Liberty Mutual
Senior Cybersecurity Specialist - Compliance Governance GRC
Liberty Mutual, Indianapolis, IN
Pay Philosophy
The typical starting salary range for this role is determined by a number of factors including skills, experience, education, certifications and location. The full salary range for this role reflects the competitive labor market value for all employees in these positions across the national market and provides an opportunity to progress as employees grow and develop within the role. Some roles at Liberty Mutual have a corresponding compensation plan which may include commission and/or bonus earnings at rates that vary based on multiple factors set forth in the compensation plan for the role.
Description
We deliver our customers peace of mind every day by helping them protect what they value most. Our passion for placing the customer at the center of everything we do is driving a transformational shift at Liberty Mutual. Operating as a tech startup within a Fortune 100 company, we are leading a digital disruption that will redefine how people experience insurance.
This role has a hybrid work schedule (2 days per week in the office) and we will consider candidates based in Boston, MA / Plano, TX / Portsmouth, NH / Indianapolis, IN.
The candidate is expected to work east coast office hours.
Job introduction:
At Liberty Mutual Insurance, we believe progress happens when people feel secure. Our Cybersecurity Governance, Risk, and Compliance (cGRC) organization manages IT compliance and cybersecurity risk supported by an integrated set of products and services that support the lifecycle of our assessment functions. From design and documentation of controls, to testing and assessment of our enterprise and information systems, to consulting on and validation of issues and remediations, we partner with teams across the company to understand their business drivers and optimize security practices in relation to external/regulatory drivers, cybersecurity frameworks, and organizational risk posture.
We are looking to add a Senior Cybersecurity Specialist to our team. This candidate will be part of a diverse team of security professionals who are collectively responsible for improving the overall security posture of the organization. They evaluate and manage risks, test the effectiveness and completeness of security controls, and partner with teams across the company to optimize our security posture while ensuring the business is able to innovate. The associate must continually adapt to stay ahead of a dynamic threat landscape. We are expected to continually learn and grow. This is not a passive career opportunity, but rather one that requires a passion for security and rigor to protect our business.
The candidate will be a member of an agile team that is focused on how to maintain and iterate Cybersecurity policies and standards, evaluate control effectiveness, and comply with emerging laws and regulations at the scale and speed necessary to protect Liberty Mutual data. Under limited supervision and general direction, you will support the assurance programs responsible for evaluating, assisting with delivery, and reporting results of our cybersecurity regulatory and contractual requirements in addition to supporting the issues management service a responsible for treatment plan consulting, remediation effort progress reporting, and closure validation for findings that result from application assessment and control testing conducted by teams.
About the job:
The Ideal Candidate Will have:
Qualifications
About Us
**This position may have in-office requirements depending on candidate location.**
As a purpose-driven organization, Liberty Mutual is committed to fostering an environment where employees from all backgrounds can build long and meaningful careers. Through strong relationships, comprehensive benefits and continuous learning opportunities, we seek to create an environment where employees can succeed, both professionally and personally.
At Liberty Mutual, we believe progress happens when people feel secure. By providing protection for the unexpected and delivering it with care, we help people embrace today and confidently pursue tomorrow.
We are proud to support a diverse, equitable and inclusive workplace, where all 45,000 employees feel a sense of community, belonging and can do their best work. Our seven Employee Resource Groups (ERGs) offer a centralized, open space to bring employees and allies together to connect, learn and engage.
We value your hard work, integrity and commitment to make things better, and we put people first by offering you benefits that support your life and well-being. To learn more about our benefit offerings please visit: https://LMI.co/Benefits
Liberty Mutual is an equal opportunity employer. We will not tolerate discrimination on the basis of race, color, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran's status, pregnancy, genetic information or on any basis prohibited by federal, state or local law.
Fair Chance Notices
The typical starting salary range for this role is determined by a number of factors including skills, experience, education, certifications and location. The full salary range for this role reflects the competitive labor market value for all employees in these positions across the national market and provides an opportunity to progress as employees grow and develop within the role. Some roles at Liberty Mutual have a corresponding compensation plan which may include commission and/or bonus earnings at rates that vary based on multiple factors set forth in the compensation plan for the role.
Description
We deliver our customers peace of mind every day by helping them protect what they value most. Our passion for placing the customer at the center of everything we do is driving a transformational shift at Liberty Mutual. Operating as a tech startup within a Fortune 100 company, we are leading a digital disruption that will redefine how people experience insurance.
This role has a hybrid work schedule (2 days per week in the office) and we will consider candidates based in Boston, MA / Plano, TX / Portsmouth, NH / Indianapolis, IN.
The candidate is expected to work east coast office hours.
Job introduction:
At Liberty Mutual Insurance, we believe progress happens when people feel secure. Our Cybersecurity Governance, Risk, and Compliance (cGRC) organization manages IT compliance and cybersecurity risk supported by an integrated set of products and services that support the lifecycle of our assessment functions. From design and documentation of controls, to testing and assessment of our enterprise and information systems, to consulting on and validation of issues and remediations, we partner with teams across the company to understand their business drivers and optimize security practices in relation to external/regulatory drivers, cybersecurity frameworks, and organizational risk posture.
We are looking to add a Senior Cybersecurity Specialist to our team. This candidate will be part of a diverse team of security professionals who are collectively responsible for improving the overall security posture of the organization. They evaluate and manage risks, test the effectiveness and completeness of security controls, and partner with teams across the company to optimize our security posture while ensuring the business is able to innovate. The associate must continually adapt to stay ahead of a dynamic threat landscape. We are expected to continually learn and grow. This is not a passive career opportunity, but rather one that requires a passion for security and rigor to protect our business.
The candidate will be a member of an agile team that is focused on how to maintain and iterate Cybersecurity policies and standards, evaluate control effectiveness, and comply with emerging laws and regulations at the scale and speed necessary to protect Liberty Mutual data. Under limited supervision and general direction, you will support the assurance programs responsible for evaluating, assisting with delivery, and reporting results of our cybersecurity regulatory and contractual requirements in addition to supporting the issues management service a responsible for treatment plan consulting, remediation effort progress reporting, and closure validation for findings that result from application assessment and control testing conducted by teams.
About the job:
- Evaluates and assesses compliance to regulatory requirements and contractual obligations.
- Partners with stakeholders and customers across the Enterprise to harmonize policy and standard content.
- Proactively identifies and resolves identified issues within controls framework and library.
- Delivers and assists other team members in risk identification and mitigation strategies, remediation strategies, evaluation and harmonization of policy and control content, and evaluation of control design and operating effectiveness.
- Advises on impacts and recommends solutions specific to people, process, and technology changes in the environment.
- Effectively communicates technical and non-technical content to diverse audiences.
The Ideal Candidate Will have:
- Ability to assess technology and processes to determine risks, impacts, and relationships with corresponding authoritative sources and frameworks in order to provide guidance for documentation of appropriate content.
- Knowledge and experience working with; cybersecurity controls, IT auditing, risk and regulatory assessment best practices, cybersecurity and compliance frameworks such as CIS Controls, NIST CSF, ISO 27001, FAIR, COBIT, International Financial Services and Insurance regulatory landscape and willingness to learn about regulatory assessments in the financial services or other regulated industries is a plus.
- Working knowledge and practice of IT security, risk and compliance concepts, processes and able to execute existing patterns.
- Highly collaborative with peers and customers on a technical and professional level and driven to improve service and engagement models.
- Ability to understand and align business drivers in relation to compliance considerations.
- Ability to scope and integrate control frameworks and regulatory requirements into enterprise controls and advise on control design to meet cybersecurity risk and compliance needs.
- Knowledge of Agile practices and experience working with scrum teams.
Qualifications
- Bachelors or Master's degree in technical discipline or equivalent experience.
- Minimum 5+ years of professional experience with focus in security, risk and compliance concepts, processes and able to execute existing patterns.
- Highly capable consultative skills, including the ability to understand and assist in applying customer requirements.
- Knowledge of and experience with cybersecurity control, program, and risk frameworks such as CIS Controls, NIST CSF, ISO 27001, and relevant global frameworks preferred.
- Strong collaboration, prioritization, and adaptability skills required.
- Independent analytical thinking; thinking out of the box.
- Highly collaborative with peers, customers, and stakeholders on a technical and professional level and driven to improve service and engagement models.
- Ability to effectively communicate with all organizational levels.
- Organized and detail oriented.
- Ability to understand, interpret, and align requirements to corresponding IT policies and related content.
- Strong negotiation, facilitation and consensus building skills; strong oral and written communication skills; ability to present to senior contributors and management.
About Us
**This position may have in-office requirements depending on candidate location.**
As a purpose-driven organization, Liberty Mutual is committed to fostering an environment where employees from all backgrounds can build long and meaningful careers. Through strong relationships, comprehensive benefits and continuous learning opportunities, we seek to create an environment where employees can succeed, both professionally and personally.
At Liberty Mutual, we believe progress happens when people feel secure. By providing protection for the unexpected and delivering it with care, we help people embrace today and confidently pursue tomorrow.
We are proud to support a diverse, equitable and inclusive workplace, where all 45,000 employees feel a sense of community, belonging and can do their best work. Our seven Employee Resource Groups (ERGs) offer a centralized, open space to bring employees and allies together to connect, learn and engage.
We value your hard work, integrity and commitment to make things better, and we put people first by offering you benefits that support your life and well-being. To learn more about our benefit offerings please visit: https://LMI.co/Benefits
Liberty Mutual is an equal opportunity employer. We will not tolerate discrimination on the basis of race, color, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran's status, pregnancy, genetic information or on any basis prohibited by federal, state or local law.
Fair Chance Notices
- California
- San Francisco
- Los Angeles
- Philadelphia