Arthur J. Gallagher & Co., one of the world's largest insurance brokerage and risk management services firms, provides a full range of retail and wholesale property/casualty (P/C) brokerage and alternative risk transfer services globally, as well as employee benefit brokerage, consulting and actuarial services. Gallagher also offers claims and information management, risk control consulting and appraisal services to clients around the world. If you're looking for a professional career with an industry leader then you have come to the right place. Wherever your interests lie, we're sure you will agree on one thing: our continued prosperity hinges on our greatest resource -- our people.
Gallagher Technology Services (GTS) provides and maintains quality, value-added core and common applications and information management solutions to enable the business strategies of Gallagher and its operating divisions. Position Summary
The Global Technology Risk and Compliance Analyst is responsible for company-wide monitoring and support of IT governance, risk management, and compliance processes and procedures. This position supports the refinement of existing processes and procedures and the definition and implementation of new processes and procedures to adhere to compliance standards, to support IT policies, and to meet best practices. The Global Technology Risk and Compliance Analyst coordinates with internal and external auditors and the SOX testing team, and coordinates audit and assessment activities throughout the Corporate and Division technology organizations. Essential Duties and Responsibilities
Global Technology Risk and Compliance Analyst responsibilities:
- Maintain and promote the Global IT Policies and Standards Manual (GITPSM), including assistance with periodic control assessments, throughout all divisions and corporate departments.
- Maintain and distribute metrics on IT compliance and related control activities.
- Provide oversight and monitoring for Corporate compliance tasks.
- Support internal and external audit activities by assisting with project planning, documentation requests, reporting and remediation efforts.
- Support the bi-annual global and ad-hoc divisional IT Risk Assessments.
- Support systems which enable IT Compliance functions including but not limited to IT Policy Manual, Internal Review, and Application Inventory.
- Stay abreast of external requirements, trends, and best practices.
- Assess changes to the IT environment, external requirements, and standards and determine their impact to IT policies, processes, and controls
- Provide guidance to management and staff on external requirements, audit concerns, and internal control best practices.
- Consult with divisional IT Compliance Leads to ensure a consistent approach is followed during execution of compliance processes and procedures.
- Develop and maintain relationships with key stakeholders and technology staff to ensure that communication is open and ongoing.
- Experience coordinating IT compliance and audit activities and supporting compliance requirements (e.g. SOX 404) in a large IT organization.
- Familiarity with security and control standards, frameworks, and best practices (e.g. ISO 27001, NIST, COBIT, COSO)
- Bachelor's Degree in Business, Information Technology, Engineering or related field
- Familiarity with SOC1/SOC2 reporting and the ability to coordinate input across multiple teams.
- CISA, CISM, CGEIT, CISSP or equivalent IT audit and controls related certification
- Experience working with third party vendors to complete assessments and compliance projects as required.
U.S. Eligibility Requirements
- Ability to collaborate effectively with technology, audit, and finance personnel at many levels
- Strong analytical and problem solving skills
- Excellent communication skills
- Excellent organization skills
- Strong attention to detail
- Ability to work at a fast pace and cope with conflicting deadlines
- Proven ability to deliver excellent customer service
- Dependable, hardworking, professional, self-starter, able to work well with cross functional teams
Interested candidates must submit an application and resume/CV online to be considered
- Must be 18 years of age or older
- Must be willing to submit to a background investigation; any offer of employment is conditioned upon the successful completion of a background investigation
- Must have unrestricted work authorization to work in the United States. For U.S. employment opportunities, Gallagher hires U.S. citizens, permanent residents, asylees, refugees, and temporary residents. Temporary residence does not include those with non-immigrant work authorization (F, J, H or L visas), such as students in practical training status. Exceptions to these requirements will be determined based on shortage of qualified candidates with a particular skill. Gallagher will require proof of work authorization
- Must be willing to execute Gallagher's Employee Agreement, or the Non-Disclosure and Confidentiality Agreement, which requires, among other things, post-employment obligations relating to non-solicitation, confidentiality and non-disclosure
Gallagher believes that all persons are entitled to equal employment opportunity and does not discriminate against nor favor any applicant because of race, color, religion, sex, age, veteran status, disability, national origin, or any other legally protected status. Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination. In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified applicant with a disability, unless the accommodation would impose an undue hardship on the operation of our business.