AddressDivision or Field Office:
Office of the CIO
Department of Position: Enterprise Info Security DeptWork from:
Corporate Office in Erie, Pa Salary Range:$67,958.00 - $136,175.00 *
salary range is for this level and may vary based on actual level of role hired for
*This range represents a national range and the actual salary will depend on several factors including the scope and complexity of the role and the skills, education, training, credentials, location, and experience of an applicant, as well as level of role for which the successful candidate is hired. Position may be eligible for an annual bonus payment.
At Erie Insurance, you’re not just part of a Fortune 500 company; you’re also a valued member of a diverse and inclusive team that includes more than 6,000 employees and over 13,000 independent agencies. Our Employees work in the Home Office complex located in Erie, PA, and in our Field Offices that span 12 states and the District of Columbia.
Benefits That Go Beyond The Basics
We strive to be Above all in Service® to our customers—and to our employees. That’s why Erie Insurance offers you an exceptional benefits package, including:
- Premier health, prescription, dental, and vision benefits for you and your dependents. Coverage begins your first day of work.
- Low contributions to medical and prescription premiums. We currently pay up to 97% of employees’ monthly premium costs.
- Pension. We are one of only 13 Fortune 500 companies to offer a traditional pension plan. Full-time employees are vested after five years of service.
- 401(k) with up to 4% contribution match. The 401(k) is offered in addition to the pension.
- Paid time off. Paid vacation, personal days, sick days, bereavement days and parental leave.
- Career development. Including a tuition reimbursement program for higher education and industry designations.
Additional benefits that include company-paid basic life insurance; short-and long-term disability insurance; orthodontic coverage for children and adults; adoption assistance; fertility and infertility coverage; well-being programs; paid volunteer hours for service to your community; and dollar-for-dollar matching of your charitable gifts each year.
Position Summary
Coordinates transitions to new vendors, new business or technical processes, new technology or significant changes to current technology. Implements changes that will affect business or technical processes with a moderate to high impact for stakeholders and will present challenges in complexity or deadlines. May perform duties in one or more of the following disciplines:
- Business Data
- Business Intelligence
- Security
- Quality
- User Experience
- Production Control
What You'll Do:
This opportunity is for an IT Analyst (11) or Sr IT Analyst (13) and the focus will be to ensure proper cybersecurity governance, risk management, compliance, and security awareness.
- Design and conduct risk assessments to identify and evaluate cybersecurity risks including threats to the confidentiality, integrity, and availability of information and information systems.
- Support audit and information security regulatory compliance exams. Monitor and report on compliance with relevant information security regulations and industry standards. Assess appropriate security practices and controls, and issue/track relevant findings.
- Manage identity governance through the design and administration of recurring User Access Reviews.
- Promote a culture of responsibility that supports information security awareness across the enterprise. Design and conduct Security Awareness training, events, and phishing campaigns.
- Support Operational Resiliency objectives including Business Continuity Plans, Business Impact Analyses, Operational Risk Assessments, and Tabletop Exercises to assess departmental Disaster Recovery, Business Continuity, and Operational Resilience readiness.
- Develop and manage information security policies, standards, procedures, and control frameworks based on industry best practices and regulatory requirements. Manage policy/standard exceptions and waivers based on relevant risk assessments and compensating controls.
- Remain current on emerging trends and technologies related to information security capabilities, frameworks, regulations, policies, standards, procedures, controls, and services.
What Makes You Stand Out:
Foundational to intermediate knowledge and practical experience associated with one or more Information Security GRC capabilities (risk management, regulatory compliance, audit, identity governance, policy/standard management, Information Security control frameworks).
Critical thinking skills and analytical mindset.
Persuasive communication and interpersonal skills, and ability to convey technical concepts to non-technical stakeholders.
Duties and Responsibilities
- Analyzes business or technical processes with a moderate to high impact for stakeholders.
- Conducts research, generates comparisons, draws conclusions, makes recommendations and validates solutions to effect transitional changes.
- Ensures actions are in alignment with enterprise strategies.
- Collaborates across multiple teams to drive analysis management processes (i.e. business, quality, experience, system).
- Utilizes technical guidance received from leaders and higher-level peers to address complex problems and projects.
- Effectively communicates with customers, team members or other stakeholders to ensure successful outcomes.
- Participates in the execution and implementation of solutions.
The first six duties listed are the functions identified as essential to the job. Essential functions are those job duties that must be performed in order for the job to be accomplished.
This position description in no way states or implies that these are the only duties to be performed by the incumbent. Employees are required to follow any other job-related instruction and to perform any other duties as requested by their supervisor, or as become clear.
Competencies
- Self-Development
- Collaborates
- Cultivates Innovation
- Instills Trust
- Decision Quality
- Values Diversity
- Nimble Learning
- Customer Focus
- Optimizes Work Processes
- Ensures Accountability
- Information Management Skills
- Job-Specific Knowledge
- Using Tables And Graphs
Qualifications
Minimum Educational Requirements and Experience Equivalencies:
- Bachelor's degree in IT, MIS, Business or related field, plus two years' related experience; or
- Associate's degree in a technical field, plus four years' related experience; or
- High school diploma plus six years' related experience.
Physical Requirements
- Lifting/Moving 0-20 lbs; Occasional (<20%)
- Lifting/Moving 20-50 lbs; Occasional (<20%)
- Ability to move over 50 lbs using lifting aide equipment; Rarely
- Driving; Occasional (<20%)
- Pushing/Pulling/moving objects, equipment with wheels; Rarely
- Manual Keying/Data Entry/inputting information/computer use; Frequent (50-80%)
- Climbing/accessing heights; Rarely
