In this role you will:

• Identify risk with network and application architecture
• Conduct Cyber Risk Engineering activities to support the insurance lifecycle. Be responsible for supporting the underwriting process by providing cyber risk advisory support to the underwriter and the insured.
• Independently conduct security risk assessments against insured information systems and applications, making reasonable and defensible recommendations via a thorough assessment report, and tracking progress on remediation until closure with the insured.
• Lead the development and oversight of corrective actions relating to security issues and define remediation plans with the insured, while balancing the cost versus benefits.
• Ensure accurate and realistic risk assessments and loss analysis to reduce maximum exposure and loss volatility for the insured.
• Work with the underwriting teams to negotiate acceptance of remediation plans and timelines based on level of risk associated with a finding.
• Develops and delivers technical research that supports the operational strategy of Cyber Risk Control team.
• Drives the maintenance of effective technology to collect, organize, analyze and report information to stakeholders.
• Contributes to the short and long-term process improvement opportunities and recommend process improvement and strategic initiatives as related to Cyber Risk Control.
• Provide cyber advisory and consulting services to the insured across multiple cyber domains.

Bachelor or Master`s degree in technical discipline or equivalent experience. Generally, 7+ years of professional experience. Proficient in new and emerging technologies, IT concepts, strategies, and methodologies, as well as security aspects of multiple platforms, operating systems, software, communications, and network protocols. Negotiation skills; oral and written communication skills. Advanced consultative skills, including the ability to understand and assist in applying customer requirements.

Required core skills and certifications:

Certifications

• CISSP Certification Required
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• Certified in Risk & Information Systems Control (CRISC)

Skills

• Financial Services Cybersecurity experience
• Proficient in Cybersecurity threats and controls within the Financial Services industry
• Experience with regulations within the Financial Services industry that impact cybersecurity, including, but not limited to:

• FFIEC
• GLBA
• GDPR
• SOX
• PCI-DSS
• NYDFS
• OSI

• Familiarity with:

• NIST-CSF (including NIST 800-53 and NIST 800-171)
• ISO 27001/2
• MITRE Attack Framework
• CIS Controls
• Experience executing IT Risk, and Cybersecurity & Privacy technical maturity assessments
• Experience understanding threat and vulnerability management processes and procedures
• Experience understanding incident breach preparedness and response processes and procedures
• Experience understanding cyber resilience processes
• Internal audit (Outsource, Co-Source, Staff Augmentation) experience
• Experience executing Cyber due diligence as apart of an M&A process
• Data analytics experience
• CISA Cyber Resilience Review (CRR)
• Familiarity with:
• COBIT
• ITIL
• TOGAF

At Liberty Mutual, our purpose is to help people embrace today and confidently pursue tomorrow. That's why we provide an environment focused on openness, inclusion, trust and respect. Here, you'll discover our expansive range of roles, and a workplace where we aim to help turn your passion into a rewarding profession.

Liberty Mutual has proudly been recognized as a “Great Place to Work” by Great Place to Work® US for the past several years. We were also selected as one of the “100 Best Places to Work in IT” on IDG's Insider Pro and Computerworld's 2020 list. For many years running, we have been named by Forbes as one of America's Best Employers for Women and one of America's Best Employers for New Graduates—as well as one of America's Best Employers for Diversity. To learn more about our commitment to diversity and inclusion please visit: https://jobs.libertymutualgroup.com/diversity-inclusion

We value your hard work, integrity and commitment to make things better, and we put people first by offering you benefits that support your life and well-being. To learn more about our benefit offerings please visit: https://LMI.co/Benefits

Liberty Mutual is an equal opportunity employer. We will not tolerate discrimination on the basis of race, color, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran's status, pregnancy, genetic information or on any basis prohibited by federal, state or local law.