Senior Information Security Analyst

$100,000 - $120,000/Yr

Beazley - West Hartford, CT

posted 5 months ago

Full-time - Mid Level
West Hartford, CT
1,001-5,000 employees
Insurance Carriers and Related Activities

About the position

Beazley Group is seeking a Senior Information Security Analyst to join our dynamic and innovative IT team in West Hartford, Connecticut. This role presents an exciting opportunity for US-based candidates to assist in delivering the global security function that supports the global Chief Information Security Officer (CISO) in alignment with Beazley's global business strategy. The successful candidate will be instrumental in conducting risk assessments, security assurance activities, and promoting a robust security culture within the organization. This position will also focus on developing and maintaining security policies and standards, ensuring that they are effectively embedded within the company’s operations. In this role, you will work closely with various departments to foster a strong Information Security culture and ensure compliance with established policies and procedures. You will be responsible for delivering third-party security assurance activities globally, ensuring that suppliers operate within defined risk appetites. Additionally, you will create and support Information Security risk assessments across the technology stack and physical locations, proactively identifying security concerns and addressing escalated or high-risk issues. As the initial point of contact for Information Security requests, you will support the response to security incidents and vulnerabilities, and assist in the development and maintenance of the Information Security policy framework in line with risk appetite, legislation, and industry best practices. You will also be tasked with maintaining awareness of the existing and emerging threat landscape, ensuring that data risks and threats facing Beazley are understood and communicated effectively to the CISO and the wider security team. Your role will involve producing concise and accurate reports and executive summaries on Information Security topics, contributing to security reports, and participating in various Beazley Committees.

Responsibilities

  • Work closely with colleagues across the business to promote a strong Information Security culture and ensure compliance with Information Security policies and procedures.
  • Deliver third party security assurance activities globally to ensure suppliers are operating within defined risk appetite.
  • Create and support Information Security risk assessments across the technology stack and at physical locations.
  • Proactively identify security concerns and address escalated or high-risk issues.
  • Provide initial point of contact and triage for Information Security requests from across the business.
  • Support the response to security incidents and vulnerabilities.
  • Support the development and maintenance of the Information Security policy framework in-line with risk appetite, legislation and industry best practices.
  • Develop and maintain cyber policies and standards aligned with ISO 27001, NIST or other agreed frameworks.
  • Provide Information Security advice and guidance.
  • Maintain an awareness of the existing and emerging threat landscape.
  • Support the response to internal and external Information Security enquiries.
  • Deliver BAU activities as directed.
  • Ensure security policies are up to date and used appropriately and effectively across the business, creating training for business areas as required.
  • Remain up to date with the latest security information to support the understanding of Beazley's data landscape.
  • Ensure data risks and threats facing Beazley are understood and articulated to the CISO and wider security team to ensure the timely configuration of existing technologies to get ahead of known and perceived data security.
  • Serve as an SME from the user's perspective. Help develop functional requirements, processes, and automation.
  • Support efforts to increase the efficiency of Information Security activities.
  • Manage relationships that contribute to expanding Information Security.
  • Ensure the CISO and wider security team has deep knowledge around mitigating Information Security activities.
  • Produce concise and accurate reports and executive summaries of Information Security topics and techniques.
  • Feed threat knowledge into the security awareness, training and cultural change programme.
  • Support the development of data management and digital risk monitoring.
  • Undertake continual service improvement activities.
  • Participate and contribute to the various Beazley Committees.
  • Contribute to security reports including keeping track of information security metrics.

Requirements

  • At least five years' work experience within information or IT Security operations.
  • Deep knowledge of third-party assurance, training and awareness cultural change and delivery, risk assessments and creating, updating and embedding security policies and standards into an organization.
  • Experience working with Information Security Governance policy developers.
  • Ability to handle sensitive situations with discretion and employ high ethical standards.
  • Advanced understanding of sensitive data types, their handling requirements and how to respond to their exposure.
  • Good knowledge of the data protection regulations in all territories in which Beazley operates.
  • Excellent written and oral communications skills, with the ability to communicate technical and security-related concepts to a broad range of technical and non-technical staff and management.
  • Strong understanding of IT security principles, standards, and best practices particularly relating to third party assurance, Identity & Access Management and Privileged Access Management, Training and Awareness.
  • Strong problem-solving skills to troubleshoot, understand technically assigned tasks and follow documented procedures.

Nice-to-haves

  • Experience with ISO 27001 and NIST frameworks.
  • Familiarity with emerging security technologies and trends.
  • Certifications in Information Security (e.g., CISSP, CISM, CISA).

Benefits

  • Competitively priced medical, dental and vision insurance.
  • Company paid life, and short- and long-term disability insurance.
  • 401(k) plan with 5% company match and immediate vesting.
  • 22 days annual PTO (full-time, prorated for 1st calendar year of employment), plus paid public holidays.
  • Up to $700 reimbursement towards home office setup.
  • Free in-office lunch, travel reimbursement for travel to office, and monthly lifestyle allowance in support of your wellbeing.
  • The opportunity to save for, and purchase, shares of Beazley stock.
  • Six months fully paid parental leave, regardless of how you come to parenthood.
  • Company paid sabbatical up to 12 weeks after 10 years of continued service.
  • Support with exam/study leave and fees for relevant qualifications related to furthering education.
  • Up to 2.5 days matched paid leave for volunteering at a charity of your choice.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service