Job Family Summary

Analyzes security, threats, risks and exposures, determines the causes of security deviations and suggests procedures to halt future incidents and improve security. Collaborates cross functionally in business and system requirements analysis. Develops techniques and procedures for conducting and reporting IS and cyber security analysis, risk assessments, and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.

Compensation Minimum:$78,400 / Year

Compensation Maximum:$125,600 / Year

Compensation may vary based on the job level and your geographic work location.

Job Level Summary

• Requires in-depth conceptual and practical knowledge in own job discipline and basic knowledge of related job disciplines
• Solves complex problems
• Works independently, receives minimal guidance
• May lead projects or project steps within a broader project or may have accountability for on-going activities or objectives
• Acts as a resource for colleagues with less experience

Primary Accountabilities

• Conduct and peer review security and risk related analysis activities in accordance with security analysis standards
• Contribute to standards for data gathering, calculations, reporting, and quality of analysis activities
• Oversee analysis processes and standards for business and system requirements and capabilities (e.g., access controls) including data gathering, calculations, and formal reporting
• Build strong relationships with Peers across functions through collaborative analysis and reporting exercises
• Identify, assess, remediate, and track information technology risks
• Plan and execute compliance audits, including risk assessment, audit scope, identifying and testing processes/controls and developing specific recommendations
• Coordinate analysis of existing issues and incidents, along with actions, to ensure they are being managed in line with Risk Management Strategy and Standards
• Monitor any legal regulator non-compliance as part of the divisional risk management process and develop recommendations for remediation
• Coordinate mechanisms to improve documentation, track progress, coordinate all improvement efforts, and monitor process improvement effectiveness
• Guide and advise IT stakeholders to ensure that Issue and Incident Management processes are followed appropriately

Specialized Knowledge & Skills Requirements

• Demonstrated experience providing customer-driven solutions, support or service
• Advanced knowledge of security analysis processes and standards for conducting and reporting security analysis to stakeholders
• Extensive knowledge and understanding of IT Risk Management and/or Information Systems Auditing
• Extensive knowledge and understanding of IT risk and control frameworks
• Demonstrated experience conducting IT risk and control assessments
• Extensive knowledge and understanding of IT risk management and reporting
• Solid knowledge and understanding of risk management methods, standards, processes, governance models, and industry standard risk analysis approaches

Travel Requirements

• This position requires travel up to 10% of the time.

Education & Licenses

• Bachelor's degree in computer science, information assurance, MIS or related field, or equivalent work experience.

This position is a hybrid role that involves working a minimum of 10 days per month in the office. We know flexibility is important to our employees and their families, and we will continue to offer flexibility in this flex office/home role. This approach will guide us in balancing the needs of the business, customers and our employees.

Preferred locations for this role include:

Madison, WI; Chicago, IL; Boston, MA; Minneapolis, MN; Denver, CO; Phoenix, AZ; Nashville, TN; Atlanta, GA

Preferred certifications (not required):

• CBCP (Certified Business Continuity Professional)
• CBCI (Certificate Business Continuity Management)

We provide benefits that support your physical, emotional, and financial wellbeing. You will have access to comprehensive medical, dental, vision and wellbeing benefits that enable you to take care of your health. We also offer a competitive 401(k) contribution, a pension plan, an annual incentive, 9 paid holidays and a paid time off program (23 days accrued annually for full-time employees). In addition, our student loan repayment program and paid-family leave are available to support our employees and their families. Interns and contingent workers are not eligible for American Family Insurance Group benefits.

We are an equal opportunity employer. It is our policy to comply with all applicable federal, state and local laws pertaining to non-discrimination, non-harassment and equal opportunity. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.

#LI-TC3