This is your opportunity to join AXIS Capital – a trusted global provider of specialty lines insurance and reinsurance. We stand apart for our outstanding client service, intelligent risk taking and superior risk adjusted returns for our shareholders. We also proudly maintain an entrepreneurial, disciplined and ethical corporate culture. As a member of AXIS, you join a team that is among the best in the industry.

At AXIS, we believe that we are only as strong as our people. We strive to create an inclusive and welcoming culture where employees of all backgrounds and from all walks of life feel comfortable and empowered to be themselves. This means that we bring our whole selves to work.

All qualified applicants will receive consideration for employment without regard to race, color, religion or creed, sex, pregnancy, sexual orientation, gender identity or expression, national origin or ancestry, citizenship, physical or mental disability, age, marital status, civil union status, family or parental status, or any other characteristic protected by law. Accommodation is available upon request for candidates taking part in the selection process.

Cybersecurity Risk Analyst

Job Family Grouping: Governance Risk & Compliance

Job Family: IRM Information Risk Management

How does this role contribute to our collective success?

The Cybersecurity Risk Analyst is responsible for assessing and managing the cybersecurity risks associated with third-party vendors and partners. This requires close collaboration with internal stakeholders, including procurement, legal, and IT teams to evaluate the security posture of third-party vendors, identify potential risks, and implement effective risk mitigation strategies as necessary. The position will also support first party cybersecurity risk management practices for the Information Risk Management team, including policy governance and compliance efforts.

What will you do in this role?

• Collaborate with Business Partners to effectively manage third-party risk through periodic assessments and the development of contractual requirements; ensuring implemented solutions meet business needs and conform to AXIS information security policies, industry standards, and regulatory requirements.

• Perform thorough due diligence on prospective third-party vendors to assess their cybersecurity capabilities, including reviewing security policies, procedures and certifications, conducting detailed assessments, and evaluating their overall security posture.

• Work with third parties to solution/remediate security risks introduced by the relationship, ensuring identified gaps are tracked and remediated within an agreed upon time frame.

• Collaborate closely with IRM Architecture and Engineering team to solution and implement AXIS-side remediations or mitigations of third-party risks.

• Guide junior team members through the third-party risk identification process.

• Provide internal technology security expertise by defining and influencing appropriate policies, technologies, processes and controls to reduce overall cyber risk to the organization.

• Support AXIS regulatory compliance assessments and related efforts.

• Educate business partners to understand and apply information security concepts, processes, and technologies, fostering a culture of cybersecurity awareness and accountability.

• Conduct risk/impact assessments against known standards to support strategic initiatives.

• Report and present ideas, findings, education, and other concepts in a concise and focused manner to audiences at various levels within the organization.

• Maintain up-to-date knowledge of information security concepts, technologies, and best practices.

You may also be required to take on additional duties, responsibilities and activities appropriate to the nature of this role.

About You:

We encourage you to bring your own experience and expertise to the table, so while there are some qualifications and experiences, we need you to have, we are open to discussing how your individual knowledge might lend itself to fulfilling this role and help us achieve our goals.

What you need to have:

• Bachelor’s degree in computer science or related field and 2-5 years of relevant experience.

• Knowledge and understanding of information security concepts and best practices required.

• Experience promoting security as a business enablement function using documentation, metrics, and strong verbal communication.

• Experience with information security policies, processes, and standards as they apply to the insurance industry preferred.

• Experience in auditing, compliance, risk analysis and/or regulatory environments preferred.

• Experience with information security frameworks (COBIT, NIST, OWASP, etc.) preferred.

• Demonstrated experience with Microsoft Office, including Word, Excel, PowerPoint, Outlook.

• Able to easily communicate with senior management, lead technical discussions, and confidently train end-users and leaders.

• Able to effectively prioritize and manage competing business demands.

What we prefer you to have:

• Advanced degree or relevant certifications preferred.

• Experience in the insurance or financial services industry.

Role Factors:

In this role, you will typically be required to:

Be in the office 3 days per week.

What we offer:

You will be eligible for a comprehensive and competitive benefits package which includes medical plans for you and your family, health and wellness programs, retirement plans, tuition reimbursement, paid annual leave, and much more.

For this position, we currently expect to offer a base salary in the range of, 67K to 98K (GA). Your salary offer will be based on an assessment of a variety of factors including your specific experience and work location. 

In addition, you will be offered competitive target incentive compensation, with awards based on overall corporate and individual performance. On top of this, you will be eligible for a comprehensive and competitive benefits package which includes medical plans for you and your family, health and wellness programs, retirement plans, tuition reimbursement, paid vacation, and much more.  

Where this role is based in the United States of America, this role is Exempt for FLSA purposes.

Rewarding. Challenging. Meaningful.

We are shaping the direction of Insurance and Reinsurance during a critical and exciting time for the industry.

Whether you are a student approaching graduation or a seasoned professional looking for a new environment, AXIS has the right challenges and career opportunities for you. At AXIS, we value each individual and recognize that attracting and retaining the right people is essential to the success of our company.

We offer a comprehensive and competitive benefits package which includes medical plans for employees and their families, health and wellness programs, retirement plans, tuition reimbursement, paid vacation, and much more.