IT Governance, Risk & Compliance III

As a Risk Management Specialist, utilizing your broad knowledge and skills, you help guide others and work with them to understand business objectives, risk appetite, and regulatory requirements to guide them in the best direction.

On our team, you will help conduct risk assessments and audits to identify potential risks and vulnerabilities in operations and processes; develop risk management strategies and frameworks to address specific needs; provide advisory on risk mitigation measures, controls and best practices, with ability to negotiate and objectify reasoning; identify emerging risks and trends in the industry and provide proactive recommendations to the business; conduct risk workshops and training sessions to educate the business on risk management principles and practices; assist in developing and implementing risk management policies, standards, controls, procedures and guidelines; analyze and interpret information related to risks, incidents, and losses to identify patterns and trends; collaborate with cross-functional teams to integrate risk management practices into operations by staying updated with the latest industry regulations, standards and best practices in risk management.

Primary Duties & Responsibilities:

• Accountable for executing processes and monitoring, measuring, and reporting on the effectiveness and efficiency of controls to comply with information protection policies and standards.

• Consulting and advising on the need for information protection controls to comply with information protection policies and standards.

• Investigating and responding to information security incidents to minimize impact to the enterprise.

• Accountable for evaluation, creation and publication of information protection policies and standards to establish a foundation for appropriately managing systems and data risks.

• Managing the information protection awareness and training program to motivate and inspire desired conduct.

• Providing subject matter expertise for the information risk management program which may include creation of information protection policies and standards, information protection awareness and training program, evaluating noncompliance issues and appropriate investment decisions.

• Assessing information risks to aid in making appropriate investment decisions.

• Managing noncompliance issues to make appropriate investment decisions.

Qualifications:

• Bachelor's degree with an emphasis in MIS, Business, or related field; or related work experience beyond the minimum required.

• 2-4 years of experience in risk management consulting or a similar role, with a focus on providing strategic risk management solutions.

• Strong knowledge of risk management principles, methodologies, and frameworks

• Experience in conducting risk assessments, audits, and developing risk mitigation strategies.

• Familiarity with industry regulations and standards such as GDPR, HIPAA, ISO 27001, or similar.

• Excellent analytical and problem-solving skills, with the ability to analyze complex risks and recommend effective solutions.

• Strong communication and interpersonal skills, with the ability to build relationships and effectively communicate with clients at all levels of the organization.

• Relevant certifications such as CRISC, CISM, or similar certifications are highly desirable.

Benefits:

• Tuition reimbursement, commuter plans, and paid time off

• Highly competitive compensation that include base salary plus bonus

• Medical/Dental/Vision plans, 401(k), pension program

#LI-Hybrid

Northwestern Mutual pays on a geographic-specific salary structure and placement in the salary range for this position will be determined by a number of factors including the skills, education, training, credentials and experience of the candidate; the scope, complexity as well as the cost of labor in the market; and other conditions of employment. At Northwestern Mutual, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. Please note that the salary range listed in the posting is the standard pay structure. Positions in certain locations (such as California) may provide an increase on the standard pay structure based on the location. Please click here for additiona l information relating to location-based pay structures.

We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.

If you work or would be working in California, Colorado, New York City, Washington or outside of a Corporate location, please click here for information pertaining to compensation and benefits.

We're excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and commitment to diversity and inclusion.

• Flexible work schedules
• Concierge service
• Comprehensive benefits
• Employee resource groups