Were seeking a Senior Information Security Engineer for a short-term (23 month) engagement with a leading insurance organization. This role will take technical ownership of Vulnerability Management and Incident Response, ensuring the organization can proactively identify and close security gaps while rapidly responding to emerging threats. The ideal candidate is a seasoned security generalist with strong hands-on experience managing vulnerability programs, leading incident response strategies, and building automation workflows to optimize detection and response. Youll work cross-functionally with infrastructure, development, and business teams to align security initiatives with organizational priorities and ensure measurable risk reduction.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
Human Resources Request Form. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
- 57+ years of hands-on information security experience, with expertise in vulnerability management and incident response.
- Tool proficiency with solutions such as CyberHaven, Rapid7, and DarkTrace (or similar platforms).
- Strong Python scripting and API integration skills to build automation workflows.
- Demonstrated ability to lead cross-functional remediation efforts and communicate risk effectively to stakeholders.
- Experience designing and executing detection and containment strategies for incident response.
- Proven experience maintaining risk registers, tracking exploit paths, and aligning remediation with business risk.
- Strong communication and leadership skills to act as the technical lead within the security domain.
- Experience within the insurance or other highly regulated industries.
- Familiarity with threat modeling methodologies and penetration testing strategies.
- Previous consulting or contract experience, with the ability to quickly assess and execute security initiatives.
- Experience building and maintaining IR runbooks and conducting tabletop exercises.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.