GRC Security Specialist

Metlife Legal Plans
7hRemote
Match Resume

About The Position

MetLife Legal Plans is the country's largest provider of legal voluntary benefits. We have more than 40 years of experience in employee legal services and are committed to providing excellent care to our plan members, sponsors and 18,000+ attorneys. We are trusted by nearly 7 million families and more than 200 Fortune 500 companies who offer our service as an employee benefit. It’s an exciting time to join our team. We are growing quickly and have a bold vision for our future as we evolve our company to dream bigger, move faster, and use creativity and technology to build products people love. This position is fully remote. The Technology GRC Security Specialist is a professional who holds a role in managing and enhancing MetLife Legal Plans' Technology risk management and security practices. This individual is responsible for overseeing the development, implementation, and continuous improvement of strategies and measures to identify, assess, and mitigate Technology-related risks. The Technology GRC Security Specialist plays a critical role in safeguarding the MLP's information assets and ensuring compliance with relevant laws, regulations, and industry standards. A Technology GRC Security Specialist should possess a strong background in Technology risk management, cybersecurity, and information security. Effective communication skills, and the ability to collaborate with various stakeholders are essential for success in this role. Staying informed about industry trends, emerging threats, and changes in regulatory requirements is also crucial.

Requirements

  • 5+ years of IT GRC & Security experience required
  • Bachelors degree in computer science or related field highly preferred
  • Technical security certifications highly preferred
  • Prior experience leading and coaching a team highly preferred

Responsibilities

  • Leading the development and implementation of MLP's IT risk management framework.
  • Overseeing risk assessments, identifying potential threats, vulnerabilities, and assessing the impact on IT systems and data.
  • Playing a key role in the development and enforcement of IT security policies, standards, and procedures.
  • Ensuring that security policies align with industry best practices and regulatory requirements.
  • Providing leadership in designing secure IT architectures and solutions.
  • Collaborating with IT teams to ensure that security is integrated into system and application designs.
  • Developing and delivering security awareness and training programs for employees.
  • Promoting a culture of security awareness throughout the MLP.
  • Leading the development and implementation of incident response plans.
  • Coordinating response efforts in the event of security incidents, breaches, or vulnerabilities.
  • Ensuring that IT systems and practices comply with relevant laws, regulations, and industry standards.
  • Conducting regular audits to verify compliance and addressing any identified issues.
  • Evaluating and selecting security technologies, tools, and solutions.
  • Keeping abreast of emerging cybersecurity technologies and recommending their adoption.
  • Collaborating with IT teams, including network security, application security, and system administrators.
  • Providing guidance on security best practices and ensuring the implementation of security controls.
  • Effectively communicating security risks, strategies, and mitigation plans to executive leadership and relevant stakeholders.
  • Translating technical security concepts into business-oriented language.
  • Analyzing security questionnaires received from Sponsors or third-party vendors.
  • Evaluating responses to assess the security controls, practices, and policies in place.
  • Guiding auditors through MLP's IT environment, including systems, networks, and security measures.
  • Managing and organizing audit-related documentation, ensuring accuracy and completeness.
  • Addressing queries and concerns raised by auditors during the audit process.
  • Collaborating with internal teams to resolve issues promptly and efficiently.
  • Leading contract negotiations with Sponsors.
  • Ensuring that contracts include appropriate terms, conditions, and service level agreements.
  • Collaborating with legal and procurement teams to finalize contractual agreements.
  • Driving continuous improvement initiatives within the IT risk and security program.
  • Conducting lessons learned sessions and adapting strategies based on evolving threats and technologies.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Number of Employees

101-250 employees

Job Search Resources

Similar GRC Security Specialist job opportunities

Cloud Security GRC Specialist
Meta
Meta • Washington, DC13d
Cloud Security GRC Specialist
Meta
Meta • Washington, DC6d
GRC Specialist
Jobgether
Jobgether11d • Remote
Senior Security Engineer - GRC
northwoodspace
northwoodspace • Washington D.C., WA7d
Information Security Analyst, GRC
XBOW
XBOW5d • Remote
🔥 New JobSecurity GRC Program Manager
Vanilla Technologies
Vanilla Technologies1d • $135,000 - $150,000 • Remote
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service