IT Security Compliance Analyst

GUARANTEE TRUST LIFE INS CO•Elkhorn, NE

1d•Hybrid

About The Position

Guarantee Trust Life Insurance Company (GTL) is currently seeking an IT Security Compliance Analyst to join our team! Since 1936, GTL has offered cutting-edge insurance solutions and personalized service for our policyholders and distributors, while supporting personal growth and civic involvement from our employees. We’re seeking candidates who are looking for meaningful work, who want to invest in their growth, and contribute to a company built on timeless virtues and best business practices. This position is required to work on-site in our Omaha-area (Elkhorn, NE) office most days. Everyone receives 3 flexible remote days per month and 6 additional Friday PTO days each year! And, we offer half-day Fridays – every Friday! The ideal candidate will be part of the team responsible for ensuring our enterprise applications, systems, and data environments meet regulatory requirements and security standards. This role includes assessing, implementing, and maintaining security compliance controls to protect sensitive information, reduce risk, and support business operations. You will be a key member of our IT team, working to monitor regulatory compliance, conduct risk assessments, support audits, and help optimize our security posture. If you want to make a meaningful impact, work with smart and innovative people, and grow your career in cybersecurity compliance, come join us! It’s a great time to join GTL!

Requirements

Proven experience as an IT Security Compliance Analyst, Information Security Analyst, Compliance Specialist, or similar role.
Strong knowledge of information security frameworks and standards (NIST, ISO 27001, SOC 2, HIPAA, PCI-DSS, etc.).
Experience conducting risk assessments, audits, and compliance reviews.
Understanding of security controls, access management, data protection, and vulnerability management.
Proficiency in interpreting and applying regulatory requirements to IT environments.
Excellent documentation, reporting, and analytical skills.

Nice To Haves

Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
Relevant certifications such as CompTIA Security+, GIAC Security Essentials (GSEC).
Experience in the insurance or financial services industry.

Responsibilities

Conduct regular compliance assessments and audits of IT systems, applications, and processes to ensure adherence to regulatory requirements and industry standards (e.g., HIPAA, NIST, PCI-DSS, ISO 27001).
Develop, implement, and maintain security policies, procedures, and controls to protect sensitive data and meet compliance obligations.
Perform risk assessments, identify compliance gaps, and recommend remediation actions to strengthen the organization’s security posture.
Monitor and review security controls, access management, and data protection measures across enterprise systems.
Assist with internal and external audits, including preparation of documentation, evidence collection, and remediation tracking.
Collaborate with IT teams, developers, system engineers, and business stakeholders to integrate compliance requirements into projects and daily operations.
Stay current with evolving laws, regulations, and best practices in information security and privacy.
Support the creation and delivery of security awareness training and compliance reporting for management.
Participate in the general periodic on-call rotation providing ad-hoc support as needed.