Senior Risk Analyst – Technology & Cybersecurity Risk

Overview

The Senior Risk Analyst – Technology & Cybersecurity Risk will be responsible for assessing comprehensive and complex IT risks for the Technology organization. The role will look at people, process and technology to understand key risk areas, work with partners to manage mitigation roadmaps and projects.

This leader, reporting to the Technology & Cyber Risk Officer, will work with key stakeholders including process and control owners in IT and cybersecurity teams. They will also coordinate with other functional areas such as Business Resiliency, Third Party and Compliance.

You are:

• A strong leader who is action-oriented, detail-oriented and quality-focused.
• A leader with good interpersonal skills to engage and motivate.
• An out of the box thinking who can influence teams on IT Risk mitigations
• An individual who understands concepts of risk management, control objectives, control design principles and can apply these concepts to the processes and technologies at hand.
• A “lifelong learner” of new concepts and technical capabilities and can apply control objectives to them.
• An individual with knowledge of control test design, test execution and sampling methodology.
• An individual who can Identify gaps in the risk processes and take a risk-based approach on coverage.
• An individual with broad knowledge of technology and technical concepts
• A leader who can coordinate with stakeholders including middle management in IT, audit and external auditors.
• Manage budget and resources. Identify improvement opportunities and execute them – delivering on-time, on-scope and on-budget.

You have:

• 5+ years experience in the Technology and Cybersecurity risk management space
• A background in IT risk or IT audit
• A CISA, CISM or other relevant certifications (a plus)
• A college degree or significant coursework in technology, science/math, audit or technical/analytical areas
• Strong understanding of technologies (databases, operating systems (Windows, Unix, Mainframe), applications, cloud) and associated controls
• An understanding and application of frameworks including NIST Cybersecurity Framework, ISO 27001-4, etc.
• Experience in working with auditors and regulators
• The ability to quickly learn and apply control concepts to new technologies
• The ability to effectively convey status, issues, exceptions and risks to management (both oral and written)
• Experience operating in a shared service across multi-line organization
• Experience working in a model with 3-lines of defense
• Experience in executing projects on-time, on-scope, on-budget
• Ability to build strong peer relationships both within and outside the organization.

You will:

• Analyze technology risks to the organization and assess gaps.
• Work with stakeholders to understand potential solutions and define roadmaps to execute on the mitigations.
• Closely work with stakeholders to understand limitations and roadblocks; and take a risk-based approach to mitigation.
• Provide guidance/consulting on effectiveness on control design.
• Identify needs for new policies, processes, controls standards based on findings.
• Engage as appropriate in the SDLC to help design new controls

Location

• Two days a week at a Guardian Location in New York, NY, Holmdel, NJ or Bethlehem, PA

Salary Range

The salary range reflected above is a good faith estimate of base pay for the primary location of the position. The salary for this position ultimately will be determined based on the education, experience, knowledge, and abilities of the successful candidate. In addition to salary, this role may also be eligible for annual, sales, or other incentive compensation.

Our Promise

At Guardian, you’ll have the support and flexibility to achieve your professional and personal goals.  Through skill-building, leadership development and philanthropic opportunities, we provide opportunities to build communities and grow your career, surrounded by diverse colleagues with high ethical standards.

Inspire Well-Being

As part of Guardian’s Purpose – to inspire well-being – we are committed to offering contemporary, supportive, flexible, and inclusive benefits and resources to our colleagues.

Health Care

• Choice of [high deductible/copay] medical plans* with prescription drugs, including coverage for fertility and transgender inclusive benefits

• Dental plan

• Vision plan

• Health care accounts – flexible spending, health reimbursement, and health savings accounts

• Critical illness insurance

Life and Disability Insurance

• Company-paid Life and Disability insurance plus voluntary supplemental coverage

• Accident insurance

Retirement and Financial

• 401(k) retirement plan with a company match, plus an annual age/service-based Company contribution and an annual profit-sharing contribution, if applicable

• Complimentary 1:1 financial guidance with a licensed Fidelity representative

Time Off and Remote Work

• Flexible work arrangements (part in-person/part remote)

• Unlimited paid time off for most roles plus time off for volunteering, jury duty, voting, and bereavement

• Personal holidays for colleagues to use in recognition of religious, cultural, or civic days

• Paid parental leave and paid family and medical leave policies

Emotional Well-being and Work-Life

• Emotional well-being, mental health, and work/life resources powered by Spring Health

• Wellness programs, including fitness program and equipment reimbursement

• Child, adult, and elder back-up care support through Bright Horizons

• Adoption assistance

• College planning

• Tuition reimbursement

• Student loan assistance

• Commuter benefits in select metropolitan areas

Equity & Inclusion

Opportunities to build inclusive and meaningful connections through involvement in colleague-led affinity groups:

• Employee Resource Groups:

• Colleague Connection Committees

• Community Involvement Committees

A culture that encourages colleagues to bring their authentic selves to work

• Voluntary self-ID

• Pronunciation and phonetic spelling of names

Benefits apply to full-time eligible employees. Interns are not eligible for most Company benefits.

Equal Employment Opportunity

Guardian is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age, race, color, creed, religion, sex, affectional or sexual orientation, national origin, ancestry, marital status, disability, military or veteran status, or any other classification protected by applicable law.

Accommodations

Guardian is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. Guardian also provides reasonable accommodations to qualified job applicants (and employees) to accommodate the individual's known limitations related to pregnancy, childbirth, or related medical conditions, unless doing so would create an undue hardship. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact applicant_accommodation@glic.com.

Current Guardian Colleagues: Please apply through the internal Jobs Hub in Workday.