IT Security and Controls

About Kuvare

Kuvare is on a mission to serve hardworking consumers overwhelmed by the complexities of retirement and is built from the ground up to do so. Our unified financial hub protects the retirement of everyday Americans and the distributors, carriers and investors that serve them. We create life insurance and annuity products that protect consumers’ retirements, and are simplified for distributor partners and financial professionals to sell and service.

Kuvare family of companies:

Retail Annuity and Life Insurance Solutions:

- United Life Insurance Company

- Guaranty Income Life Insurance Company

- Lincoln Benefit Life

Institutional Insurance:

- Kuvare Life Re

Bespoke Insurance Solutions:

- Ignite Partners

About the role

The IT Security and Controls Analyst is responsible for assessing information risk and facilitates remediation of identified vulnerabilities for IT security and risk across the enterprise. The analyst reports on findings and recommendations for corrective action. The position is also responsible for providing information for all IT audits, including IT risk assessments and regulatory compliance. Performs vulnerability assessments utilizing IT security tools and methodologies. Performs assessments of the IT security/risk posture within the IT network, systems, and software applications, in addition to assessments within the Vendor Management Program. Identifies opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios. Facilitates and monitors performance of risk remediation tasks, changes related to risk mitigation & reports on findings.

What you'll do

• Reviews existing documentation of IT controls, business processes, policies, procedures, and management reports for risk, effectiveness and sustainability  
• Participates in internal IT audits to measure risk, control strengths, weaknesses, and compliance. 
• Provides responses for all external IT audits, as requested. 
• Monitors computer networks for security issues. 
• Investigates security breaches and other cybersecurity incidents. 
• Works with Infrastructure to install and configure security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs. 
• Stay up to date on information technology trends and security standards. 
• Research security enhancements and make recommendations to management.

Qualifications

• Bachelor’s degree in computer science or similar. 
• Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) designations preferred. 
• Five years of information security experience. 
• At least 3 years of internal audit experience or prior work experience with a Big 4 consulting/auditing firm (PWC, Deloitte, EY, or KPMG). 
• Solid experience in testing, evaluating, and documenting controls for compliance. 
• Understanding of firewalls, SIEM, antivirus, IPS\IDS. 
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.