Offer summary

Qualifications:

Bachelor’s degree in Information Security, Computer Science, Legal Studies, or a related field., 5+ years of experience in cybersecurity, data governance, or information risk management., Strong understanding of data classification, data lifecycle management, and regulatory compliance frameworks (e.g., GDPR, CCPA, HIPAA)., Excellent written and verbal communication skills, with professional certifications such as CISM, CISSP, or CDPSE being a plus..

Key responsibilities:

Review, maintain, and update all security and data governance policies and procedures.

Collaborate with cross-functional teams to ensure policies align with regulatory, legal, and business requirements.

Lead the creation and enforcement of a comprehensive data classification policy and implement classification tools.

Act as a liaison between Security, Legal, IT, and business teams to promote data governance awareness and best practices.

Job description

Position Overview:
We seek a highly motivated Senior Security Analyst, Data Security Governance, to lead and support enterprise-wide data governance initiatives. This role will focus on maintaining robust data security policies, ensuring vendor security compliance, and collaborating with Legal and Business Transformation teams to protect proprietary data and drive strategic outcomes.

Key Responsibilities:

Policy Management:
- Review, maintain, and update all security and data governance policies and procedures.
- Collaborate with cross-functional teams to ensure policies align with evolving regulatory, legal, and business requirements.
Vendor Security Governance:
- Work closely with Legal and the Business Transformation team to evaluate third-party vendors for compliance with security and privacy standards.
- Support due diligence processes, vendor assessments, and ongoing monitoring activities.
Data Classification and Protection:
- Lead the creation, rollout, and enforcement of a comprehensive data classification policy.
- Partner with business units and IT to implement classification tools and processes to appropriately handle sensitive and proprietary data.
Governance Oversight:
- Facilitate regular reviews and reporting to track data governance initiatives, identify risks, and propose corrective actions.
- Support audits and internal/external data security and governance assessments, either by the Parent Company, Tokio Marine, or Regulatory Requirements .
Stakeholder Collaboration:
- Act as a liaison between Security, Legal, IT, and business teams to build consensus on governance-related initiatives.
- Promote awareness and training around data governance responsibilities and best practices across the organization.

Qualifications:

Bachelor’s degree in Information Security, Computer Science, Legal Studies, or a related field.
5+ years of experience in cybersecurity, data governance, or information risk management.
Strong understanding of data classification, data lifecycle management, and regulatory compliance frameworks (e.g., GDPR, CCPA, HIPAA).
Experience working with legal and vendor management teams.
Excellent written and verbal communication skills.
Professional certifications such as CISM, CISSP, or CDPSE are a plus.

Requirements:

Ability to work occasional weekends and evening shifts.
Participate in Security on Call Shift.
Highly collaborative, personally and professionally self-aware, and able to interact with employees at all levels of the organization.
Great interpersonal skills and a love for a team environment

The base salary for this role can range from $95,000 to $120,000 based on a full-time work schedule. An individual’s ultimate compensation will vary depending on job-related skills and experience, geographic location, alignment with market data, and equity among other team members with comparable experience

Want to Learn More?