Senior Associate - Technology Risk Assurance

APPLY NOW »

Date: Jul 29, 2022

Location: New York, NY, US

Company: New York Life Insurance Co

 

 

When you join New York Life, you’re joining a company that values career development, collaboration, innovation, and inclusiveness. We want employees to feel proud about being part of a company that is committed to doing the right thing. You’ll have the opportunity to grow your career while developing personally and professionally through various resources and programs. New York Life is a relationship-based company and appreciates how both virtual and in-person interactions support our culture.

 

The Technology Risk Assurance Senior Associate is part of the second line of defense Technology Risk team. The team is responsible for providing governance and oversight of the Technology Risk and Cybersecurity domains and performing proactive risk assessments of the design and implementation of technology processes and controls. This individual will be responsible for supporting the existing IT Risk and Control Self Assessments (RCSA) and the Cybersecurity Oversight program, which includes performing quality assurance reviews, assessments of program outcomes and deliverables, risks and controls, and validating whether controls implemented by Technology teams adequately address technology and cybersecurity risks.

 

Responsibilities:

  • Work closely with 1st Line Technology partners and provide governance and oversight on the annual IT RCSA and various Technology and Cybersecurity assurance programs
  • Perform evidence-based assessments of applications, infrastructure, and processes; analyze and report assessment results
  • Validate cybersecurity program deliverables and implementation of controls
  • Perform assessments on entity level risks and controls and report on issues identified
  • Provide recommendations to continuously enhance cybersecurity program and to reduce technology risk for the organization
  • Support maintenance of risk and control frameworks

 

Qualifications:

  • 6+ years of IT and cybersecurity risk assessment experience, including:
  • Prior risk management, audit and/or consulting experience
  • Prior experience documenting business, technology, and cybersecurity process walkthroughs, designing and executing control evaluations, analyzing results and providing recommendations
  • Prior experience with maintaining risk frameworks, with an understanding of key industry control frameworks (NIST Cyber Security Framework, Cloud Security Alliance (CSA), COSO, COBIT, ISO 27000, etc.)
  • Prior experience in assessing cybersecurity risks, controls, and high-level processes amongst various domains (e.g., vulnerability management, application security, identity and access management, cybersecurity operations, network security, etc.)
  • Ability to think strategically and apply problem solving skills
  • Strong communication, presentation, and project management skills
  • Deliver high quality results within expected timelines
  • Team player who is collaborative but can lead initiatives

 

Preferred Qualifications:

  • CISSP, CISM, CRISC or CISA

 

Recognized as one of Fortune’s World’s Most Admired Companies, New York Life is committed to improving local communities through a culture of employee giving and volunteerism, supported by the Foundation. We're proud that due to our mutuality, we operate in the best interests of our policy owners. We invite you to bring your talents to New York Life, so we can continue to help families and businesses “Be Good At Life.” To learn more, please visit LinkedIn, our Newsroom and the Careers page of www.NewYorkLife.com.

Job Requisition ID: 86952

 

 

 


Nearest Major Market: Manhattan
Nearest Secondary Market: New York City

Job Segment: Cyber Security, Social Media, Quality Assurance, QA, Project Manager, Security, Marketing, Quality, Technology