Everest
At Everest, we underwrite opportunity for all stakeholders with protection and peace of mind in an increasingly complex and uncertain world.
Everest is a leading global reinsurance and insurance provider, operating for nearly 50 years through subsidiaries in Europe, Bermuda, Canada, Singapore, the US, Latin America, and other territories. Our strengths include extensive product and distribution capabilities, a strong balance sheet, and an innovative culture. Throughout our history, Everest has maintained its discipline and focuses on creating long-term value through underwriting excellence and strong risk and capital management. But the most critical asset in this organization is our people.
Job Summary:
Our IT International Risk team is dedicated to safeguarding our global operations by identifying, assessing, and mitigating technological risks across international boundaries. We ensure that our organization adheres to diverse regulatory requirements, protecting our digital assets and maintaining the highest standards of cybersecurity. Through rigorous risk assessments, continuous monitoring, and proactive threat management, we enhance our global resilience and operational efficiency. Our team collaborates with international partners and departments to implement robust security controls and respond effectively to emerging threats. We are committed to creating a secure and compliant environment that supports our organization's global strategic goals with confidence.
Role Purpose:
Overseeing the alignment of the development, implementation, and management of the IT GRC framework from Group to International. The role ensures that IT processes and controls are in compliance with regulatory requirements, industry standards, and corporate policies. Supporting the Head of International IT Risk and Security on the strategic direction and thought leadership in the IT GRC.
Key Accountabilities:
1. Ensure alignment of IT Governance with corporate governance and business objectives.
2. Set policy and procedures defining the Information Security standards in line with Group best practices.
3. Adapt IT Governance to support our infrastructure Cloud Strategy, minimizing transformation risk.
4. Monitor and report on IT governance by developing performance metrics.
5. Identify, assess, and prioritize IT risks across the International Business.
6. Assist in the development of risk mitigation strategies and action plans where risks are identified. Track action plans to completion.
7. Collaborate with the 2LOD to conduct regular risk assessments and audits to ensure risk management effectiveness.
8. Coordinate and manage IT compliance audits and assessments.
9. Collaborate with senior management and other stakeholders to ensure IT GRC initiatives support business goals.
10. Support Red Team and other penetration testing activities.
11. Support the Head of International Risk & Security in developing specific management information for board presentations.
Professional Experience:
At least 7-10 years of experience in IT governance, risk management, and compliance. Strong knowledge of regulatory requirements applicable to the Insurance market, and industry standards such as (but not limited to) ISO27001, NIST, and CIS. Proven experience in developing and implementing IT GRC frameworks.
Skills & Abilities:
* Excellent leadership communication and interpersonal skills.
* Strong analytical and problem-solving abilities.
* Ability to work effectively in a fast-paced and dynamic environment.
* Ability to work autonomously and as part of the wider IT risk team.
Our Culture
At Everest, our purpose is to provide the world with protection. We help clients and businesses thrive, fuel global economies, and create sustainable value for our colleagues, shareholders, and the communities that we serve. We also pride ourselves on having a unique and inclusive culture driven by a unified set of values and behaviors.
Our Values are the guiding principles that inform our decisions, actions, and behaviors. They are an expression of our culture and an integral part of how we work: Talent, Thoughtful assumption of risk, Execution, Efficiency, Humility, Leadership, Collaboration, Diversity, Equity, and Inclusion.
Our Colleague Behaviors define how we operate and interact with each other no matter our location, level, or function: Respect everyone, Pursue better, Lead by example, Own our outcomes, Win together.
All colleagues are held accountable to upholding and supporting our values and behaviors across the company. This includes day-to-day interactions with fellow colleagues and the global communities we serve.
#J-18808-Ljbffr