Director - IT Risk Management at The Auto Club Group

It's a great time to join AAA The Auto Club Group!JOIN THE TEAM COMMITTED TO DRIVING YOUR CAREER FORWARDJob Type:Full timeExempt/Non Exempt:SalaryJob Description:Director - IT Risk Management- The Auto Club GroupWhat you will do: The Director of IT Risk leads the IT risk management program, quantifies risk appetites and tolerances, and provides advisory support as part of the Enterprise Risk Management team.Primary Duties and Responsibilities:Develop and implement risk management policies, standards, and processesEnsure alignment with company objectives and regulatory requirementsTesting and monitoring of 1st line access reviews for general users, privileged users, and passwordsManage internal and external IT risk assessmentsManage a team of risk professionals, ensuring continuous training and developmentReport key performance/risk indicators to senior leadershipQuantify risk appetite and mitigation plans related to IT systemsCollaborate with IT to maintain an IT risk register and identify risk ownershipAssemble stress scenarios related to IT risksIdentify emerging threats, technologies, and regulationsConduct training to company stakeholders on IT riskContribute to Enterprise Risk Management team's reporting and processes (e.g. key risks, watch list risks, AI Systems Program)Supervisory Responsibilities:Manage a team of professionals dedicated to assessing, monitoring and reporting on IT risk across the organization.How you will benefit:Director - IT Risk Management will earn a competitive salary of $145,000 - $163,000 annually with annual bonus potential based on performance.Excellent and comprehensive benefits packages are just another reason to work for the Auto Club Group. Benefits include:401k MatchMedicalDentalVisionPTOPaid HolidaysTuition ReimbursementWe're looking for candidates who: Required Qualifications: Education:Bachelor's degree in information technology, cybersecurity, risk management, computer science, or related areaExperience:10+ years of experience in IT risk management, cybersecurity, or related fields, including at least 5 years in a people management role with direct supervisory responsibilitiesHands on experience implementing IT risk management frameworks such as NIST CSF or COBIT) in the insurance or financial services industryStrong ability to evaluate complex IT environments and effectively communicate risk in clear business-related termsKnowledge of:Property/casualty insurance industry operations and relevant regulatory requirements (e.g. NAIC Model Law, PCI-DSS)Internal controls and core IT technologies and processes (e.g. network systems, operating systems, databases, change control tools and processes, computer systems operations, application and system development, help desk and incident monitoring, information security, data backup, retention and recovery, IT vendor management, asset management, disaster recoverySkills:Strong written and verbal communication skillsStrategic thinking and business acumenSound judgement and decision-making in uncertain or evolving conditionsExperience leading and developing teamsClearly present complex issues, especially when translating between third line or external audit/assurance teams and first line risk and controls ownersInfluence and collaborate with stakeholders across various levels of managementIdentify, assess, and prioritize IT risks effectivelyManage multiple tasks and work collaboratively across teamsCommunicate risk insights and updates to business and IT leadership, boards, committees, and other key stakeholdersPreferred Qualifications:Education:Master's degree in Information Technology, Cybersecurity, Risk Management, Computer Science, or related area; MBA also consideredOne or more of the following professional certifications such as CISA, CISM, CRISC, or CISSP are strongly preferred8+ years of experience leading a team of IT professionals8+ years in planning, designing, and implementing IT systemsPractical Experience with:IT risk frameworks (e.g. NIST CSF, COBIT) in the insurance or financial services industryIT systems and technologies including ServiceNow, Saviynt, Workday, SAP, Salesforce, GuidewireIT risk management for emerging technologies such as AI, machine learning, cloud computing, process automation, data analytics, etc.Work EnvironmentThis is a hybrid work arrangement (time spent in office and remote). Depending on the employee's role and leadership's assessment, some employees will come in to an ACG facility on a weekly basis, a monthly basis, or on an "as needed" basis for key meetings and collaborative activities. Most employees will be required to come into the office, at a minimum, for important departmental meetings or team building events.Who We AreBecome a part of something bigger.The Auto Club Group (ACG) provides membership, travel, insurance, and financial service offerings to approximately 14+ million members and customers across 14 states and 2 U.S. territories through AAA, Meemic, and Fremont brands. ACG belongs to the national AAA federation and is the second largest AAA club in North America.By continuing to invest in more advanced technology, pursuing innovative products, and hiring a highly skilled workforce, AAA continues to build upon its heritage of providing quality service and helping our members enjoy life's journey through insurance, travel, financial services, and roadside assistance.And when you join our team, one of the first things you'll notice is that same, whole-hearted, enthusiastic advocacy for each other.We have positions available for every walk of life! AAA prides itself on creating an inclusive and welcoming environment of diverse backgrounds, experiences, and viewpoints, realizing our differences make us stronger.To learn more about AAA The Auto Club Group visit www.aaa.comImportant Note:ACG's Compensation philosophy is to provide a market-competitive structure of fair, equitable and performance-based pay to attract and retain excellent talent that will enable ACG to meet its short and long-term goals. ACG utilizes a geographic pay differential as part of the base salary compensation program. Pay ranges outlined in this posting are based on the various ranges within the geographic areas which ACG operates. Salary at time of offer is determined based on these and other factors as associated with the job and job level.The above statements describe the principal and essential functions, but not all functions that may be inherent in the job. This job requires the ability to perform duties contained in the job description for this position, including, but not limited to, the above requirements. Reasonable accommodations will be made for otherwise qualified applicants, as needed, to enable them to fulfill these requirements.The Auto Club Group, and all its affiliated companies, is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, disability or protected veteran status.Regular and reliable attendance is essential for the function of this job.AAA The Auto Club Group is committed to providing a safe workplace. Every applicant offered employment within The Auto Club Group will be required to consent to a background and drug screen based on the requirements of the position.