Governance Risk & Compliance Lead
University Park, IL

Job Description

Job Description

Applied Systems, Inc., a worldwide leader in insurance technology, is currently searching for a talented Governance, Risk, and Compliance Lead to join our team. The Governance, Risk, and Compliance (GRC) Manager is responsible for the assessing and documenting of Applied's compliance and risk posture as they relate to its information and information assets.

This position will provide technical and information security expertise for the development and implementation of the information security risk management program. Responsibilities require leadership regarding the enterprise-wide risk management function of the information security program to ensure information security risks are identified and monitored. Additionally, this position will lead the information security compliance program, ensuring appropriate information management and IT related activities, processes, and procedures meet defined requirements and regulations. Lastly, the responsibility to develop and implement effective policies, standards and practices to secure personal and sensitive data while ensuring compliance with relevant legislation and legal interpretation.

RESPONSIBILITIES

* 2-4 years of experience in building an Information Security Risk Management program, preferably as a Team Lead, Supervisor or Manager.
* 2+ years' experience in security risk management, controls assessment, and configuration management. Internally assess, evaluate and make recommendations to management regarding the adequacy of the security controls for Applied's information and technology systems.
* 2-4 years of advanced IT skills with a high level of information security experience and expertise (assessing network technologies, client, and server operating systems).
* Strong knowledge of security risk management frameworks (ISO 27005, NIST SP 800-30, ISACA, etc.) including related information security management frameworks such as NIST 800-53, ISO27001-02, SOC, HIPAA, PCI, GDPR, etc..
* Ability to evaluate and recommend updates to Applied's security and supporting management policies, standards and guidelines considering the impact of regulatory compliance and implementation of industry good practices.
* Leading the development of the Data Governance Program which includes defining a Data Classification and Handling Program, identifying Data Owners, and assisting with the design and implementation of a Data Classification and Rights Management tool.
* Develop and maintain strong business partnerships with key personnel to integrate information security risk management into support and business functions. Partners include: Information Technology, external auditors, privacy, information security, and various product owners.
* Excellent interpersonal, communication, and presentation skills, including formal report writing experience.
* Manage, coach, lead and develop a small staff of GRC personnel.
* Bachelor's degree in computer science, information systems, information security, information risk, or a related field.
* Active candidate for at least one relevant certification, including but not limited to Certified in Risk and Information Systems Control (CRISC), Certification in Risk Management Assurance (CRMA), Certified Information Systems Auditor (CISA), Certified in the Governance of Enterprise IT (CGEIT), GRC Professional (GRCP) and/or similar risk management / IT assurance certifications.

QUALIFICATIONS FOR THIS JOB

* Assist in maturing the Third Party Risk Management program by defining security controls based on tiers of vendors.
* Assist in performing Third Party Risk Assessments for new and existing vendor tools and third parties with access to the environment.
* Assist in developing enterprise and functional team specific presentations to promote a security mindset across the company.
* Assist in developing and maintaining Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for the Data Governance Security Program and initiatives.

WHO WE ARE

LEADING GLOBAL PROVIDER OF CLOUD-BASED INSURANCE SOFTWARE- Applied Systems develops the top two Insurance Agency/Broker Management software products in the world. In addition, we also provide innovative mobile apps, Data Analytics, Customer Self-Service, Insurer Connectivity & Rating, eServicing, Benefits Design, and CRM software products. By automating the insurance lifecycle, Applied's people and products enable millions of people around the world to safeguard and protect what matters most.

CLOUD SOLUTIONS & PROFESSIONAL SERVICES- We offer cloud solutions, implementation and education services, 24x7 technical support, and consulting services that are built specifically for our clients.

AWARD WINNING TECHNOLOGY- We have been voted the 2019 Best Cloud-Based Software Solutions Provider in the insurance industry (2019 Corporate Excellence Awards), the 2019 Digital Service Provider of the Year (Corporate Insider) and are ranked #56 in the Cloud Top 500 report for the largest cloud application vendors in the world (Apps That Run the World).

GOOGLE'S INVESTMENT IN APPLIED- Google/CapitalG made a minority investment in Applied that will spur AI, machine learning, and digital marketing innovation in the global insurance industry.

CLIENTS- We provide technology to over 160k users within insurance agencies, brokerages, and carriers throughout the US, Canada, the UK, and Ireland.

EMPLOYEES- Applied currently has 1,700+ employees across the US, Canada, the UK, and Ireland.

COMPANY CULTURE & PERKS

JOIN A GREAT TEAM- We believe that success comes from a dynamic working environment that offers professionals an opportunity to grow and succeed alongside extraordinary people. We encourage idea sharing, problem solving, and teamwork in our environment.

RELAXED DRESS CODE- Applied allows for a relaxed dress code where jeans are permitted; we call this "Dress for your Day"!

FUN PARTIES & PERKS- Fun perks are a staple at Applied, including holiday parties with games and contests, summer celebrations employee appreciation events, art contests, employee discount programs, free bagel and fruit on Tuesdays, and more!

OPPORTUNITIES FOR ADVANCEMENT- We are a growing company that offers career opportunities, and not just "another job". Applied believes in growing our employees and promoting from within, offering many opportunities for professional advancement along the way!

CAREER STABILITY & LONGEVITY- Our average employee tenure is 14 years!

CULTURE OF RECOGNITION- Applied provides a culture of employee recognition with our Circle of Excellence program, and our internal social network recognition program.

APPLIED CARES- We have a culture that embraces and promotes volunteerism. Applied encourages our employees to help local charities and communities through the 'Applied Cares' program

BENEFITS & REWARDS

BENEFITS FROM DAY ONE- Applied offers Medical, Rx, Dental, Vision, Virtual Doctors' Appointments, Health Savings Account, Flexible Spending Accounts, Critical Illness, Group Accident, and Wellness Incentives to ensure employees are covered from day one.

FINANCIAL PEACE OF MIND- In addition to wellness benefits, Applied offers traditional and Roth 401k options, with employer match. Accidental Death & Dismemberment, Short and Long Term Disability, and Business Travel Accident insurance are also offered.

WORKLIFE BALANCE- There is more to life than work: that is why Applied offers benefits to help balance your work and home life. We offer competitive paid vacation time, personal/sick time, paid holidays, paid parental leave, volunteer time off, and a free day off for your birthday!

TO LEARN MORE

Please visit AppliedSystems.com.

Applied Systems welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.