• Information Security Engineer III

    ICW Group (San Diego, CA)


    Are you looking to make an impactful difference in your work, yourself, and your community? Why settle for just a job when you can land a career? At ICW Group, we are hiring team members who are ready to use their skills, curiosity, and drive to be part of our journey as we strive to transform the insurance carrier space. We're proud to be in business for over 50 years, and its change agents like yourself that will help us continue to deliver our mission to create the best insurance experience possible.

     

    Headquartered in San Diego with regional offices located throughout the United States, ICW Group has been named for ten consecutive years as a Top 50 performing P&C organization offering the stability of a large, profitable and growing company combined with a focus on all things people. It's our team members who make us an employer of choice and the vibrant company we are today. We strive to make both our internal and external communities better everyday! Learn more about why you want to be here!

    PURPOSE OF THE JOB

    The purpose of this job is to design secure architectures and develop cybersecurity approaches and techniques to evaluate the security of a system or network. This position will assist with strategic initiatives for short and long-term plans to identify and reduce the attack surface across applications and systems. The position exists to monitor and defend ICW Group’s technology against potential threats that jeopardize the financial growth and security goals of the Company.

    ESSENTIAL DUTIES AND RESPONSIBILITIES

    Monitors and protects information assets across hybrid environments.

     

    + **Monitors data flows and access events across AWS, on-prem, and SaaS platforms using DLP, CASB, SIEM, and AWS-native tools such as Macie, GuardDuty, CloudTrail, and Security Hub.**

    + **Detects and investigates data breaches, insider threats, and exfiltration attempts; leads data-centric incident response through containment, analysis, and recovery.**

    + **Implements and enforces data classification, labeling, and tagging frameworks integrated with AWS S3, RDS, and enterprise file systems.**

    + **Designs and manages encryption and key management solutions using AWS KMS, CloudHSM, and on-premise HSMs to secure data at rest and in transit.**

    + **Collaborates with development and DevOps teams to embed data protection into CI/CD pipelines and application code, ensuring secure data handling throughout SDLC.**

    + **Conducts forensic reviews and produces actionable reports, metrics, and dashboards highlighting data risks and anomalies across hybrid systems.**

     

    Leads complex data protection initiatives and resolves data security risks.

     

    + **Leads enterprise data security projects, including AWS DLP implementation, sensitive data discovery, structured/unstructured data protection, and automated alerting.**

    + **Defines and enforces data governance standards for both AWS and on-prem environments, aligning to ICW’s data lifecycle management and retention requirements.**

    + **Partners with database, app dev, and analytics teams to integrate encryption, tokenization, and privacy-by-design principles into application workflows.**

    + **Designs and maintains role-based and attribute-based access controls (RBAC/ABAC) across AWS Identity and Access Management (IAM), Active Directory, and application layers.**

    + **Collaborates with Privacy, Legal, and Compliance to operationalize data protection impact assessments (DPIAs) and retention/deletion automation.**

    + **Produces executive and board-level reports detailing data protection maturity, compliance metrics, and emerging risk areas.**

    + **Serves as a technical escalation point for AWS data protection incidents, third-party integrations, and complex remediation efforts.**

     

    Serves as ICW’s senior data security SME and technical advisor.

     

    + **Provides expert consulting to architecture, engineering, and product teams on AWS-native security services and hybrid data protection models.**

    + **Advises leadership on emerging cloud data security trends and recommends architectures that balance scalability with compliance and risk reduction.**

    + **Conducts advanced data risk assessments, privacy impact analyses, and forensic reviews to guide remediation and control design.**

    + **Defines AWS-aligned compliance strategies supporting NIST CSF, NYDFS 500, GLBA, and state privacy laws.**

    + **Evaluates and integrates modern data security solutions such as SASE/CASB platforms, insider risk analytics, and automated data classification tools.**

    + **Mentors junior engineers and fosters a data-first security mindset across ICW’s engineering organization.**

     

    Partners with project management and internal teams to mature hybrid data security.

     

    + **Implements technical and process controls to continuously improve data protection maturity in AWS and on-prem applications.**

    + **Partners with cloud engineering and on-prem development teams to design secure data pipelines, storage, and access control mechanisms.**

    + **Contributes to automation and orchestration of data protection activities using AWS Lambda, EventBridge, and native integration APIs.**

    + **Leads knowledge sharing on emerging AWS capabilities while ensuring backward compatibility with existing on-prem data flows.**

    + **Coaches development and data engineering teams to identify and mitigate data leakage risks during application and infrastructure design.**

    SUPERVISORY RESPONSIBILITIES

    This position has no supervisory responsibility but may mentor and train junior engineers.

    EDUCATION AND EXPERIENCE

    + **Bachelor's Degree from four-year college or university required with major or emphasis Engineering, Cybersecurity, Networking, or Computer Science related discipline.**

    + **Minimum 8 years of experience working in a security engineering related role designing secure networks, systems and application architectures or equivalent combination of education and experience required.**

    + **Minimum 3-5 years of experience in AWS Cloud Security services preferred. Direct experience using advanced technologies such as Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls, SIEM, Antivirus software, Network Packet Analyzers, content filtering, Malware analysis and forensics tools to detect intrusions.**

    + **Experience in cyber security role requiring knowledge of data analysis, risk assessment, risk mitigation, investigation methods, incident management concepts and practices, and policy and procedure development.**

    + **Experience with AWS Services such as AWS Identity & Access Management, AWS Organizations, AWS Security HuB, Guard Duty, CloudTrail, AWS CloudTrail.**

    CERTIFICATES, LICENSES, REGISTRATIONS

    + **Certification in GSEC, CISSP, and/or Security+.**

    + **AWS Certified Security – Specialty, preferred**

    KNOWLEDGE AND SKILLS

    + **Knowledge of risk assessment tools, technologies, and methodologies. Knowledge of disaster recovery, computer forensic tools, technologies, and methods.**

    + **Knowledge of enterprise security platforms.**

    + **Ability to communicate network security issues to peers and management. Ability to read and use the results of mobile code, malicious code, and anti-virus software.**

    + **Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention.**

    + **Demonstrated experience as a lead engineer in the design, implementation and support in an enterprise IT environment.**

    + **Ability to work with mathematical concepts such as probability and statistical inference.**

    + **Ability to apply principles of logical or scientific thinking to a wide range of intellectual and practical problems.**

    + **Ability to combine disparate skills and thinking to craft solutions and solve complex operational problems.**

    + **Ability to hypothesize on root cause of inefficiencies and then test out probable solutions against those hypotheses.**

    + **Ability to read, analyze, and interpret technical journals, financial reports, security analysis reports and other IT related documents.**

    + **Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community.**

    + **Must be able to read, write and speak English effectively.**

    + **Ability to effectively communicate/present technical information to a non-technical audience.**

    + **Ability to cross train and share information with team members.**

    PHYSICAL REQUIREMENTS

    Office environment – no specific or unusual physical or environmental demands and employees are regularly required to sit, walk, stand, talk, and hear. Employees are required to reach with hands and arms; stoop, kneel, crouch, or crawl. Employees must occasionally lift and/or move up to 30 pounds. Employees are required to have visual acuity and be capable of operating and viewing computers and other electronic devices for extended periods of time.

    WORK ENVIRONMENT

    This position operates in an office environment and requires the frequent use of a computer, telephone, copier, and other standard office equipment.

     

    We are currently not offering employment sponsorship for this opportunity.

    #LI-TM1

    #LI-HYBRID

    The current range for this position is

     

    $121,624.81 - $217,710.99

     

    This range is exclusive of fringe benefits and potential bonuses. If hired at ICW Group, your final base salary compensation will be determined by factors unique to each candidate, including experience, education and the location of the role and considers employees performing substantially similar work.

     

    WHY JOIN ICW GROUP?

     

    * Challenging work and the ability to make a difference

    * You will have a voice and feel a sense of belonging

    * We offer a competitive benefits package, with generous medical, dental, and vision plans as well as 401K retirement plans and company match

    * Bonus potential for all positions

    * Paid Time Off with an accrual rate of 5.23 hours per pay period (equal to 17 days per year)

    * 11 paid holidays throughout the calendar year

    * Want to continue learning? We’ll support you 100%

     

    _ICW Group is committed to creating a diverse environment and is proud to be an Equal Opportunity Employer. ICW Group will not discriminate against an applicant or employee on the basis of race, color, religion, national origin, ancestry, sex/gender, age, physical or mental disability, military or veteran status, genetic information, sexual orientation, gender identity, gender expression, marital status, or any other characteristic protected by applicable federal, state or local law._

     

    At ICW Group we offer a work environment that encourages entrepreneurialism and celebrates success. Our team members are hands-on contributors who are given the opportunity to make an impact. It's our people who make us an employer of choice and the vibrant company we are today.

     

    Job Category:** **IT

     

    Job Type:** **Full time

     

    Req ID:** **JR100748