Berkley
IT Regulatory Compliance and Governance Specialist
Berkley, Phila, Pennsylvania, United States, 19117
Company Details:
Company URL: https://www.berkleytechnologyservices.com/Berkley Technology Services (BTS) is the dynamic technology solution for W. R. Berkley Corporation, a Fortune 500 Commercial Lines Insurance Company. With key locations in Urbandale, IA and Wilmington, DE, BTS provides innovative and customer-focused IT solutions to the majority of WRBCs 60+ operating units across the globe. BTSs wide reach ensures that ideas and opinions are considered at every level of the organization to guarantee we find the best solutions possible.Driven by a commitment to collaboration, BTS acts as consultants to our customers and Operating Units by providing comprehensive solutions that not only address the challenge at hand, but proactively plan for the
Whats Next
in our industry and beyond.With a culture centered on innovation and entrepreneurial spirit, BTS stands as a community of technology leaders with eyes toward the future -- leaders who truly care about growing not only their team members, but themselves, and take pride in their employees who shine. BTS offers endless ways to get involved and have the chance to grow your career into a wide range of roles you'd never known existed. Come join us as we push forward into the future of industry leading technological solutions.Berkley Technology Services: Right Team, Right Technology, Simple and Secure.Responsibilities:The
Senior IT GRC Analyst
reports to the Director of IT Regulatory and Compliance and may reside in either Urbandale, Iowa, Wilmington, Delaware or remote would be available for the right candidate. This is an exciting role for a dynamic IT Governance, Risk and Compliance leader. This role will own ensure our IT Compliance and Cyber Security Risk Assessments continue to align with our IT Regulatory, Data Privacy and Information Security Standards. In addition, this individual will act as the program led for our annual NY DFS and third-party assessment processes. This role also ensure our IT Security Standards and our GRC tools and Compliance frameworks are kept up to date.Liaison with Regional Information Security Officers (RISO) and Corporate Compliance to keep abreast of new Privacy and Regulatory changes and help implement them into the overall IT GRC program.Maintain IT operational and security controls, policies, procedures, and standards compliant with organizational and regulatory requirements.Stay up to date with changes in regulatory requirements and industry best practices related to IT compliance.Conduct regular assessments and control testing to evaluate the design and effectiveness of IT Processes for non-compliance with IT SOX, NY-DFS, and International Cyber Security and Privacy regulations.Perform IT Risk Assessments using NIST, CIS 18 and Fair Methodology.Help create GRC metrics and reports for Senior Leadership.Qualifications:
Industry certifications (e.g., CISA, CISSP, CRISC, PMP, SCM) are a plus.Proven track record of at least 5-8 years of progressive experience in IT Audit, Information Security and/or GRC, with core responsibilities focused on IT Governance, IT Controls testing, Finding remediation and IT Risk Assessments.Familiarity with compliance frameworks such as NIST, ISO 27001, SOC2, and regulatory requirements (e.g., NYDFS, CCPA/GDPR, SOX).Hands on experience with GRC products such as Archer, AuditBoard, OneTrust and ServiceNow etc...Familiarity with Unified Control Framework and experience in maintaining and updating frameworks and/or control assessments processes in GRC tools.Proficiency with presentation tools such as PowerPoint and data analysis tools (e.g., Excel, Power BI, Tableau) and experience in translating complex data into actionable insights, including automated monitoring.Demonstrated ability to thrive in a fast-paced, dynamic environment, managing competing priorities and driving results through collaboration and teamwork.Bachelor's degree in Information Security, Business Administration, Computer Science, or a related field. Advanced degree (e.g., MBA, MS) preferredBehavioral Core CompetenciesExcellent written and verbal communication skillsAbility to work collaboratively with cross-functional teams.Detail-oriented with strong analytical and problem-solving skills.Leadership and communication skills, with the ability to inspire and influence cross-functional teams and senior stakeholders.The Company is an equal employment opportunity employer.
Company URL: https://www.berkleytechnologyservices.com/Berkley Technology Services (BTS) is the dynamic technology solution for W. R. Berkley Corporation, a Fortune 500 Commercial Lines Insurance Company. With key locations in Urbandale, IA and Wilmington, DE, BTS provides innovative and customer-focused IT solutions to the majority of WRBCs 60+ operating units across the globe. BTSs wide reach ensures that ideas and opinions are considered at every level of the organization to guarantee we find the best solutions possible.Driven by a commitment to collaboration, BTS acts as consultants to our customers and Operating Units by providing comprehensive solutions that not only address the challenge at hand, but proactively plan for the
Whats Next
in our industry and beyond.With a culture centered on innovation and entrepreneurial spirit, BTS stands as a community of technology leaders with eyes toward the future -- leaders who truly care about growing not only their team members, but themselves, and take pride in their employees who shine. BTS offers endless ways to get involved and have the chance to grow your career into a wide range of roles you'd never known existed. Come join us as we push forward into the future of industry leading technological solutions.Berkley Technology Services: Right Team, Right Technology, Simple and Secure.Responsibilities:The
Senior IT GRC Analyst
reports to the Director of IT Regulatory and Compliance and may reside in either Urbandale, Iowa, Wilmington, Delaware or remote would be available for the right candidate. This is an exciting role for a dynamic IT Governance, Risk and Compliance leader. This role will own ensure our IT Compliance and Cyber Security Risk Assessments continue to align with our IT Regulatory, Data Privacy and Information Security Standards. In addition, this individual will act as the program led for our annual NY DFS and third-party assessment processes. This role also ensure our IT Security Standards and our GRC tools and Compliance frameworks are kept up to date.Liaison with Regional Information Security Officers (RISO) and Corporate Compliance to keep abreast of new Privacy and Regulatory changes and help implement them into the overall IT GRC program.Maintain IT operational and security controls, policies, procedures, and standards compliant with organizational and regulatory requirements.Stay up to date with changes in regulatory requirements and industry best practices related to IT compliance.Conduct regular assessments and control testing to evaluate the design and effectiveness of IT Processes for non-compliance with IT SOX, NY-DFS, and International Cyber Security and Privacy regulations.Perform IT Risk Assessments using NIST, CIS 18 and Fair Methodology.Help create GRC metrics and reports for Senior Leadership.Qualifications:
Industry certifications (e.g., CISA, CISSP, CRISC, PMP, SCM) are a plus.Proven track record of at least 5-8 years of progressive experience in IT Audit, Information Security and/or GRC, with core responsibilities focused on IT Governance, IT Controls testing, Finding remediation and IT Risk Assessments.Familiarity with compliance frameworks such as NIST, ISO 27001, SOC2, and regulatory requirements (e.g., NYDFS, CCPA/GDPR, SOX).Hands on experience with GRC products such as Archer, AuditBoard, OneTrust and ServiceNow etc...Familiarity with Unified Control Framework and experience in maintaining and updating frameworks and/or control assessments processes in GRC tools.Proficiency with presentation tools such as PowerPoint and data analysis tools (e.g., Excel, Power BI, Tableau) and experience in translating complex data into actionable insights, including automated monitoring.Demonstrated ability to thrive in a fast-paced, dynamic environment, managing competing priorities and driving results through collaboration and teamwork.Bachelor's degree in Information Security, Business Administration, Computer Science, or a related field. Advanced degree (e.g., MBA, MS) preferredBehavioral Core CompetenciesExcellent written and verbal communication skillsAbility to work collaboratively with cross-functional teams.Detail-oriented with strong analytical and problem-solving skills.Leadership and communication skills, with the ability to inspire and influence cross-functional teams and senior stakeholders.The Company is an equal employment opportunity employer.