IT Security and Risk Analyst III

The is role is a Governance Risk Compliance position. You will analyze security, threats, risks and exposures, determines the causes of security deviations and suggests procedures to halt future incidents and improve security.

Collaborates cross functionally in business and system requirements analysis. You will report to the Cyber Security Sr. Manager.

Position Compensation Range :

$95,000.00 - $161,000.00

Pay Rate Type : Salary

Salary

Compensation may vary based on the job level and your geographic work location.

Primary Accountabilities

You will conduct and peer reviews security and risk related analysis activities in accordance with security analysis standards.

You will need to be able to write policy and standard with governance experience.

You will contribute to standards for data gathering, calculations, reporting, and quality of analysis activities.

You will oversee analysis processes and standards for business and system requirements and capabilities (e.g., access controls) including data gathering, calculations, and formal reporting.

You will plan and execute compliance audits, including risk assessment, audit scope, identifying and testing processes / controls and developing specific recommendations.

You will coordinate analysis of existing issues and incidents, along with actions, to ensure they are being managed in line with risk management strategy and standards.

You will monitor any legal regulator non-compliance as part of the divisional risk management process and develop recommendations for remediation.

You will coordinates mechanisms to improve documentation, track progress, coordinate all improvement efforts, and monitor process improvement effectiveness.

You will guides and advises stakeholder to ensure that issue and incident management processes are followed.

Specialized Knowledge & Skills Requirements

Demonstrated experience providing customer-driven solutions, support or service.

Preferred- PCI, DSS, GLBA, NYDFS Reg 500, ISO, NIST CSF, Compliance Forge

Advanced knowledge of security analysis processes and standards for conducting and reporting security analysis to stakeholders.

Extensive experience with Governance, Policy and Standard.

Extensive knowledge and understanding of IT risk and control frameworks.

Demonstrated experience conducting IT risk and control assessments.

Extensive knowledge and understanding of IT risk management and reporting.

Solid knowledge and understanding of risk management methods, standards, processes, governance models, and industry standard risk analysis approaches.

Travel Requirements

Up to 10%.

In this flex office / home role, you will be expected to work a minimum of 10 days per month from one of the following office locations : Madison, WI 53783;

Boston, MA 02110; Chicago, IL 60601*; Denver, CO 80112; Eden Prairie, MN 55343; Keene, NH 03431; St. Joseph, MO 64507; Phoenix, AZ 85034; Nashville, TN 37214

LI-Hybrid

We encourage you to apply even if you do not meet all of the requirements listed above. Skills can be used in many different ways, and your life and professional experience may be relevant beyond what a list of requirements will capture.

We encourage those who are passionate about what we do to apply!

We provide benefits that support your physical, emotional, and financial wellbeing. You will have access to comprehensive medical, dental, vision and wellbeing benefits that enable you to take care of your health.

We also offer a competitive 401(k) contribution, a pension plan, an annual incentive, 9 paid holidays and a paid time off program (23 days accrued annually for full-time employees).

In addition, our student loan repayment program and paid-family leave are available to support our employees and their families.

Interns and contingent workers are not eligible for American Family Insurance Group benefits.

We are an equal opportunity employer. It is our policy to comply with all applicable federal, state and local laws pertaining to non-discrimination, non-harassment and equal opportunity.

We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.

LI-BC2