Old Republic Specialty Insurance Group · 20 hours ago
Security Assurance Analyst
United States
Full-time
Remote
Mid, Senior Level
5+ years expOld Republic Specialty Insurance Group is focused on driving security and compliance initiatives across Subsidiary Operating Centers. The Security Analyst will support the Business Information Security Officer program and ensure alignment with enterprise policies while collaborating with various teams.
Financial ServicesInsuranceProfessional Services
Responsibilities
Fulfill tasks across assigned cybersecurity disciplines to promote project and program support
Assist in risk assessments, application security reviews, and control evaluations to support enterprise security and compliance objectives
Assist in incident response support, acting as a liaison with enterprise and SOC teams
Support GRC service delivery, documentation, and vendor risk management
Support customer security inquiries and vendor risk management activities, including risk communication and remediation tracking
Ability to evaluate threats, vulnerabilities, and business impact
Ability to manage job functions proactively with maximum efficiency and results
Assist in the coordination of internal and external audits, including evidence collection and issue tracking
Develop risk metrics and dashboards to monitor control effectiveness
Familiarity with security concepts (identity management, access controls, network security, etc.)
Help maintain security controls (e.g., anti-phishing, email filtering, DLP)
Strong organizational skills and attention to detail. Build trust and influence through collaboration rather than enforcement
Use security tools and platforms to help internal customers solve problems and work securely, with oversight and guidance
Qualification
Required
Bachelor's degree in Information Security, Computer Science, Risk Management, or a related field. Equivalent practical experience will be considered
Foundational knowledge of cybersecurity concepts and at least one service delivery discipline (e.g., endpoint protection, identity management, vulnerability remediation, or GRC)
5 years of experience in cybersecurity, GRC, or IT operations roles
Ability to work under moderate supervision and take direction from senior team members
Basic understanding of regulatory frameworks such as SOX, HIPAA, GDPR, PIPEDA, OSFI, NYDFS, or NIST CSF
Familiarity with GRC platforms and tooling
Strong communication and collaboration skills, with the ability to engage technical and non-technical stakeholders
Willingness to pursue relevant certifications (e.g., Security+, CGRC, CISA, CISSP)
Experience supporting both GRC and technical cybersecurity teams
Exposure to secure application design principles or SDLC integration
Experience responding to customer security inquiries or supporting vendor risk assessments
Familiarity with audit coordination and evidence management processes
Hands-on experience with cybersecurity technologies or security platforms
Preferred
Professional certifications such as: CompTIA Security+, Certified Governance, Risk, and Compliance (CGRC), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP)
Company
Old Republic Specialty Insurance Group
Old Republic Specialty Insurance Group is the largest business segment within Old Republic International Corporation (NYSE: ORI) and specializes in the property and casualty marketplace.
10001+ employees
Funding
Current Stage
Late StageLeadership Team
Sam Matthis
Chief Operating Officer - Old Republic Allied Management Company
Michael Baumel
Chief Claim Officer
Recent News
2024-12-05
Company data provided by crunchbase