Information Security Analyst (Up to 11M)@Insurance Company

The role directly contributes to the Global and regional Cyber Risk teams. The successful candidate will plan and carry out security measures to protect the organization's data from cyber threats, also have the opportunity to be involved in a number of different high-profile Information Security work streams with a broader focus on information security risk management, control assurance, policy governance and compliance.

Client Details

This is a reputable insurance company that operates at a large scale and has a significant presence in the market. The company is one of the world's largest insurance companies, with operations in 54 countries and listed on the NY Stock Exchange

Description

• Performance and execution of Third Party Cyber Risk assessments initiated by business.
• Reviewing information security policies, standards, guidelines and baselines in place and being developed.
• Liaising with and working alongside the Global Third-Party team as well as Business relationship Owners.
• Risk assessments of Vendors
• Identification, tracking and management of issues and control deficiencies relating to Third Parties
• Perform regular audits to ensure security practices are compliant.
• Performance and execution of Third Party Cyber Risk assessments initiated by business.

Job Offer

• Opportunities for professional development.
• A vibrant and professional work culture that values teamwork
• Good work-life balance (Hybrid work style )

We encourage all qualified candidates to apply .

To apply online please click the 'Apply' button below. For a confidential discussion about this role please contact Samantha Galeana on +813 6832 8971.

A successful Information Security Analyst should have:

• Experience in information security experience with a focus on risk assessments and controls, governance, risk management.
• Experience applying information security standards and frameworks (e.g., ISO 27001/27002, PCI-DSS, NIST, etc.)
• Knowledge of both the business and technical aspects of information security.
• Japanese and English Business level and above

Desired (not a must):

Third party security risk and data protection regulation knowledge