Senior Information Security Risk Analyst (GRC focused)

COMPANY OVERVIEW

Global Atlantic Financial Group is a leader in the U.S. life insurance and annuity industry, serving the needs of individuals and institutions.

Global Atlantic is a wholly-owned subsidiary of KKR, a leading global investment firm that offers alternative asset management across multiple strategies and capital markets solutions.

We are looking for a diverse team of talented individuals who reinforce our culture of collaboration and innovation. We are dedicated to the career development of our people because we know they are critical to our long-term success.

Join our team and come grow with us.

Greenhouse is our scheduling tool and we communicate through their systems. At times, your email may block our communications.

Please be sure to check your SPAM so that you do not miss critical information about our process, including scheduling.

POSITION OVERVIEW

Global Atlantic is looking for an enthusiastic professional to join the Information Security Risk Management team as a Senior Security Analyst focusing on Governance, Risk, and Compliance (GRC).

This position will be located in our Boston, MA, Hartford, CT or Des Moines, IA office and will work in-office on a hybrid work structure.

The Senior Security Analyst will work with minimal supervision and contribute to the development, maintenance, and implementation of the overall security program, assessing security risks while considering business system operational needs and regulatory requirements.

This person should be a strong communicator who can work collaboratively with interdisciplinary teams to identify, assess, and address information security risks.

This role will provide you with the opportunity to learn and develop your security career.

JOB FUNCTIONS AND RESPONSIBILITIES :

• Serve as a liaison and expert on security governance, risk, and compliance needs, clearly articulating ideas in a business and user-friendly language
• Support internal and external audits, compliance checks, and assessment processes
• Analyze and recommend improvements to information security processes that align with business goals, security trends and industry best practices
• Conduct detailed analysis of threats and mitigation measures, defining residual risk and risk tolerance
• Review and validate the completeness and accuracy of security metrics and reports
• Determine the impact of changes in the cyber regulatory landscape and ensure the Information Security team stays current with new legal and regulatory data security requirements
• Evaluate security controls to confirm adequate coverage of requirements from policies, standards, and controls.
• Provide support for the information security training and awareness program based on current industry standards
• Serve as an information security liaison on business projects throughout all project phases, including planning, implementation, and go-live support
• Stay abreast of changes to the cyber threat landscape and industry, to help maintain and update information security policies, controls, standards, and processes as appropriate

QUALIFICATIONS :

• 3+ years related experience (e.g., governance, audit, cyber risk management)
• Bachelor’s degree in information systems, cybersecurity, computer science, or equivalent work experience preferred
• Highly organized self-starter with the ability to effectively meet deadlines
• Knowledge of risk management processes, techniques, and tools (e.g., risk qualification and analysis, risk metrics and thresholds, developing management action plans, assessing remediation actions)
• Ability to develop and maintain security standards and process documentation
• Ability to work independently in a timely, organized, methodical manner.
• General understanding of information security risk management strategies and cyber threats to include common attack vectors and methodologies.
• This role is currently not eligible for visa sponsorship now or in the future

SKILLS :

• Working knowledge of common IT security-related regulations and / or standards highly desired (e.g., NYDFS, NIST, CIS, SOC2, ISO 27001 / 2, CCPA, Sarbanes-Oxley, GLBA, FFIEC, BMA)
• Experience with Tableau or other reporting tools a plus.
• Information security industry recognized certification(s) preferred (i.e., Certified Information Systems Auditor CISA, Certified in Risk and Information Systems Control CRISC, Certified Information Security Manager CISM.)

LI-LP1

LI-Hybrid

Various jurisdictions have passed pay transparency laws that require companies provide salary ranges for any positions for which they are accepting applications.

Global Atlantic has offices in Atlanta, Batesville, Bermuda, Boston, Des Moines, Hartford, Indianapolis, and New York City.

The base salary range posted below is inclusive of the lowest cost of living geography to the highest in which we have a Global Atlantic office.

Global Atlantic’s base salary range is determined through an analysis of similar positions in the external labor market. Base pay is just one component of Global Atlantic’s total compensation package for employees and at times we hire outside the boundaries of the salary range.

Other rewards may include annual cash bonuses, long-term incentives (equity), generous benefits (including immediate vesting on employee contributions to a 401(k), as well as a company match on your contributions), and sales incentives.

Actual compensation for all roles will be based upon geographic location, work experience, education, licensure requirements and / or skill level and will be finalized at the time of offer.

Compensation for our more senior positions have a larger component of short-term cash bonus and long-term incentives.

The base salary range for this role is$73,000 $139,000 USD

Global Atlantic reserves the right to modify the qualifications and requirements for this position to accommodate business needs and regulatory changes.

Future adjustments may include obtaining specific licenses or certifications to comply with operational needs and conform to applicable industry-specific regulatory requirements, state and federal laws.

TOTAL REWARDS STATEMENT

Global Atlantic’s total rewards package is reflective of our corporate values, particularly diversity, excellence and innovation, with a focus on inclusion, pay equity, and flexibility.

We are proud to support your personal and professional growth and well-being through programs such as educational assistance, virtual physical therapy, remote / onsite fitness reimbursement, a medical second opinion program, pet insurance, military leave, parental leave, adoption assistance, fertility and family planning coverage.

We strive to foster a culture of total well-being through community outreach and charitable giving programs.

We are active in our communities-

• New York : StreetWise Partners, Covenant House, Partnership for New York City, City Meals on Wheels, Habitat for Humanity, Billion Oyster Project
• Boston : Cradles to Crayons, Boston’s Healthcare for the Homeless, Thompson Island Outward Bound, Rosie’s Place, Catie’s Closet, Project Bread, Rise Against Hunger, Space to Thrive
• Hartford : Junior Achievement, Habitat for Humanity, Oliver’s Pajama, United Way
• Indianapolis : Elevate Indianapolis, Gleaners Food Bank and the Juvenile Diabetes Research Foundation
• Batesville : So Loved Ripley County Foster Closet, Safe Passage Family Shelter, YES Home Juvenile Rehabilitation, Ripley County Community Foundation
• Des Moines : United Way of Central Iowa, Meals from the Heartland, Junior Achievement, Math Motivators, Bidwell Riverside, Orchard Place, Knock and Drop
• Berwyn / Wayne : Habitat for Humanity, Chester County Food Bank, Surrey Services, For Pete’s Sake Respite
• Bermuda : Keep Bermuda Beautiful, Center Against Abuse, Trunk Island Nature Reserve, Bermuda Economic Development Corporation

Social platforms provide an environment to collaborate with others and participate in friendly competitions towards achieving physical, emotional and financial well-being.

Our highly competitive health, retirement, life and disability plans can be tailored to best suit your needs and those of your whole family.

Global Atlantic is committed to creating an inclusive environment where everyone can meaningfully contribute to our success.

We are proud to be an equal opportunity employer and we do not discriminate in employment on any basis that is prohibited by federal, state or local laws.

More than that, we strive to be inclusive of all backgrounds and experiences, which we feel gives us a competitive advantage in the market and within our firm.

All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, disability, age, or veteran status.

Employees who require an accommodation to perform the essential functions of their job will participate in an interactive process which may include providing documentation.

If you are hired and require an accommodation for any protected status, please email .

Please click on the links below to learn more about Global Atlantic.

Our employees are in the office 4 or 5 days a week in Hudson Yards, NY and 3 days a week in all other offices. If you have questions on this policy or the application process, please contact .