IT Info Security Specialist

Erie InsuranceErie, PA
$79,191 - $126,500Remote

About The Position

This opportunity is for a Professional Information Security Specialist on the Governance, Risk, and Compliance team. The Information Security Specialist will support cybersecurity governance, IT risk management, regulatory compliance, and control assurance activities across the enterprise. This role will focus on SOX/MAR IT attestations, including coordinating evidence collection, supporting control owners, reviewing control documentation, tracking control performance, and helping ensure IT and cybersecurity controls are operating effectively. The role will partner with technology teams, application owners, business stakeholders, internal audit, external audit, and risk management partners to support audit readiness and compliance objectives. The Information Security Specialist will also support broader GRC activities, including IT risk assessments, control testing, issue and remediation tracking, policy and standards governance, regulatory alignment, metrics reporting, and continuous improvement of the cybersecurity compliance program.

Requirements

  • Bachelor’s degree in relevant field <e.g., IT, MIS, Cyber Security, Risk Management> and 2 years of related experience; or Associate degree in relevant field and 4 years of related experience; or High School diploma or equivalent and 6 years of related experience, required.
  • Completion of a relevant IT-career preparation program approved by ERIE’s Human Resources and IT Talent Optimization Departments if unrelated degree and/or less experience.
  • Relevant certifications and/or military training/service may be considered for equivalent education/experience.
  • Foundational knowledge and skill associated with at least one Information Security discipline and in at least one IT domain (analysis, engineering, system administration), required.
  • Critical thinking skills and analytical mindset required.
  • Persuasive communication and interpersonal skills, and ability to convey technical concepts to non-technical stakeholders, required.
  • Ability to participate in on-call rotations and work outside of regular business hours to support cyber event and incident handling may be required.

Nice To Haves

  • Experience with IT delivery or operational methodologies (agile delivery, SDLC, ITIL), preferred.

Responsibilities

  • Installs, configures, administers, and analyzes information security technologies, controls, and practices that maintain the confidentiality, integrity, and availability of ERIE's information systems and data assets.
  • Continuously detects, logs, monitors, alerts, and reports on information security controls, exceptions, vulnerabilities, threats, risks, and incidents. Executes actions to protect assets and detect vulnerabilities or threats. Executes actions to respond to and recover from vulnerabilities or threats.
  • Develops and manages relationships with diverse groups of stakeholders at multiple levels. Partners and aligns with cross-functional risk assurance, IT, and business teams across the enterprise to implement, align, and ensure compliance with security measures.
  • Establishes and ensures that security measures are in line with industry standards, best practices, and regulations. Measures and improves the operating rhythm of Information Security as well as the risk posture of ERIE. Advances Information Security controls through maturity assessments, continuous process and automation improvements, appropriate policies/standards/procedures, and capability development.
  • Develops and presents reports, metrics, dashboards, and evidence to stakeholders across the enterprise up to and including leadership and corporate officers. Provides support to end-users on security-related issues. Effectively communicates to and influences stakeholders through oral and written communications.
  • Provides discipline-specific knowledge in support of security awareness and outreach to ensure that information security best practices are understood and followed enterprise wide.
  • Remains current on industry best practices, standards, frameworks, regulations, and emerging security threats through research, training, and participation in industry associations. Makes recommendations for improving the company's security posture. Shares recommendations, knowledge, and relevant content to inform, mentor, or trains others.

Benefits

  • Premier health, prescription, dental, and vision benefits for you and your dependents.
  • Coverage begins your first day of work.
  • Low contributions to medical and prescription premiums.
  • We currently pay up to 97% of employees’ monthly premium costs.
  • Pension.
  • We are one of only 13 Fortune 500 companies to offer a traditional pension plan.
  • Full-time employees are vested after five years of service.
  • 401(k) with up to 4% contribution match.
  • The 401(k) is offered in addition to the pension.
  • Paid time off.
  • Paid vacation, personal days, sick days, bereavement days and parental leave.
  • Career development.
  • Including a tuition reimbursement program for higher education and industry designations.
  • Additional benefits that include company-paid basic life insurance; short- and long-term disability insurance; orthodontic coverage for children and adults; adoption assistance; fertility and infertility coverage; well-being programs; paid volunteer hours for service to your community; and dollar-for-dollar matching of your charitable gifts each year.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service