Cybersecurity Governance, Risk,

1 month ago

East Rutherford, United States AEGIS Insurance Services, Inc. Full time

AEGIS Insurance Services, Inc. (“AEGIS”) has an immediate opening for a Cybersecurity Governance, Risk, and Compliance Analyst that plays a vital role in safeguarding the Company’s information assets by facilitating, operating, and maintaining a comprehensive Governance, Risk, and Compliance program. This program aligns with our Cybersecurity and Compliance goals and objectives. The Cybersecurity Governance, Risk, and Compliance Analyst will collaborate with various stakeholders including the Senior Security Engineer, IT Infrastructure team, IT Application teams, Legal, and vendors.


The role offers a dynamic blend of responsibilities which include, reviewing cybersecurity controls, conducting risk assessments, supporting, and coordinating audits (including SOC 2 certification), and actively participating in security operations. In addition, the role will have the opportunity to assess security events and validate controls across the security landscape.


Job Requirements:


  • Experience with information security-related processes, programs, and/or protocols desired
  • Undergraduate degree in Information Systems, Management Systems, Cybersecurity or related discipline or equivalent certification or work experience
  • Working knowledge of information security principles and best practices frameworks
  • Ability to identify and assess the severity and likelihood of cybersecurity or related risks
  • Ability to communicate technical information to non-technical audiences
  • Demonstrated strong analytical and research skills
  • Proficiency in Microsoft Office Suite; specifically, Excel, PowerPoint, and Word


Candidate Attributes:


  • Achievement-Oriented: Demonstrates persistence and perseverance in achieving concrete and tangible outcomes by taking action to get optimum results when encountering obstacles or resistance
  • Collaborative: Develops and maintains effective working relationships across functional and divisional lines by readily sharing information, knowledge, and resources
  • Detail-Oriented: Displays thoroughness and accuracy in quality communications and deliverables through the application of technical skills and industry/product knowledge
  • Service-Oriented: Conveys a genuine desire and ability to anticipate and meet customer needs and creates and nurtures mutually beneficial relationships within AEGIS and with AEGIS Members and brokers
  • Work Ethic: Takes ownership for one’s responsibilities by acting with integrity and holding oneself accountable to continuous improvement


Essential Job Functions:


Training and Documentation


Risk Management:

  • Maintain a comprehensive cyber and IT risk register, conducting ongoing risk assessments
  • Communicate risk assessment findings effectively to risk owners and track remediation progress
  • Support continuous control evidence gathering and participate in documenting, assessing, and remediating issues and risks identified during audits and risk assessments

Governance:

  • Actively support the development, implementation, revision, and updates of security and compliance policies, procedures, practices, and key performance indicators (KPIs)
  • Maintain an accurate and up-to-date IT asset inventory

Security Awareness & Training:

  • Oversee and maintain the employee awareness training program, including phishing simulations

Continuous Learning:

  • Proactively stay current with the ever-evolving cybersecurity threat landscape


Testing, Monitoring and Reporting


Regulations & Frameworks:

  • Document and track relevant regulatory requirements and frameworks (e.g., NIST CSF, SOC 2) and ensure alignment with internal controls and policies

Compliance:

  • Manage and actively support both internal and external audit engagements
  • Conduct regular control testing to ensure ongoing compliance

Vulnerability Management:

  • Assign and track vulnerability remediations, actively supporting the vulnerability management process

Cloud Security:

  • Regularly assess and track the organization's cloud security posture

Executive Reporting:

  • Regularly generate KPI and status reports to keep leadership informed of the GRC program's effectiveness


Investigation, Analysis and Assessment


Third-Party Risk Management:

  • Conduct thorough third-party risk assessments to ensure all vendors are vetted and approved before onboarding
  • Continuously monitor critical vendors using a vendor risk management platform

Incident Response & Disaster Recovery:

  • Support and document incident response and disaster recovery exercises
  • Document security events thoroughly


www.aegislink.com


EOE

AEGIS Insurance Services, Inc. participates in E-Verify


We expect to pay a starting salary between $75,000 and $105,000. An applicant’s placement within this range is based on their individual qualifications and professional experience. In addition to base salary, AEGIS employees are eligible to participate in the Company’s annual incentive program, with competitive awards based on corporate and individual performance.


In addition, we offer a comprehensive and competitive suite of options for health, retirement, income protection, wellness, and additional benefits:


  • Health: medical and prescription coverage, behavioral health, dental, vision, health savings account (includes a Company contribution), and flexible spending accounts
  • Retirement: 401(k) plan that includes matching contributions and an additional Company contribution of 4% (subject to IRS limitations)
  • Income Protection: basic and supplemental life insurance, short-term and long-term disability coverages, accident, and critical illness insurance
  • Wellness: on-site health and fitness center, on-demand fitness and well-being app, and employee assistance program with support on mental health, financial, and legal services
  • Additional benefits: commuter benefits that include a transit subsidy from the Company, pet insurance, paid time off (vacation, floating holidays, sick, and Company paid holidays), and a variety of leaves of absence (health, family, and military)
  • Educational assistance and professional development opportunities
  • Hybrid work schedule

  • Cybersecurity Analyst

    1 week ago

    East Alton, Illinois, United States 1st Mid America Credit Union Full time

    About the RoleWe are seeking a seasoned Cybersecurity Analyst - Compliance and Risk to join our IT security team. The successful candidate will be responsible for ensuring all appropriate industry measures are taken to limit the risk of loss of member information and/or organizational proprietary data.The ideal candidate will have a bachelor's degree in...

  • Senior Manager of Cybersecurity

    1 week ago

    East Rutherford, New Jersey, United States Michael Kors Full time

    About this role:In this challenging and rewarding position, you will be responsible for leading our IT Security Operations team and implementing our security policies and procedures. You will work closely with our IT department to integrate and consolidate security measures within our existing infrastructure. Additionally, you will participate in compliance...

  • Information Security Operations Lead

    1 week ago

    East Rutherford, New Jersey, United States Michael Kors Full time

    Here are some key responsibilities for this IT Security Operations role:Lead IT Security Team:As a Senior Manager of Cybersecurity, you will be responsible for leading our IT Security Operations team. This includes developing and implementing our security policies and procedures, managing and enhancing our Security Operations Center (SOC), and tracking,...

  • Industrial Cybersecurity Architect

    2 weeks ago

    East Montpelier, Vermont, United States Haleon Full time

    About the RoleAt Haleon, we're shaping the future of consumer health by growing and innovating our global portfolio of category-leading brands. We're seeking an Industrial Cybersecurity Architect to join our Digital and Tech Information Security organization.Key Responsibilities:Lead architectural activities for OT security, ensuring the highest level of...

  • IT Risk Management Specialist

    2 days ago

    East Alton, Illinois, United States 1st Mid America Credit Union Full time

    Job Description">We are looking for an experienced IT Risk Management Specialist to join our team at 1st Mid America Credit Union. In this role, you will be responsible for identifying and assessing potential IT risks, developing mitigation strategies, and implementing controls to minimize those risks.You will work closely with the IT team to ensure that all...

  • E-Commerce Product Governance Manager

    2 weeks ago

    East Rutherford, New Jersey, United States Michael Kors Full time

    We are seeking a Compliance-Focused Product Manager with expertise in ADA, Legal, Data, Regulatory, PII, and PCI compliance to join our e-commerce team at Michael Kors.Key ResponsibilitiesDevelop and implement strategies to ensure digital platforms meet accessibility standards.Collaborate with cross-functional teams to integrate compliance requirements into...

  • Product Manager, E-Commerce Compliance

    2 months ago

    East Rutherford, United States Michael Kors Full time

    Who You Are:We are seeking a Compliance-Focused Product Manager with expertise in ADA, Legal, Data, Regulatory, PII, and PCI compliance to join our e-commerce team. This role is pivotal in ensuring our digital platforms meet all necessary legal and regulatory requirements, while enhancing the user experience.What You’ll Do:Ensure that all digital products...

  • Executive Technology Strategist

    4 weeks ago

    East Lansing, Michigan, United States SET SEG Full time

    **Chief Information Officer Job Description**We are seeking a skilled Chief Information Officer to join our team at SET SEG in East Lansing, MI.**Job Overview:** The Chief Information Officer will lead the transformation of our IT department into a modern, agile, and innovative team. This role involves spearheading the modernization of IT infrastructure,...

  • Senior Account Manager

    1 week ago

    East Greenbush, New York, United States Center for Internet Security Full time

    Unlock Your Potential in CybersecurityThe Center for Internet Security (CIS) is a community-driven nonprofit organization that makes the connected world a safer place for people, businesses, and governments. As a Senior Account Manager, you will play a vital role in building and maintaining successful relationships with existing customers, driving renewal to...

  • IT Software Developer

    4 days ago

    East Elmhurst, New York, United States Tri-Force Consulting Services, Inc. Full time

    Are you a skilled software developer looking for a challenging role? Tri-Force Consulting Services, Inc. is seeking an IT Software Developer - Business Solutions Specialist to join our team.The estimated salary for this position is $120,000 - $180,000 per year, depending on experience and qualifications.We are looking for a highly motivated and...

  • Lead Enterprise Software Architect

    4 days ago

    East Elmhurst, New York, United States Tri-Force Consulting Services, Inc. Full time

    **Job Summary**We are seeking a highly skilled Enterprise Software Architect to lead the design and implementation of scalable enterprise solutions using Microsoft technologies (Azure, .NET, SQL Server) and Java frameworks (Spring, Hibernate).The ideal candidate will have 8-10+ years of experience in system integration, API design, and microservices...

  • Enterprise Java Software Engineer

    3 days ago

    East Elmhurst, New York, United States Tri-Force Consulting Services, Inc. Full time

    Job TitleJava/J2EE DeveloperAbout the JobThis position is a hybrid role with 3 days onsite and 2 days remote. The applicant is at the center of our universe.Job DescriptionWe are seeking an experienced software engineer to join our team in East Elmhurst, NY. The ideal candidate will have a strong background in Java application development, specifically...

  • Information Security Systems Administrator

    2 weeks ago

    East Haven, United States Town Fair Tire Full time

    Job Description:The Information Security Systems Administrator will be responsible for handling access requestcalls, providing technical support to office and retail store staff, and ensuring the security andefficiency of our systems. This role requires a general understanding in Active Directory,information security principles, and the ability to...

  • Information Security Systems Administrator

    1 day ago

    East Haven, United States Town Fair Tire Full time

    Job Description:The Information Security Systems Administrator will be responsible for handling access requestcalls, providing technical support to office and retail store staff, and ensuring the security andefficiency of our systems. This role requires a general understanding in Active Directory,information security principles, and the ability to...

  • Enterprise Cloud Solutions Architect

    3 days ago

    East Elmhurst, New York, United States Tri-Force Consulting Services, Inc. Full time

    We are seeking an experienced Enterprise Cloud Solutions Architect to join our team at Tri-Force Consulting Services, Inc. in East Elmhurst, NY.Job DescriptionThe successful candidate will have a minimum of 12 months' experience in developing custom business applications with Microsoft PowerApps and integrating them with Microsoft Dynamics 365 CRM. They will...

  • Composite Research Scientist: Advanced Materials and Manufacturing Expert

    4 weeks ago

    East Hartford, Connecticut, United States RTX Full time

    Company OverviewRTX Corporation is a leading Aerospace and Defense company that provides innovative systems and services for commercial, military, and government customers worldwide.We comprise three industry-leading businesses – Collins Aerospace Systems, Pratt & Whitney, and Raytheon. Our 185,000 employees enable us to operate at the edge of known...

  • Manager, Internal Controls

    2 months ago

    East Hanover, United States Mondelez International Full time

    Job DescriptionAre You Ready to Make It Happen at Mondelz International?Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.You will partner with financial and operational management to understand and enhance internal control environments, risks, and mitigation activities to minimize the risk of financial losses, operational...

  • Manager, Internal Controls

    1 week ago

    East Hanover, United States Mondelez International Full time

    Job DescriptionAre You Ready to Make It Happen at Mondelz International?Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.You will partner with financial and operational management to understand and enhance internal control environments, risks, and mitigation activities to minimize the risk of financial losses, operational...

  • Director of Infrastructure

    2 weeks ago

    East Windsor, United States SpectraMedix Full time

    About the Company: SpectraMedix is a leader in healthcare analytics, helping U.S. healthcare organizations achieve financial and clinical goals through actionable insights. We support progressive healthcare organizations in enhancing quality, reducing preventable utilization, and optimizing care management.About the Role: The Director of Infrastructure &...

  • Phaxis | SVP Information Technology

    2 weeks ago

    east massapequa, United States Phaxis Full time

    Our client, a worldwide leader in the manufacturing of electronic and mechanical systems, headquartered in Long Island is looking for a Senior Vice President of Information Technology. This individual reports to the President, CFO and COO. This is a key member of the leadership team for technology strategy, infrastructure and operations of the company. This...