Security Architect
Group 1001

Job Info

---

Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding value and operational performance by combining financial strength and stability with deep insurance expertise and a can-do culture. Group1001's culture emphasizes the importance of collaboration, communication, core business focus, risk management, and striving for outcomes. This goal extends to how we hire and onboard our most valuable assets - our employees.

Group 1001, and its affiliated companies, is strongly committed to providing a supportive work environment where employee differences are valued. Diversity is an essential ingredient in making Group 1001 a welcoming place to work and is fundamental in building a high-performance team. Diversity embodies all the differences that make us unique individuals. All employees share the responsibility for maintaining a workplace culture of dignity, respect, understanding and appreciation of individual and group differences.

Job Title: Security Architect

Company Overview:

Group 1001 Insurance Holdings ("Group 1001") is a long-standing, nimble, and tech-driven financial services enterprise established on deep industry expertise and reliable delivery of long-term value through empowering its customers, employees, and communities. Leveraging upon its record of building successful businesses and strong operating fundamentals, Group 1001 powers the next generation of insurance with useful and intuitive solutions and products accessible to everyone. Group 1001 invests in strategic as part of our mission to transform communities through sports and education.

Job Summary:

Reporting to the Director of Security Architecture, the Security Architect will play a pivotal role in establishing secure design principles across the enterprise. The Security Architect will interface with the business, technical teams, and cyber security teams to ensure that security principles, compliance, and regulatory requirements are being adhered to across areas such as cloud architecture, software/technology acquisition, design and deployment of controls, and risk management.

Responsibilities:

• Engage with business areas and technology teams to consult on secure design of applications and technology platforms
• Develop and communicate security requirements for technology solutions
• Perform security reviews of existing applications and platforms
• Document and prioritize security risks across the environment with risk remediation and/or acceptance plans
• Partner with governance risk & compliance to develop controls assurance testing techniques
• Review security exception requests submitted by business units and technology teams
• Review large design patterns across cloud and application technology areas to ensure that security requirements and best practices are instilled in the design and operation
• Assist security teams with the integration of technology across multiple service areas
• Be a trusted security advisor across the enterprise
• Develop security metrics that are informed and provide context to make decisions
• Determine security controls for the enterprise with comprehensive documentation

Qualifications:

• At least 10 years experience in Information Security with a focus on one or more of the following areas: Cloud/Cloud Security, Application Development Security, Network Security, Security Architecture
• Advanced knowledge and technical hands-on experience in operating systems, network security, security operations, vulnerability management, advanced persistent threats
• Experience with multiple EDR tools, SIEM platforms, and firewall technologies
• Experience with vulnerability management best practices and platforms
• Experience within the data protection space (e.g. DLP, CASB, Data Classification, etc.)
• Knowledge of security automation
• Moderate to advanced knowledge of regulatory frameworks such as NIST, PCI-DSS, SOX, HIPAA, COBIT, NYDFS
• Familiarity with IT service management and incident/problem management best practices, along with experience supporting multiple stakeholders and key principles in process improvement.
• Demonstrated success in building relationships with non-technical and non-security stakeholders
• Experience in Healthcare and/or Insurance environments
• Strong technical writing skills

Compensation:

Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay for this position ranges from $150,000/year in our lowest geographic market up to $200,000/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

Benefits Highlights:

Employees who meet benefit eligibility guidelines and work 30 hours or more weekly, have the ability to enroll in Group 1001's benefits package. Employees (and their families) are eligible to participate in the Company's comprehensive health, dental, and vision insurance plan options. Employees are also eligible for Basic and Supplemental Life Insurance, Short and Long-Term Disability, and to enroll in the Company's Employee Assistance Program and other wellness initiatives. Employees may also participate in the Company's 401K plan, with matching contributions by the Company.

#LI-AS1 #LI-REMOTE

---