Security Risk Analyst

What part will you play? If you’re looking for a place where you can make a meaningful difference, you’ve found it. The work we do at Markel gives people the confidence to move forward and seize opportunities, and you’ll find your fit amongst our global community of optimists and problem-solvers. We’re always pushing each other to go further because we believe that when we realize our potential, we can help others reach theirs. 

Join us and play your part in something special!

The Security Compliance Analyst works to support the Security Program to ensure that adequate and effective processes and controls are followed and aligned to deliver compliance with security policies, standards, and regulatory requirements. This role performs security awareness training, develops and assesses security controls across the organization. This role communicates compliance requirements related to new and existing installed technology, and will translate compliance requirements into functional specifications. The Security Compliance Analyst will document and analyze risk for impact, and remediate issues. The analyst will work to understand industry best practices and how they can be applied at Markel.

Job Responsibilities

• Identify and communicate internal and external developments that may create or impact   potential security risks to Markel. 
• Identify vulnerabilities or weaknesses in Markel’s systems.
• Ensure security controls are adequate to protect sensitive information and systems to reduce overall risk.
• Support the development and maintenance of the Markel security risk management framework and its associated controls and reporting.
• Identify, evaluate, and mitigate security risks. 
• Evaluate security risk by executing against the established methodology for quantifying security risk.
• Review security risk management documentation to ensure clear linkages between risk drivers, mitigation activities and metrics.
• Perform maintenance of security risk mitigation reports to ensure that remediation steps are effective. 
• Develop and implement methodologies for the assessment of security risks throughout the organization, and reporting and monitoring security risk mitigation progress.
• Create, update and modify monthly reporting mechanisms (reports, dashboards, etc.) to communicate status of security risk mitigation efforts.
• Monitor and analyze the security risk management activities of the corporation.
• Track the implementation of mitigation activities of security risks. 
• Keep all technical skills up to date and share information learned about data protection to peers.

Education

• Bachelor’s degree, preferably in Information Security or Computer Science, or 4 years relevant work experience

Certification

• ITIL preferred
• Certified in Risk and Information Systems Control (CRISC) preferred
• Certified Information Systems Security Professional (CISSP) preferred

Work Experience/Skill Set

• Minimum of two years combined IT, risk management, security compliance and information security work experience.
• Experience with vulnerability management tools.
• Experience with IT process, risk and control frameworks, such as NIST, COBIT and ISO is preferred.
• Critical thinking.
• Cloud computing.
• Attention to detail.
• Good Microsoft Office knowledge.
• Good communication, organization, documentation and presentation skills.

US Work Authorization

• US Work Authorization required. Markel does not provide visa sponsorship for this position, now or in the future.

Who we are: 

Markel Group (NYSE – MKL) a fortune 500 company with over 60 offices in 20+ countries, is a holding company for insurance, reinsurance, specialist advisory and investment operations around the world. 

 

We’re all about people | We win together | We strive for better 

 

We enjoy the everyday | We think further 

 

What’s in it for you: 

In keeping with the values of the Markel Style, we strive to support our employees in living their lives to the fullest at home and at work.  

• We offer competitive benefit programs that help meet our diverse and changing environment as well as support our employees’ needs at all stages of life.  

• All full-time employees have the option to select from multiple health, dental and vision insurance plan options and optional life, disability, and AD&D insurance.  

• We also offer a 401(k) with employer match contributions, an Employee Stock Purchase Plan, PTO, corporate holidays and floating holidays, parental leave.   

• Markel offers hybrid working schedules of 3 days in the office and 2 days remote.    

 

Are you ready to play your part? 

Choose ‘Apply Now’ to fill out our short application, so that we can find out more about you. 

 

Caution: Employment scams 

Markel is aware of employment-related scams where scammers will impersonate recruiters by sending fake job offers to those actively seeking employment in order to steal personal information. Frequently, the scammer will reach out to individuals who have posted their resume online. These "job offers" include convincing offer letters and frequently ask for confidential personal information. Therefore, for your safety, please note that: 

• All legitimate job postings with Markel will be posted on Markel Careers. No other URL should be trusted for job postings.

• All legitimate communications with Markel recruiters will come from Markel.com email addresses. 

 

We would also ask that you please report any job employment scams related to Markel to rarecruiting@markel.com. 

 

Markel is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of any protected characteristic. This includes race; color; sex; religion; creed; national origin or place of birth; ancestry; age; disability; affectional or sexual orientation; gender expression or identity; genetic information, sickle cell trait, or atypical hereditary cellular or blood trait; refusal to submit to genetic tests or make genetic test results available; medical condition; citizenship status; pregnancy, childbirth, or related medical conditions; marital status, civil union status, domestic partnership status, familial status, or family responsibilities; military or veteran status, including unfavorable discharge from military service; personal appearance, height, or weight; matriculation or political affiliation; expunged juvenile records; arrest and court records where prohibited by applicable law; status as a victim of domestic or sexual violence; public assistance status; order of protection status; status as a smoker or nonsmoker; membership or activity in local commissions; the use or nonuse of lawful products off employer premises during non-work hours; declining to attend meetings or participate in communications about religious or political matters; or any other classification protected by applicable law.  

  

Should you require any accommodation through the application process, please send an e-mail to the rarecruiting@markel.com.    

No agencies please.