Pacific Life is investing in bright, agile, and diverse talent to contribute to our mission of innovating our business and creating a superior customer experience. We're actively seeking a talented Senior Cybersecurity GRC Analyst I to join our Enterprise Information Security Office (EISO) in a hybrid role with at least 3 days per week based out of our Newport Beach, CA office.
How You Will Make An Impact:
Training & Awareness:
- Generate, manage, and standardize cyber training documentation (e.g. desktop procedures, newsletters, tip sheets, and security alerts/advisories)
- Lead and manage training and awareness event and exercises such as quarterly townhalls and summit sessions
- Manage and coordinate logistics for Training and Awareness events and exercises
- Oversee cybersecurity training and awareness capabilities including employee training, training events, phishing and smishing simulations, awareness materials, and ambassador program
- Assist with data analytics and compile metrics (KRIs and KPIs)
Business Continuity Management (BCM):
- Report quarterly Key Risk Indicators (KRIs)
- Support the Service Lead with monthly budget reporting
- Conduct BIA and BCP exercises with different business units through the BC coordinators
Cybersecurity & IT Risk Management:
- Support the maintenance and use of Pacific Life's cybersecurity & ITRM control framework
- Maintain and publish key risk indicators
- Support the routine revision and monitoring of cybersecurity risk appetite
- Support routine and ad-hoc information security risk assessments
- Conduct routine reporting and analysis of issues, remediation plans, and risk acceptances
- Maintain Standard and Procedure documentation for information security risk management service
Information Security Policy:
- Manage the Policies and Standards aligning them with Privacy and Compliance requirements as well as internal requirements.
- Conduct analysis of new regulations that impact the information security / privacy services.
- Support the GRC Manager with external audits, examinations, and survey requests.
The Experience You Will Bring:
- 5+ years of experience in Information Security risk management and assessments, security audits, and/or compliance
- 5+ years of experience with regulatory compliance and frameworks such as NIST 800-53, NIST CSF v1.1, PCI-DSS 3.2 or higher, HIPAA, NYDFS 23 NYCRR 500, ISO 27001/2, and/or NAIC Data Security Law
- Prior experience building and managing a cybersecurity training and awareness program
- Knowledge regarding risk management practices and GRC concepts and automation tools
- Must be organized and detail oriented
- Must be able to work independently, be flexible, and work in a fast-paced environment
- Must have strong communication skills
What Will Help You Stand Out:
- Technical knowledge of operating systems, defense-in-depth concepts, networks, security related technologies, and security configurations
- Experience in the implementation of GRC strategies
- Friendly presence, helpful attitude, good interpersonal skills, and ability to work well with others
- Strong problem-solving skills, ability to visualize a problem/situation and think abstractly to solve it
Base Pay Range:
The base pay range noted provides a basis to determine the appropriate offer dependent upon several factors including but not limited to geographic location, experience, skills, education and pay equity. Also, most employees are eligible for additional incentive pay.
$105,300.00 - $128,700.00
Your Benefits Start Day 1
Your wellbeing is important to Pacific Life, and we're committed to providing you with flexible benefits that you can tailor to meet your needs. Whether you are focusing on your physical, financial, emotional, or social wellbeing, we've got you covered.
- Prioritization of your health and well-being including Medical, Dental, Vision, and Wellbeing Reimbursement Account that can be used on yourself or your eligible dependents
- Generous paid time off options including: Paid Time Off, Holiday Schedules, and Financial Planning Time Off
- Paid Parental Leave as well as an Adoption Assistance Program
- Competitive 401k savings plan with company match and an additional contribution regardless of participation
EEO Statement:
Pacific Life Insurance Company is an Equal Opportunity /Affirmative Action Employer, M/F/D/V. If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access our career center as a result of your disability. To request an accommodation, contact a Human Resources Representative at Pacific Life Insurance Company.