P

Information Security Compliance Administrator

Primerica
Full-time
On-site
United States

Join Our Team

In 2022, the Atlanta Journal-Constitution named Primerica one of the best places to work for the ninth consecutive year. Also in 2022, Primerica was named one of the Best Employers for Diversity by Forbes for the second consecutive year. Forbes also named Primerica as one of America’s best Insurance companies for 2022. Primerica ranks 6th among 25 companies included in the Term Life Insurance category. Over the past seven years Primerica has consistently been voted Best Employer by Gwinnett Magazine in its special "Best of Gwinnett" winner editions. Primerica is a great place to work! Join our team to experience what it’s like to work at “one of the best places to work in the metro Atlanta”.

About this Position

The Information Security Compliance Administrator is responsible for maintaining compliance with Information Security Risk Assessment activities. Including security testing as well as third party assessments in accordance with the compliance review schedule and as new development and/or newly introduced applications, ips, and vendors are identified which require security assessment.

Hybrid Role

Salary: $70K

Responsibilities & Qualifications

The Information Security Compliance Administrator position duties include:

  • Coordinates application security test scoping calls with testing vendors, business leaders and vendors.
  • Expense approval paperwork for test engagements and credentials required for testers to execute tests, test results distribution and recordkeeping, and meetings between Primerica business leaders, programmers, testers and vendors to review and resolve identified vulnerabilities. 
  • Ensures that Business Information Security Officers in the business units (BISOs) successfully and timely complete the remediation plan or exception request process for outstanding issues identified through security tests or third party assessments. 
  • Supports the administrator of the Governance, Risk and Compliance system, responding to requests for reports for users, completing access control requests for submission to ISA, and acquiring a functional knowledge of the GRC tool. 
  • Closely monitor reporting from the GRC system, working with minimal supervision, to ensure and maintain compliance with policy regarding compliance requirements for information security tests and assessments.

ESSENTIAL SKILLS

  • Competency in all Information Security and Vulnerability Management policies and processes.
  • Use of GRC system for accurate recordkeeping and tracking of activities and results.
  • Strong organizational, verbal and communication skills
  • Strong interpersonal skills with the ability to work well with peers and management, able to manage deadlines while interacting with diverse users across the company and in the vendor community.

EXPERIENCE

  • College degree in Information Technology (preferred)
  • 5 years of work experience in business processes requiring deadline and compliance management, attention to detail and accuracy, and documentation fulfillment
  • Experience and capability to fulfill deliverables involving deadlines, documentation, with high degree of accuracy.

RESPONSIBILITIES

  • Performs technical duties:
  • Performs background analysis through research, interviews / meetings with business areas to effectively identify in scope applications and vendors subject to the information security compliance requirements for vulnerability threat management, understand desired results and resolve challenges
  • Document all relevant details associated with testing and assessment engagements according to established standards; develops access control chart, vulnerability assessment preparatory questionnaire, collects application compliance questionnaire, properly and timely records data in the GRC system regarding these activities, and uses Microsoft Word, Excel and other Microsoft products as needed to support these activities
  • Develops reporting as needed to support the CISO, CIO, and others in the fulfillment of information management regarding information security compliance


Project Responsibilities

  • Participates in security testing and assessment engagement initiation, planning, and coordination with other IT teams and resources, business leaders, and vendors
  • Coordinates with business teams on appropriate work efforts for their areas
  • Creates and/or updates system documentation as appropriate based on project assignment
  • Serves as liaison between security testing vendors and developers, business leaders, vendor partners, and senior management
  • Adheres to and complies with all applicable Technology Management Policies and supports education of these policies across the company

#Dice

#LI-SH1

FLSA status:
This position is exempt (not eligible for overtime pay):

Yes

Our Benefits:

  • Day one health, dental, and vision insurance

  • 401(k) Plan with competitive employer match

  • Vacation, sick, holiday and volunteer time off

  • Life and disability insurance

  • Flexible Spending Account & Health Savings Account

  • Professional development

  • Tuition reimbursement

  • Company-sponsored social and philanthropy events

It has been and will continue to be the policy of Primerica, Inc., and its subsidiaries to be an Equal Opportunity Employer. We provide equal opportunity to all qualified individuals regardless of race, sex, color, religious creed, religion, national origin, citizenship status, age, disability, pregnancy, ancestry, military service or veteran status, genetic or carrier status, marital status, sexual orientation, or any classification protected by applicable federal, state or local laws.

At Primerica, we believe that diversity and inclusion are critical to our future and our mission – creating a foundation for a creative workplace that leads to innovation, growth, and profitability. Through a variety of programs and initiatives, we invest in each employee, seeking to ensure that our people are not only respected as individuals, but also truly valued for their unique perspectives.