Assurant, Inc.

Compensation

Full Description

The Information Security Advisor/Architect position will provide guidance on the design, implementation and development of solutions for all aspects of information security. This role will have a very broad understanding of all aspects of security and technology – including policies, standards and regulatory requirements. The solutions shall be designed to mitigate and/or reduce business exposure to information security risks. Risks may include, but not limited to, cyber security, information security, data loss prevention, intrusion prevention, and the availably of information systems. This role will lead virtual groups and projects. What will be my duties and responsibilities in this job? • Implement solutions that comply with Assurant Information Security Policies and Standards • Lead virtual projects and technical teams on implementing security solutions across the enterprise • Conduct security architecture and risk assessments for internal and external clients and business partners at the request of the senior security leaders and/or Information Security Office • Ensure requirements are aligned to information security policies, standards and align to best practices • Promote and help remediate gaps in alignment with Assurant’s Security Program • Provide support for mergers, acquisitions and divestitures and advise on integration efforts post acquisition • Assess current state and maturity levels of existing security infrastructures, frameworks, methodologies, platforms • Manage and lead security projects and/or initiatives • Provide technical and governance leadership for business security initiatives • Guide information security implementations & policy enforcement throughout Assurant • Present security assessments, risks and posture to technical and leadership teams • Contribute to secure architecture standards, requirements and documents – including policies as directed • Ability to utilize AI strategies and automation as well as understanding and remediation AI related risks What are the requirements needed for this position? • 7+ of experience the field of IT, Information Security, Compliance, Audit or Risk (with a broad range of exposure to all aspects of risk management, application development, information security, business continuity, systems analysis, infrastructure and cloud services) • 5+ years of experience leading teams or projects What other skills/experience would be helpful to have? • Bachelor's degree in Business, Computer Science, Engineering or related discipline or equivalent experience. • Appropriate certification: • Certificated Information Systems Security Professional (CISSP) • Certificated Information Security Manager (CISM) • Certificated Ethical Expert (CEH) • Offensive Security Certified Professional (OSCP) • Technical skills and understanding of IT infrastructure, applications and governance • Excellent written and verbal communications • Understand one (or more) of the following areas: security, compliance, audit, risk management and business continuity. • Experience with operating system internals, networks, applications, databases, cloud technologies and AI solutions. • Expert knowledge of relevant security standards (NIST, ISO) and ability to align them to secure architecture designs • Familiarity with legal, regulatory and industry security requirements and frameworks. Including the following: • International Organization for Standards (ISO/IEC 27001) • Payment Card Industry – Data Security Standards (PCI – DSS) • Systems and Organization Controls 2 (SOC2) & Sarbanes Oxley (SOX) #AssurantProudJR #LI-Remote