Continental General - Austin, Texas
Looking to join a growing company dedicated to helping others? We offer that, plus competitive salaries, great culture, and a relaxed environment. This position allows for a hybrid work environment. Join our team to help make a difference in the lives of others!
About Continental General
Headquartered in Austin, Texas, Continental General was incorporated as a life, accident & health insurance company in 1961. Our family of companies and strategic partners provide administrative services to over 100,000 policyholders. We are committed to the continuous development of our infrastructure, processes, and our people. With each opportunity, we take a collaborative approach to address challenges and provide unique solutions.
Essential Job Functions
- Conduct Security Reviews & Architecture Analysis: Perform in-depth analysis of access logs, permissions, and security tools (vulnerability scanners, endpoint protection, and SIEM appliances) to ensure optimal threat detection and data integrity. Engage in high-level architectural reviews, contributing informed recommendations during software and infrastructure design sessions to align with security best practices.
- Security Expertise & Leadership: Serve as the information security subject matter expert, advising on IT architecture, security solutions, and strategies. Lead security discussions to ensure architectural and design decisions are informed by security considerations.
- AWS-Specific Skills & Secure Design Recommendations: Require proficiency in AWS environments, focusing on security configurations and leveraging AWS-specific tools (e.g., Config, Security Hub, IAM, KMS, Guard Duty, Cloud Trail, etc.) for threat mitigation and compliance.
- Vulnerability Management: Lead the identification, prioritization, and remediation of vulnerabilities, enhancing the security posture of the IT environment.
- Incident Response & Training: Coordinate rapid incident response and develop security awareness training, ensuring organizational preparedness and fostering a culture of security.
- Compliance & Policy Management: Prepare compliance reports and skillfully update security policies to meet regulatory standards, including SOC2 and HIPAA. Oversee security tabletop exercises for incident response planning.
- Risk Mitigation & Strategic Collaboration: Collaborate with management and engineering teams to define security requirements and strategies, identify enterprise risks, and ensure security is integrated into the fabric of software and infrastructure design.
- Professional Development & Team Leadership: Promote continuous learning within information security trends and practices. Lead, mentor, and enhance the Security Engineering team's capabilities in policy development and compliance.
Note: Applicants must be authorized to work for a U.S. employer without sponsorship. We are unable to sponsor or take over sponsorship of an Employment Visa at this time or at any time in the future.
JOB PROFILE
Education: Bachelor’s degree in computer science, Information Technology, Cybersecurity, or related field, or equivalent experience.
Experience: 6+ years of relevant cybersecurity experience, with proven expertise in security policy development and regulatory compliance.
Competencies
- In-depth knowledge of information security principles and technologies.
- Proficiency in managing security infrastructures and responding to incidents.
- Exceptional analytical and documentation skills.
- Strong communication skills, capable of articulating complex security requirements clearly.
- Leadership experience with the ability to foster professional growth within the team.
- Demonstrated ability in navigating and applying regulatory documents and compliance standards to practical security measures.