Execute and maintain the IT risk management program
Drive activities related to the IT risk management strategy
Organize and update IT risk management policies, standards, and processes
Support training and development of ERM teammates
Perform analysis of key IT Risk performance/risk indicators
Coordinate internal and external IT risk assessments
Maintain the IT risk appetites and tolerances
Conduct monitoring of 1st line access reviews
Lead the maintenance and enhancement of the IT risk register and control library
Drive regulatory readiness efforts and governance assessments
Identify and analyze emerging threats, technologies, and regulatory changes
Provide expert insights and recommendations

Requirements

Bachelor’s degree in information technology, cybersecurity, risk management, computer science, or related area
5-7 years of experience in IT risk management, IT audit, cybersecurity, or related roles with experience mentoring junior team members and coordinating projects
Prior experience with IT risk management frameworks (e.g. NIST CSF, COBIT) in the insurance or financial services industry
Proven growth in the ability to assess complex IT environments and articulate risk in business terms
Knowledge of Property/casualty insurance industry operations and relevant regulatory requirements (e.g. NAIC Model Law, PCI-DSS)
Knowledge of internal controls and core IT technologies and processes, risk assessment methodologies, and GRC tools

Benefits

401k Match
Medical
Dental
Vision
PTO
Paid Holidays
Tuition Reimbursement

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

IT risk managementIT auditcybersecurityrisk assessment methodologiesNIST CSFCOBITinternal controlsGRC toolsrisk performance indicatorsemerging technologies

Soft Skills

mentoringproject coordinationcommunicationanalysisleadershiporganizational skillsexpert insightsrecommendations