What You Can Expect In This RoleProvide risk consulting for the IT Risk and Compliance function to identify, manage, and monitor IT risk. Conduct risk assessments, track, monitor and report on IT risk, collaborate with internal and external auditors, ensure policy and regulatory compliance, and assist with the development and implementation of IT risk management methodologies. Mentor IT Risk and Compliance analysts. Support the IT Security and Risk Management team, the Information Technology department, and the entire Company in monitoring and managing information risks.
What You'll Do In This Role• Provide IT Risk and Compliance support to the Company while serving as Subject Matter Expert (SME) for the IT Risk and Compliance team.
• Develop and implement IT risk management methodologies.
• Develop and implement IT risk assessment processes.
• Conduct regular Company information security risk assessments, consulting with other IT Risk and Compliance team members.
• Mentor IT Risk and Compliance analysts.
• Train IT staff in conducting targeted information security risk assessments.
• Develop and implement IT risk and security policies.
• Monitor information risks, mitigation and remediation efforts; report and present risk to IT Management.
• Understand and accountable for ensuring compliance with IT risk and security regulatory requirements.
• Work with IT and entire SFG staff to ensure their compliance with IT and risk security policies.
• Provide expertise to other IT Risk and Compliance team members with validation of test results and problem analysis and resolution.
• Develop and implement IT controls framework.
• Work with IT to assist in the selection of appropriate control activities; measure and monitor those control activities.
• Provide IT risk consulting to SFG IT staff.
• Consult on other IT Risk and Compliance team activities.
• Continuously monitor the risk function, identifying, developing and implementing process improvements using discretion and trusted judgment.
• Commitment to embrace Sammons Financial Group Companies shared values (Accountability, Connection, Openness, Respect and Integrity).
• As stated within the Company Attendance and Punctuality policy, regular attendance is required and expected in order to meet the business service levels and workflow demands.
• Participate in other initiatives and/or projects as necessary.
What We're Looking For- Bachelor's Degree in Business, Computer Science, IT, Risk Management or related field Preferred
- Minimum 10 years' experience in risk management, information security and/or internal controls including experience as an IT Auditor, IT Security Analyst or IT Risk Analyst Preferred
- Broad knowledge of Information Risk Management concepts and how these concepts apply to the business
- Strong knowledge of IT, information security and information risk management domain areas such as Information Systems Security, Systems Development Life Cycle Methodology, Testing Methodologies, Back-up and Recovery, Risk Management, Risk Assessment, Data Retention and Recovery, Business Continuity, Disaster Recovery, Leadership and Communication, and Security Awareness
- Specific knowledge of risk management principles and models
- Strong understanding of financial services, insurance, business and technologies
- Knowledge of legislation and regulations pertaining to the insurance industry
- Excellent understanding of the organization's goals and objectives
- Aptitude for business engagement, ongoing education to business partners of the value of information risk management
- Ability to effectively prioritize and execute tasks in a high-pressure environment
- Excellent written, oral, and interpersonal communication skills
- Ability to conduct research into existing and emerging security and compliance issues as required
- Ability to present ideas in both business-friendly and IT-friendly language
- Highly self-motivated and directed
- Team-oriented and skilled in working within a collaborative environment
- Knowledge of Life Insurance and Annuity products, insurance processes and methodologies
Other Requirements• Criminal background check required.
Salary Range InformationUSD $84,721.00 - USD $176,501.00 /Yr. Range includes data points from multiple labor markets. Specific range is dependent on the labor market where the incumbent will be hired to perform the position. Starting salary is dependent on candidate qualifications and experience. For a narrower salary range specific to your labor market, please inquire.
What you can expect when you join Sammons Financial Group•
Comprehensive health coverage for you and your family, including Medical, Dental, Vision, HSA & FSA options, and term life insurance.
•
Competitive compensation with a performance-based incentive program tied to clear goals and individual and/or company success.
•
Invest in your future with our 100% company-funded Employee Stock Ownership Plan (ESOP), plus automatic enrollment in our 401(k).
•
Work-life balance that means something. Friday afternoons off year-round, generous paid time off, and paid holidays.
•
Commit to your growth with paid development time, tuition reimbursement, and professional development opportunities across industry, individual, and leadership programs.
•
Make an impact beyond the workplace through volunteer time off, and our company nonprofit matching gift program, supporting the causes that matter most to you.
•
An ownership culture that inspires; join a connected, values-driven workplace where employees take accountability, support one another, and are empowered to do their best work-together shaping our future shared success.
Work Authorization/SponsorshipAt this time, we're not considering candidates that need any type of immigration sponsorship now or in the future or those needing work authorization for this role (This includes, but is not limited to students on F1-OPT, F1-CPT, J-1, etc.)