|Company||IAT Insurance Group|
|Preferred GIAC Certifications||GSEC, GSNA, GCCC|
|Contact Name||Manny Landron|
This is a great opportunity for an experienced technology auditor or technology risk analyst with a strong desire to gain significant exposure to cybersecurity operations and activities. The position will be an individual contributor fully integrated with the cybersecurity operations team.
Coordinate cybersecurity risk and compliance assessments.
Actively manage and help prioritize the enterprise cybersecurity risk register.
Maintain the cybersecurity awareness training program.
Maintain the third party risk assessment program.
Maintain the access management process and perform periodic access reviews.
Maintain incident response plans and playbooks and coordinate table top exercises.
Participate in and, potentially lead, cybersecurity and privacy incident management and response efforts.
Perform routine and periodic technical and non-technical reviews to ensure compliance with enterprise cybersecurity policy, regulatory requirements, and industry accepted standards.
Evaluate and recommend primary or compensating controls to mitigate technology, cybersecurity and privacy risk.
Evaluate audit evidence to determine its sufficiency and reliability to meet control objectives and manage evidence repository.
Assist with the requirements analysis and design effective and efficient technology processes, standards, procedures and controls.
Collaborate cross functionally across corporate boundaries to implement policy, procedures, and standards and educate the workforce.
Assist with measurement and reporting of cybersecurity related metrics.
Bachelor’s degree in cybersecurity, information systems, business administration or related field.
CISA or CISSP designation
Experiential understanding of compliance frameworks and security control objectives.
5 – 7 years of SOX, PCI-DSS and/or SOC 2 (Security and Availability) implementation or audit experience.
Strong problem solving, analytical skills, organizational, and project management skills.
Strong interpersonal and written communication skills
Self-motivation and the ability to work under minimal supervision
Willingness to pursue training and certification
To qualify, all applicants must be authorized to work in the United States and must not require, now or in the future, VISA sponsorship for employment purposes.
Bachelor’s or graduate degree in cybersecurity, information systems/technology or related degree.
Cybersecurity framework implementation or audit experience, i.e. SOC 2, NIST RMF, CIS-CSC.
GSNA, GCCC, or GSEC designation(s).
We are proud to be an EEO/AA employer M/F/D/V. We maintain a drug-free workplace and perform pre-employment substance abuse testing. We participate in E-Verify.
To be formally considered one must apply online through the IAT Career Site
Steve Morley | Senior Recruiter
IAT Insurance Group (“IAT”) is a privately held global insurance Company, headquartered in Raleigh, North Carolina, providing a wide range of property and casualty insurance products meeting the needs of individuals and businesses. IAT consists of six operating divisions, each sharing the same quality standards, commitment to service and innovation, and an overall mission of excellence. As an organization, we leverage our experienced leadership, sound analytics, proven operating platforms and extensive risk capabilities across the entire enterprise to deliver specialized, sustainable solutions for our customers.
With thirteen office locations, IAT has a large footprint throughout the United States. As a privately owned organization, consisting of more than six hundred employees, we are able to act strategically within an ever-changing marketplace. We are large enough to make a difference in the industry but small enough to be agile and nimble. Our focus includes meeting customer needs and fostering an exceptional agent and broker network to serve clients.