About the position
As part of the IT Risk Management team, this role will provide infrastructure and information security subject matter expertise within operational risk management. The successful candidates will join a team of professionals who are responsible for:
Partnering with business operational risk officers, business information security officers, and the corporate information security office to identify current/emerging security risks and ensure they are appropriately assessed and mitigated.
Performing technical risk assessments around:
- Information Security
- Disaster Recovery
- Emerging technologies
- Secure systems development
- Vendor security
- IT regulatory compliance
- PCI compliance
Providing assurance and guidance over the general activities and concerns of the organization’s security function including: governance, policy, control design, general operational effectiveness and internal controls.
Identifying and evaluating business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
Provide input into security investment decisions and strategies.
Joining the IT Risk Management team provides a tremendous opportunity to learn about IT infrastructure and information security from a business perspective. You will be responsible for resolving challenging issues and for managing multiple issues to completion. This position requires resourcefulness, good judgment, persistence and follow through, the ability to influence and “effectively challenge” others, and strong leadership qualities. Typically someone in this position is responsible for a mixture of long-term initiatives, ad hoc requests and issues, and some ongoing Risk Management responsibilities.
Demonstrates proven success in a technical role that emphasizes the following: IT Risk Management, Information Security and/or Technical Privacy.
Demonstrates an understanding of comprehensive security programs, including technologies and tools, architectures and network and application design, and policies / business aspects of risk.
Demonstrates expertise with performing IT Risk & Security assessments, developing information security strategies, and recommending security solutions to assist businesses with the assessment and improvement of their security infrastructure.
Demonstrates expertise with assessing and recommending enterprise security solutions in adherence with industry and regulatory security standards.
Demonstrate a strong understanding of the IT security landscape, including emerging risks and security solutions.
Demonstrates an ability to work in a collaborative environment and influence others
Able to construct and assess high-level and detailed security programs translating business needs and regulatory requirements into cost effective and risk appropriate controls.
Able to assess information security programs including organizational design and key process/procedures.
Analysis, development and implementation of security policies, standards and guidelines.
Demonstrates extensive knowledge of information security standards: ISO, NIST, etc.
Industry experience in financial services.
5+ years experience in information security
BA or BS Management Information Systems, Computer Science, or Engineering.
Obtained or demonstrates an active pursuit of one or more of the following certifications: Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Risk Information System Control, (CRISC) certifications, or other related certifications.
Prudential is a multinational financial services leader with operations in the United States, Asia, Europe, and Latin America. Leveraging its heritage of life insurance and asset management expertise, Prudential is focused on helping individual and institutional customers grow and protect their wealth. The company's well-known Rock symbol is an icon of strength, stability, expertise and innovation that has stood the test of time. Prudential's businesses offer a variety of products and services, including life insurance, annuities, retirement-related services, mutual funds, asset management, and real estate services.
We recognize that our strength and success are directly linked to the quality and skills of our diverse associates. We are proud to be a place where talented people who want to make a difference can grow as professionals, leaders, and as individuals. Visit www.prudential.com to learn more about our values, our history and our brand.
Prudential is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status, or any other characteristic protected by law.
Note that this posting is intended for individual applicants. Search firms or agencies should email Staffing at firstname.lastname@example.org for more information about doing business with Prudential.