Job Description

With a company culture rooted in collaboration, expertise and innovation, we aim to promote progress and inspire our clients, employees, investors and communities to achieve their greatest potential. Our work is the catalyst that helps others achieve their goals. In short, We Enable Possibility℠.

The Manager,ITCompliance, working closely with the CISOand Director of IT Security,will provide management,leadershipand delivery of the compliance function, liaising closely with other IT and business stakeholders.  He/she will be the main point of contact for all IT Compliance related activities including leadingcoordinatingIT control assessment activities (SOX, SOC 2, etc.) and customer information security due diligence reviews.

Responsibilities 

• Work with IT process owners to identify/improve and document detailed controls for key application,security,and infrastructure components

• Provideon-going organization wide guidance on IT control requirements andimpact

• Facilitate requests between control owners and Internal/external audit teams and be the main point of contact with the Internal and External Audit teams.

• Manage and report on IT control gaps,track issues tocompletion,and provide recommendations for improvements

• Lead in the design and implementation of efficient and effective controls within the organization

• Participate in data privacy governance related activities such as data mapping and data privacy assessments.

• Manage the response forIT-relatedcustomer security assessments.

• ProactivelyidentifyIT control gaps with a focus on automating control reviews wherever possible.

• Manage access recertification process.

Required Qualifications 

• 5+ years of combined experience in the fields of Information Systems audit,IT security,IT governance,IT risk & IT compliance

• In-depth knowledge and experience withSarbanes-Oxley, PCI-DSS, ISO 27001, SOC2and the NYDFS Cybersecurity Regulation.

• Working Knowledge of Windows Operating System and Active Directory Security including Users and Groups, Group Policy, Domain Structures, Security and Auditing.

• Working knowledge of agile developmentmethodology

• Working knowledge ofDevOps practices and technologies.

• Desire to measure and continuously improve in all areas andfacets

• Demonstrated ability to balance short term tactical wins withlonger-term strategic solutions.

• Transformative mindset and experienceoperatingas a change agent

Preferred Qualifications 

• 8+ years of combined experience in the fields of Information Systems audit,ITsecurity, ITrisk,& IT compliance.

• CISSP, CISA,CISM, or CCSKCertifications.

• Excellent oral and written communication skills with the ability to communicate technical concepts to a technical and non-technical audience

• Demonstrated ability toestablishrelationshipsand build rapport to influence colleagues at all levels, uncover business issues, andidentifyneeds

• Experience in a highly regulated industry, such as insurance and/or financial services 

• Some knowledge of and understanding of howto createexecuteSQL queries, and scripts using Python and PowerShell.

Environment and/or Physical Factors 

• Raleigh or Remote work withthe abilityto travel tothe mainassigned office quarterly for key meetings

• Ability to travel with in the U.S. up to 10-20% of the time

• Incumbentmay be asked to perform other duties asrequired

Compensation 

• Salary DOE 

• Full benefits package available 

For individuals assigned or hired to work in the location(s) indicated below, the base salary range is provided. Range is as of the time of posting. Position is incentive eligible.

$90,000 - $130,000/year

• Total individual compensation (base salary, short & long-term incentives) offered will take into account a number of factors including but not limited to geographic location, scope & responsibilities of the role, qualifications, talent availability & specialization as well as business needs. The above pay range may be modified in the future.

• Arch is committed to helping employees succeed through our comprehensive benefits package that includes multiple medical plans plus dental, vision and prescription drug coverage; a competitive 401k with generous matching; PTO beginning at 20 days per year; up to 12 paid company holidays per year plus 2 paid days of Volunteer Time Offer; basic Life and AD&D Insurance as well as Short and Long-Term Disability; Paid Parental Leave of up to 10 weeks; Student Loan Assistance and Tuition Reimbursement, Backup Child and Elder Care; and more. Click here to learn more on available benefits.

Do you like solving complex business problems, working with talented colleagues and have an innovative mindset? Arch may be a great fit for you. If this job isn’t the right fit but you’re interested in working for Arch, create a job alert! Simply create an account and opt in to receive emails when we have job openings that meet your criteria. Join our talent community to share your preferences directly with Arch’s Talent Acquisition team.

14400 Arch Insurance Group Inc.