Job Classification:
Technology - Information Security

Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability and efficiency? The Technology and Data team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you'll unlock an exciting and impactful career - all while growing your skills and advancing your profession at one of the world's leading financial services institutions.

Your Team & Role

As the Vice President, Security Advisor of PGIM, you will lead the information security program for PGIM as part of Prudential's Information Security organization. The role will be responsible for partnering and providing guidance to PGIM's senior management and overall organization, along with information security and technology professionals to mitigate risks and enhance the security postures of information systems and data assets. You will be at the forefront of the Information Security Office's (ISO) mission representing PGIM, overseeing subject matter security expertise, event support, strategy formulation and implementation. As an information security professional, you will bring excellent problem solving, communication and teamwork skills, along with agile ways of working, strong business insight, an inclusive leadership attitude and a continuous learning focus to all that you do.

• As a member of the Information Security Office Leadership Team, contribute meaningfully to safeguarding the confidentiality, integrity, and availability of Prudential's digital and information assets, globally.
• Provide PGIM business and technology perspective to Technology & Data and the ISO organization when developing and refining Prudential's enterprise information security strategy, policies/standards, processes and capabilities.
• Lead the implementation of the enterprise-wide information security strategy and standards across the PGIM affiliates globally.
• Serve as a thought leader, both internally and externally, to develop and implement comprehensive security strategy, policies, procedures, and controls, ensuring their effectiveness with the PGIM affiliates needs
• Ensure that the security policies, procedures and controls are communicated effectively across PGIM, promoting awareness and understanding
• Establish processes to monitor adherence to the security standards across all PGIM affiliates
• Build and maintain strong relationships across ISO, CTO, GT Risk Advisors, PGIM technology, and other business leaders to create a holistic implementation roadmap to deploy strategic security platforms, remove technical debt and provide guidance, analysis, and support during implementation.
• Be the point of contact for PGIM during security incidents and events
• Proactively identify potential risks and opportunities as PGIM implements new technology and processes, while driving recommendations on security decisions and initiatives
• Collaborate on incident response and operational resiliency processes with control partners across PGIM and Technology & Data
• Participate and provide information security and technology risk as part of the emerging technology frameworks as PGIM considers the risks when evaluating these new technologies.
• Partner with Operating Risk to focus on technology risks, including assessments, issues and action plans and internal audits across PGIM.

• Bachelor of Information Security, Computer Science or Engineering or experience in related fields
• Lead and effectively leverage diverse ideas, experiences, thoughts and perspectives to the benefit of the organization
• Knowledge of agile development methodologies and Test-Driven Development (TDD)
• Knowledge of business concepts, tools and processes that are needed for making sound decisions in the context of the company's business
• Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges
• Excellent problem solving, communication and collaboration skills
• Significant experience and/or deep expertise with the following:
  • NIST and ISO 27000 Information Security Standards
  • Information Security Control Standards and Engineering Specifications
  • Identity and Access Management
  • Vulnerability Management
  • Security Architecture
  • Incident Response and Crisis Management
  • Compliance Monitoring processes
  • Application Security frameworks/practices
• Preferred qualifications:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)

• Join a team and culture where your voice matters; where every day, your work transforms our experiences to make lives better. As you put your skills to use, we'll help you make an even bigger impact with learning experiences that can grow your technical AND leadership capabilities. You'll be surprised by what this rock-solid organization has in store for you.