About Us:
At CIGA, our mission is to Serve Those Who Have Nowhere Else to Go. We are dedicated to helping keep the Insurance promise through being an empathetic and trusted payer of claims of insolvent insurance companies. Our team thrives in a collaborative, vibrant environment where culture and service guide everything we do. If you’re looking to make a real impact and grow alongside a dynamic organization committed to protecting Californians, CIGA is the place for you. Join us and be part of a mission that matters!
Job Overview
Reporting directly to the Chief Information Officer, the Information Security Engineer is responsible for developing, implementing, and maintaining the organization’s information security program to protect systems, data, and operations. This role ensures alignment with business objectives while managing cybersecurity risks, regulatory obligations, and incident response readiness.
The position provides leadership across security governance, risk management, and operational security functions, working closely with IT, business units, and executive leadership.
Duties
Security Strategy & Governance
- In partnership with IT Leadership, develop and execute the enterprise information security strategy aligned with organizational goals
- Manage Security Roadmap, working with technical staff to deliver progress
- Establish and maintain security policies, standards, and procedures
- Lead security risk management efforts, including risk assessments and mitigation planning
- Ensure compliance with industry best practices and regulatory/audit requirements
Incident Response & Business Continuity
- Lead cybersecurity incident response planning and execution
- Coordinate communication and escalation during security incidents, including executive updates
- Partner with IT and business teams to strengthen disaster recovery and business continuity capabilities
- Although very rare, this position may require response off-hours
Risk & Compliance
- Conduct regular risk assessments and security reviews of systems and vendors
- Participate in CIGA’s Third-Party Risk Management framework
- Support internal and external audits and lead audit response efforts
- Maintain comprehensive documentation and report on security posture
Leadership & Collaboration
- Partner with IT leadership to integrate security into all technology initiatives
- Provide guidance to business stakeholders on security best practices
- Lead, mentor, and develop security team members (if applicable)
- Serve as a trusted advisor to executive leadership on cybersecurity risks
- Prepare and/or present board-level cybersecurity reporting
Awareness & Training
- Develop and deliver organization-wide security awareness programs
- Promote secure behaviors and practices across staff
Other duties, as assigned.
Key Performance Indicators (KPIs) for this position could include:
- Reduction in security incidents and vulnerabilities
- Compliance audit results
- Incident response effectiveness and recovery time
- Security awareness program participation and effectiveness
Requirements
Education & Experience
A four-year degree in Cybersecurity, Information Technology, or related field strongly preferred
- 5+ years of experience in cybersecurity
- 2+ years in a leadership or supervisory role
- Relevant security certifications (e.g., CISSP, CISM, CISA)
Technical Expertise
- Strong knowledge of security frameworks (NIST, ISO 27001, CIS) and programs
- Experience with cloud security, identity management, and network security tools
- Experience with relevant internal and external audits, including managing remediation
- Solid familiarity with incident response and threat management processes
Skills
- Strong leadership and communication skills
- Ability to translate technical risk into business impact
- Strong analytical and problem-solving abilities
- Ability to manage multiple projects simultaneously and deliver according to deadlines.
- Ability to work both independently with minimal supervision, and as a member of the team, and to be flexible and responsive to various tasks assigned.
- Experience working with cross-functional teams and executive stakeholders
What You’ll Get:
- · Flexible Remote and Hybrid work options
- · Comprehensive medical, dental, and vision insurance for you and your family
- · Employer-provided life and disability insurance
- · A Generous Paid Time Off Program
- · Best-In-Class 401(k) plan with Company Match
- · Company-paid Training and Certification programs
- · Mentorship and Coaching opportunities within the Guaranty Association community
Pay: $126,058.00 - $189,080.00 per year
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Employee assistance program
- Flexible schedule
- Flexible spending account
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Parental leave
- Retirement plan
- Tuition reimbursement
- Vision insurance
People with a criminal record are encouraged to apply
Work Location: Hybrid remote in Glendale, CA 91203