Primerica
Information Security Compliance Administrator
Primerica, Duluth, Georgia, United States, 30155
Join Our Team
In 2022, the Atlanta Journal-Constitution named Primerica one of the best places to work for the ninth consecutive year. Also in 2022, Primerica was named one of the Best Employers for Diversity by Forbes for the second consecutive year. Forbes also named Primerica as one of America's best Insurance companies for 2022. Primerica ranks 6th among 25 companies included in the Term Life Insurance category. Over the past seven years Primerica has consistently been voted Best Employer by Gwinnett Magazine in its special "Best of Gwinnett" winner editions. Primerica is a great place to work! Join our team to experience what it's like to work at "one of the best places to work in the metro Atlanta".
About this Position
The Information Security Compliance Administrator is responsible for maintaining compliance with Information Security Risk Assessment activities. Including security testing as well as third party assessments in accordance with the compliance review schedule and as new development and/or newly introduced applications, ips, and vendors are identified which require security assessment.
Hybrid Role
Salary: $70K
Responsibilities & Qualifications
The Information Security Compliance Administrator position duties include:Coordinates application security test scoping calls with testing vendors, business leaders and vendors.Expense approval paperwork for test engagements and credentials required for testers to execute tests, test results distribution and recordkeeping, and meetings between Primerica business leaders, programmers, testers and vendors to review and resolve identified vulnerabilities.Ensures that Business Information Security Officers in the business units (BISOs) successfully and timely complete the remediation plan or exception request process for outstanding issues identified through security tests or third party assessments.Supports the administrator of the Governance, Risk and Compliance system, responding to requests for reports for users, completing access control requests for submission to ISA, and acquiring a functional knowledge of the GRC tool.Closely monitor reporting from the GRC system, working with minimal supervision, to ensure and maintain compliance with policy regarding compliance requirements for information security tests and assessments.ESSENTIAL SKILLS
Competency in all Information Security and Vulnerability Management policies and processes.Use of GRC system for accurate recordkeeping and tracking of activities and results.Strong organizational, verbal and communication skillsStrong interpersonal skills with the ability to work well with peers and management, able to manage deadlines while interacting with diverse users across the company and in the vendor community.EXPERIENCE
College degree in Information Technology (preferred)5 years of work experience in business processes requiring deadline and compliance management, attention to detail and accuracy, and documentation fulfillmentExperience and capability to fulfill deliverables involving deadlines, documentation, with high degree of accuracy.RESPONSIBILITIES
Performs technical duties:Performs background analysis through research, interviews / meetings with business areas to effectively identify in scope applications and vendors subject to the information security compliance requirements for vulnerability threat management, understand desired results and resolve challengesDocument all relevant details associated with testing and assessment engagements according to established standards; develops access control chart, vulnerability assessment preparatory questionnaire, collects application compliance questionnaire, properly and timely records data in the GRC system regarding these activities, and uses Microsoft Word, Excel and other Microsoft products as needed to support these activitiesDevelops reporting as needed to support the CISO, CIO, and others in the fulfillment of information management regarding information security complianceProject Responsibilities
Participates in security testing and assessment engagement initiation, planning, and coordination with other IT teams and resources, business leaders, and vendorsCoordinates with business teams on appropriate work efforts for their areasCreates and/or updates system documentation as appropriate based on project assignmentServes as liaison between security testing vendors and developers, business leaders, vendor partners, and senior managementAdheres to and complies with all applicable Technology Management Policies and supports education of these policies across the company#Dice
#LI-SH1
FLSA status:This position is exempt (not eligible for overtime pay):Yes
Our Benefits:
Day one health, dental, and vision insurance401(k) Plan with competitive employer matchVacation, sick, holiday and volunteer time offLife and disability insuranceFlexible Spending Account & Health Savings AccountProfessional developmentTuition reimbursementCompany-sponsored social and philanthropy events
It has been and will continue to be the policy of Primerica, Inc., and its subsidiaries to be an Equal Opportunity Employer. We provide equal opportunity to all qualified individuals regardless of race, sex, color, religious creed, religion, national origin, citizenship status, age, disability, pregnancy, ancestry, military service or veteran status, genetic or carrier status, marital status, sexual orientation, or any classification protected by applicable federal, state or local laws.
At Primerica, we believe that diversity and inclusion are critical to our future and our mission - creating a foundation for a creative workplace that leads to innovation, growth, and profitability. Through a variety of programs and initiatives, we invest in each employee, seeking to ensure that our people are not only respected as individuals, but also truly valued for their unique perspectives.
In 2022, the Atlanta Journal-Constitution named Primerica one of the best places to work for the ninth consecutive year. Also in 2022, Primerica was named one of the Best Employers for Diversity by Forbes for the second consecutive year. Forbes also named Primerica as one of America's best Insurance companies for 2022. Primerica ranks 6th among 25 companies included in the Term Life Insurance category. Over the past seven years Primerica has consistently been voted Best Employer by Gwinnett Magazine in its special "Best of Gwinnett" winner editions. Primerica is a great place to work! Join our team to experience what it's like to work at "one of the best places to work in the metro Atlanta".
About this Position
The Information Security Compliance Administrator is responsible for maintaining compliance with Information Security Risk Assessment activities. Including security testing as well as third party assessments in accordance with the compliance review schedule and as new development and/or newly introduced applications, ips, and vendors are identified which require security assessment.
Hybrid Role
Salary: $70K
Responsibilities & Qualifications
The Information Security Compliance Administrator position duties include:Coordinates application security test scoping calls with testing vendors, business leaders and vendors.Expense approval paperwork for test engagements and credentials required for testers to execute tests, test results distribution and recordkeeping, and meetings between Primerica business leaders, programmers, testers and vendors to review and resolve identified vulnerabilities.Ensures that Business Information Security Officers in the business units (BISOs) successfully and timely complete the remediation plan or exception request process for outstanding issues identified through security tests or third party assessments.Supports the administrator of the Governance, Risk and Compliance system, responding to requests for reports for users, completing access control requests for submission to ISA, and acquiring a functional knowledge of the GRC tool.Closely monitor reporting from the GRC system, working with minimal supervision, to ensure and maintain compliance with policy regarding compliance requirements for information security tests and assessments.ESSENTIAL SKILLS
Competency in all Information Security and Vulnerability Management policies and processes.Use of GRC system for accurate recordkeeping and tracking of activities and results.Strong organizational, verbal and communication skillsStrong interpersonal skills with the ability to work well with peers and management, able to manage deadlines while interacting with diverse users across the company and in the vendor community.EXPERIENCE
College degree in Information Technology (preferred)5 years of work experience in business processes requiring deadline and compliance management, attention to detail and accuracy, and documentation fulfillmentExperience and capability to fulfill deliverables involving deadlines, documentation, with high degree of accuracy.RESPONSIBILITIES
Performs technical duties:Performs background analysis through research, interviews / meetings with business areas to effectively identify in scope applications and vendors subject to the information security compliance requirements for vulnerability threat management, understand desired results and resolve challengesDocument all relevant details associated with testing and assessment engagements according to established standards; develops access control chart, vulnerability assessment preparatory questionnaire, collects application compliance questionnaire, properly and timely records data in the GRC system regarding these activities, and uses Microsoft Word, Excel and other Microsoft products as needed to support these activitiesDevelops reporting as needed to support the CISO, CIO, and others in the fulfillment of information management regarding information security complianceProject Responsibilities
Participates in security testing and assessment engagement initiation, planning, and coordination with other IT teams and resources, business leaders, and vendorsCoordinates with business teams on appropriate work efforts for their areasCreates and/or updates system documentation as appropriate based on project assignmentServes as liaison between security testing vendors and developers, business leaders, vendor partners, and senior managementAdheres to and complies with all applicable Technology Management Policies and supports education of these policies across the company#Dice
#LI-SH1
FLSA status:This position is exempt (not eligible for overtime pay):Yes
Our Benefits:
Day one health, dental, and vision insurance401(k) Plan with competitive employer matchVacation, sick, holiday and volunteer time offLife and disability insuranceFlexible Spending Account & Health Savings AccountProfessional developmentTuition reimbursementCompany-sponsored social and philanthropy events
It has been and will continue to be the policy of Primerica, Inc., and its subsidiaries to be an Equal Opportunity Employer. We provide equal opportunity to all qualified individuals regardless of race, sex, color, religious creed, religion, national origin, citizenship status, age, disability, pregnancy, ancestry, military service or veteran status, genetic or carrier status, marital status, sexual orientation, or any classification protected by applicable federal, state or local laws.
At Primerica, we believe that diversity and inclusion are critical to our future and our mission - creating a foundation for a creative workplace that leads to innovation, growth, and profitability. Through a variety of programs and initiatives, we invest in each employee, seeking to ensure that our people are not only respected as individuals, but also truly valued for their unique perspectives.