ticketing, auto‑remediation for low‑risk classes).
  • Partner with owners to remove friction (pre‑approved windows, canaries, rollbacks).
• Identity & Secrets Hardening
  • Engineer least‑privilege patterns, permission boundaries, conditional access, and automated key/secret lifecycle (rotation, discovery, usage attestations).
  • Provide ready‑to‑consume roles/policies to teams.
• Documentation & Reuse
  • Maintain runbooks, design docs, and reusable modules; ensure changes are versioned, peer‑reviewed, and test‑
• On‑Call (Engineering)
  • Participate in control‑health and platform on‑call (e.g., logging ingestion failures, drift, outages).
  • Escalate security events to the Detection & Response Lead/MDR.

Minimum Qualifications

• 7+ years in security engineering with production AWS (multi‑account/Organizations) and automation‑first delivery.
• Domain experience in at least three of the following:
  • Network security (segmentation, routing, firewall, proxy, WAF)
  • Endpoint security (EDR/EPP, hardening, health attestation)
  • Email security (phishing protection, authentication, inbound/outbound controls)
  • Data security (classification, DLP, encryption, key management)
  • Vulnerability management (scanning, prioritization, remediation pipelines)
  • Container security (image scanning, runtime policy, supply chain)
  • Identity and access management (policy design, federation, least privilege)
• IaC proficiency (Terraform preferred) and Python for automation; CI/CD integration experience (e.g., GitHub Actions, GitLab, CodePipeline).
• Experience with root‑cause analysis and remediation of control failures (not incident RCA).
• Demonstrated ability to independently drive complex projects to completion, as well as collaborate effectively with a complex set of stakeholders.

Preferred Qualifications

• Designed landing zones with SCPs, baseline detective controls, centralized logging, account vending, and guardrail automation.
• Built event‑driven remediations (e.g., detect to auto‑tag/deny/quarantine) safely with approvals and rollbacks.
• Advanced experience engineering security controls in AWS (for example, IAM, KMS, VPC, GuardDuty, Security Hub, Detective, CloudTrail, CloudWatch, Organizations, Control Tower), with automation first practices.
• Industry certification such as AWS Certified Security – Specialty, Certified Information Systems Security Professional, GIAC Certifications, SANS.
• Knowledge of security frameworks and standards such as NIST, ISO, and CIS.

This role also offers bonus pay. Your ISC Talent Acquisition representative will share more details about the bonus component should you advance in the interview process.

The starting annual pay scale for this position is listed below. Actual starting pay will be based on factors such as skills, qualifications, training, and experience. In addition, the company offers comprehensive benefits including medical, dental and vision insurance, 401(k) plan with match, paid time off, and other benefits.

ISC's salary ranges are determined by role and level. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position across all US locations and could be higher or lower based on a multitude of factors, including job-related skills, experience, and relevant education or training.

Benefits of Working at ISC

• Employee Ownership Program - every eligible employee shares in the financial rewards that grow when the company grows
• Professional development opportunities
• Owner Referral Program
• Work from home reimbursement for remote/hybrid roles
• Canary emergency financial assistance program
• Comprehensive medical, dental, vision
• Life/AD&D Insurance
• Confidential, Employee Assistance Program
• Health Savings Account, includes company contribution
• Short-term disability
• Voluntary benefits - supplemental accident, critical illness, hospital insurance
• Employee discounts
• 401(k) Plan with company match contribution
• Addition Wealth Financial Wellness Program
• Various Time Off Programs
• 11 company paid holidays

Applicants may contact the ISC HR department via e-mail or phone to request and arrange for an accommodation that will allow the applicant to successfully complete the application process. Applicants needing assistance may request accommodation at any time. Please contact ISC at [email protected] or 760-599-7242.

ISC believes in creating long-term relationships by being responsive and relevant and by consistently delivering value to our community of customers. Specifically, we focus on attracting, developing, and retaining the best talent for our business, challenging our people, demonstrating a “can-do” attitude, and fostering a collaborative and mutually supportive environment.

Diversity creates a healthier atmosphere: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, gender, gender identity, sexual orientation, marital status, medical condition, genetic information, mental or physical disability, military or veteran status, or any other characteristic protected by local, state, or Federal law.

Must be legally authorized to work in the United States.

ISC participates in the Federal E-Verify program