Information Security Principal Analyst
Johnston, Rhode Island
You’ll quickly learn that we’re not like other property insurance companies. We’re guided by the belief that most losses can be prevented. So we do everything we can to understand your business needs and reduce your risk.
What makes a successful Candidate at FM Global? Check out the traits we’re looking for and see if you have the right mix.
- Client/Customer Focus
- Decision Quality
- Collaboration and Teamwork
- Ensures Accountability
- Change Agent
- Communicates Effectively
Hear what our employees have to say about working at FM Global
employee since 2008
WHEN YOU'RE INVESTED IN SOLVING CHALLENGES, IT HELPS TO BE WITH A COMPANY THAT INVESTS IN YOUR SUCCESS.
My parents have always instilled in me the concept of working hard, having fun, thinking long term and planning for the future. FM Global is exciting, innovative and dynamic, and with so many professional opportunities here, it's also a company where you can spend your whole career and never get bored. I remember back during one of my initial interviews with FM Global, a manager shared that over 80% of the office staff had been with the company since they graduated college. That kind of longevity is one of the reasons I decided to work at FM Global. I'm proud to work for a company that invests in its employees and trains them to be the best. The willingness to learn is universal, the exposure to knowledge is infinite and the different career paths are endless. The opportunities to think long term don't get much broader.
See how FM Global and East Kentucky Power Cooperative partner to manage boiler and machinery risk.
FM Global Named One of America’s Best Employers by Forbes
Your financial goals are important to us, so we offer retirement programs that reflect local policy and custom.
Your time at FM Global should be valuable and enriching, with plenty of opportunities for skills development and career growth.
Eligible employees participate in an incentive plan based on the company achieving its annual financial goals.
More information about this job:
FM Global is a leading property insurer of the world's largest businesses, providing more than one-third of FORTUNE 1000-size companies with engineering-based risk management and property insurance solutions. FM Global helps clients maintain continuity in their business operations by drawing upon state-of-the-art loss-prevention engineering and research; risk management skills and support services; tailored risk transfer capabilities; and superior financial strength. To do so, we rely on a dynamic, culturally diverse group of employees, working in more than 100 countries, in a variety of challenging roles.
The Information Security Principal Analyst role is expected to provide guidance and direction to other team members, business representatives, and technical resources and may manage information security projects of significant scope and complexity, which tend to be of high business visibility, as well as, corporate objectives. This person will be recognized by business stakeholders as a subject matter expert in various areas of the organization and be an influential partner in setting business direction and process.
Performs research and analysis regarding security threats, vulnerabilities, mitigating strategies, and industry trends. Performs solution assessments and security assessments of internally developed applications along with third-party providers to ensure that contractual, operational, technical processes and capabilities are in place to adequately protect FM Global’s information or systems, along with adequate contractual protections (where applicable).
Provides results of assessment and security consultation to internal and external stakeholders along with FM Global management regarding security risks and recommended improvement expectations.
Ensures that security services and activities are delivered according to expectations related to quality, customer focused, timeliness, and metrics / reporting.
Successfully develops relationships with business stakeholders and with peers in Information Services to create trust and a positive, collaborative work environment. Proven success in influencing positive outcomes in difficult situations
Bachelor Degree in Information Security / Assurance, Computer Science, Information Technology, or a related discipline, or equivalent work experience or technical training with a non-related degree.
Demonstrated knowledge of information security discipline via relevant advanced industry certification such as: CISSP, SSCP, CISM, CISA, Security+, GIAC, etc.
Minimum of eight (8) years of experience in information technology or business analysis, with at least five (5) years in an information security specific field focused on assessing and validating information security program compliance, completeness, and maturity.
The ideal candidate will also have experience assessing the security of applications and other technical controls.
The resource is expected to be a skilled business consultant and have broad knowledge of information security control capabilities, both process and technology.
Other than information security specific assurance expertise, candidate pool may include: IT auditors, individuals that have consulted at organizations like EY, PwC, KMPG, etc. or individuals that have been responsible for evidence-based compliance / assurance of ISO 27001 and/or 27002, COBIT, NIST/FISMA, FFIEC regulations, etc.
Strong knowledge of:
- Security vulnerabilities, hacker methodologies and other threats.
- Information Security risk and control assessment methodologies.
- Operating systems, networks and secure application development
- Working knowledge of MS Office suite.
- Expertise in at least one security, technical or risk discipline, demonstrated by relevant industry certification(s).
- Ability to leverage various trusted sources of information (articles, webinars, Internet, etc.) to gain accurate knowledge of current security threats, vulnerabilities, mitigating strategies to address them and then recommend and implement appropriate solutions for the FM Global organization.
- Excellent verbal and written communication skills – including presentations and discussions with senior management and large audiences.
- Strong interpersonal skills.
- Strong collaboration, leadership, decision making and project management skills
- Excellent customer service skills.
- Works collaboratively or independently to deliver appropriate, quality initiatives within budget and on time.
• Must have a strong work ethic, great time management skills and a positive attitude.