If you’re passionate about innovation and love working in an environment where you can constantly improve and adopt new technologies to drive business results, then Nationwide’s Information Technology team could be the place for you!
Third Party Cyber Technology Professional - Role Description
Under minimal guidance, the associate in this role will manage innovation and automation efforts focused on improving Nationwide’s third-party risk posture. This role will be accountable for driving the end-to-end product strategy for third party controls and processes that provide coverage for current and emerging cybersecurity threats and risks. This role will partner closely other risk and control organizations, such as Enterprise Risk Management, Procurement and the Cyber Security Operations Center, in order to implement an effective multi-year strategy. This role will work with business led security, risk and control functions, where needed, to drive engagement and participation in the third-party risk management processes overall.
Want more jobs like this?
Get Education jobs in Columbus, OH delivered to your inbox every week.
This role will also perform third-party control assessments to ensure that potential and current Nationwide third-party providers have the appropriate security controls to protect Nationwide’s information, as capacity allows.
Specific skillsets needed across all three areas of responsibility, include:
Cyber Security Skills – Experience and knowledge of cyber security threats and controls, with an emphasis on third-party risks and controls.
Supplier Risk Management – Strong understanding of supplier risk management capabilities, the end-to-end procurement processes and the security controls that are critical in any third-party relationship.
Data Driven Decisioning – Strong ability to analyze data, consume it and use it. With the ability to use the data to achieve buy-in and support from others (convincing others that it meets and/or exceeds requirements). Other related skills include strong skills associated with defining requirements for reporting and dashboards and establishing a process to effectively monitor and take action based on a defined set of controls.
Project Leadership – Key project leadership skills are critical to this role as this role will lead many projects. This individual should have strong organization skills, communication skills, and the ability to effectively coordinate and motivate teams to effectively define and implement solutions related to third-party risk management.
Evaluate and Implement New Technology – The third-party risk management space is evolving and third-party threats continue to increase. The ability to plan, evaluate and implement new and emerging technology solutions designed to monitor and protect against third party risks in innovative ways is a key skill needed in this role.
Innovation and Automation – Innovation and automation has become a big focus across Nationwide. This space is no exception. The ideal candidate would be looking for opportunities to improve processes and gain efficiencies. This will involve the coordination of key stakeholders across various teams to identify and implement solutions. API and scripting skills can be very beneficial in automation of manual tasks.
Executive Presence and Leadership Courage – It is important that this individual have strong written and verbal presentation skills at the senior management level. This individual should also have experience debating issues and topics with senior decision makers and pushing back when necessary.
Compensation grade G5
Job Description Summary
If you’re committed to delivering technology solutions to support a company providing outstanding service to its customers, then Nationwide Technology may be the place for you! Our industry-leading technology workforce personifies an agile work environment and a collaborative, inclusive culture to deliver outstanding solutions and results. If that sounds like something you aspire to, we want to hear from you!
As a Cyber Technology Professional, you'll help protect Nationwide's internal business partners as their "Trusted Security Advisor." You’ll play a vital role in identifying and developing solutions to solve complex cyber and business problems across Nationwide. We'll count on you to assess, report and manage cyber risk through constant interaction with Technology and business leaders.
Job Description
Key Responsibilities:
Improves the cyber risk posture regarding confidentiality and integrity of assigned Business Solution Area (BSA) by identifying, documenting, communicating and reporting cyber risks.
Helps the BSA leader understand and manage risk at an appropriate level through timely communication and metrics.
Completes moderate to complex risk assignment on time, meeting documented and agreed upon milestones.
Perform and tracks moderate consulting efforts resulting in improved cyber posture.
Acts as a conduit between information risk management capability efforts and the BSA, driving the implementation of the capability within the BSA.
Matures application and cloud security constantly, by addressing current and emerging cyber threats.
Work with the Cyber Security Operations Center (CSOC) to manage incident response and privacy events within the BSA.
May perform other responsibilities as assigned.
Reporting Relationships: Reports to Manager, Risk Leader or above.
Typical Skills and Experiences:
Education: Undergraduate studies (bachelor’s degree preferred) in cyber security, management information systems, engineering, math, computer science, data analytics or comparable experience and education strongly preferred. Graduate studies in cyber security, computer science or a related field are a plus.
License/Certification/Designation: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor® (CISA), Certified Business Continuity Professional (CBCP) or another cyber certification preferred.
Experience: Eight or more years of experience in one or more information risk management capabilities and/or information audit systems. Three or more years of experience in technology and project management.
Knowledge, Abilities and Skills: Ability to make decisions and recommendations. Aptitude to influence, build partnerships and set priorities. Superb communication skills to interact with all levels of associates, senior management and/or vendors. Insurance/financial services industry knowledge a plus.
Other criteria, including leadership skills, competencies and experiences may take precedence.
Staffing exceptions to the above must be approved by the hiring manager’s leader and HR Business Partner.
Values: Regularly and consistently demonstrates Nationwide Values.
Job Conditions:
Overtime Eligibility: Not Eligible (Exempt)
Working Conditions: Normal office environment.
ADA: The above statements cover what are generally believed to be principal and essential functions of this job. Specific circumstances may allow or require some people assigned to the job to perform a somewhat different combination of duties.