Senior Information Security Analyst

$100,000 - $120,000/Yr

Beazley - Atlanta, GA

posted 5 months ago

Full-time - Mid Level
Atlanta, GA
1,001-5,000 employees
Insurance Carriers and Related Activities

About the position

Beazley Group is seeking a Senior Information Security Analyst to join our dynamic and innovative IT team in Atlanta, Georgia. This role presents an exciting opportunity for US-based candidates to assist in delivering the global security function that supports the global Chief Information Security Officer (CISO) in alignment with Beazley's global business strategy. The successful candidate will be instrumental in conducting risk assessments, engaging in security assurance activities, and promoting a robust security culture throughout the organization. This position will also involve the development and maintenance of security policies and standards, ensuring that Beazley continues to foster a first-class security environment. In this role, you will work closely with various departments, including Information Technology, Compliance, Data Management, and Risk Management, to promote a strong Information Security culture and ensure compliance with established policies and procedures. You will be responsible for delivering third-party security assurance activities globally, ensuring that suppliers operate within defined risk appetites. Additionally, you will create and support Information Security risk assessments across the technology stack and physical locations, proactively identifying security concerns and addressing escalated or high-risk issues. As the initial point of contact for Information Security requests, you will support the response to security incidents and vulnerabilities, develop and maintain the Information Security policy framework in line with risk appetite, legislation, and industry best practices. You will also provide guidance on Information Security matters, maintain awareness of the existing and emerging threat landscape, and ensure that security policies are up to date and effectively utilized across the business. Your role will involve producing concise reports and executive summaries on Information Security topics, contributing to security reports, and participating in various Beazley Committees to enhance the overall security posture of the organization.

Responsibilities

  • Work closely with colleagues across the business to promote a strong Information Security culture and ensure compliance with Information Security policies and procedures.
  • Deliver third party security assurance activities globally to ensure suppliers are operating within defined risk appetite.
  • Create and support Information Security risk assessments across the technology stack and at physical locations.
  • Proactively identify security concerns and address escalated or high-risk issues.
  • Provide initial point of contact and triage for Information Security requests from across the business.
  • Support the response to security incidents and vulnerabilities.
  • Support the development and maintenance of the Information Security policy framework in-line with risk appetite, legislation and industry best practices.
  • Develop and maintain cyber policies and standards aligned with ISO 27001, NIST or other agreed frameworks.
  • Provide Information Security advice and guidance.
  • Maintain an awareness of the existing and emerging threat landscape.
  • Support the response to internal and external Information Security enquiries.
  • Deliver BAU activities as directed.
  • Ensure security policies are up to date and used appropriately and effectively across the business, creating training for business areas as required.
  • Remain up to date with the latest security information to support the understanding of Beazley's data landscape.
  • Ensure data risks and threats facing Beazley are understood and articulated to the CISO and wider security team to ensure timely configuration of existing technologies to get ahead of known and perceived data security.
  • Serve as an SME from the user's perspective, helping develop functional requirements, processes, and automation.
  • Support efforts to increase efficiency of Information Security activities.
  • Manage relationships that contribute to expanding Information Security.
  • Ensure the CISO and wider security team has deep knowledge around mitigating Information Security activities.
  • Produce concise and accurate reports and executive summaries of Information Security topics and techniques.
  • Feed threat knowledge into the security awareness, training and cultural change programme.
  • Support the development of data management and digital risk monitoring.
  • Undertake continual service improvement activities.
  • Participate and contribute to the various Beazley Committees.
  • Contribute to security reports including keeping track of information security metrics.

Requirements

  • At least five years' work experience within information or IT Security operations.
  • Deep knowledge of third-party assurance, training and awareness cultural change and delivery, risk assessments, and creating, updating and embedding security policies and standards into an organization.
  • Experience working with Information Security Governance policy developers.
  • Ability to handle sensitive situations with discretion and employ high ethical standards.
  • Advanced understanding of sensitive data types, their handling requirements, and how to respond to their exposure.
  • Good knowledge of the data protection regulations in all territories in which Beazley operates.
  • Excellent written and oral communications skills, with the ability to communicate technical and security-related concepts to a broad range of technical and non-technical staff and management.
  • Strong understanding of IT security principles, standards, and best practices particularly relating to third party assurance, Identity & Access Management and Privileged Access Management, Training and Awareness.
  • Strong problem-solving skills to troubleshoot, understand technically assigned tasks, and follow documented procedures.

Nice-to-haves

  • Experience with ISO 27001 and NIST frameworks.
  • Familiarity with emerging security technologies and trends.
  • Certifications such as CISSP, CISM, or equivalent.

Benefits

  • Competitively priced medical, dental and vision insurance.
  • Company paid life, and short- and long-term disability insurance.
  • 401(k) plan with 5% company match and immediate vesting.
  • 22 days annual PTO plus paid public holidays.
  • Up to $700 reimbursement towards home office setup.
  • Free in-office lunch and travel reimbursement for travel to office.
  • Monthly lifestyle allowance in support of wellbeing.
  • The opportunity to save for, and purchase, shares of Beazley stock.
  • Six months fully paid parental leave.
  • Company paid sabbatical up to 12 weeks after 10 years of continued service.
  • Support with exam/study leave and fees for relevant qualifications.
  • Up to 2.5 days matched paid leave for volunteering at a charity of your choice.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service