Global Sec Gov & Comp Consult

The Company:  Aflac Incorporated
The Location: 

Remote, US, 31999

The Division:  Global Security
Job Id:  6451

Salary Range: $55,000 - $140,000

Job Posting End Date: 7/31/24

 

We’ve Got You Under Our Wing

We are the duck. We develop and empower our people, cultivate relationships, give back to our community, and celebrate every success along the way. We do it all…The Aflac Way.

 

Aflac, a Fortune 500 company, is an industry leader in voluntary insurance products that pay cash directly to policyholders and one of America's best-known brands. Aflac has been recognized as Fortune’s 50 Best Workplaces for Diversity and as one of World’s Most Ethical Companies by Ethisphere.com.

 

Our business is about being there for people in need. So, ask yourself, are you the duck? If so, there’s a home, and a flourishing career for you at Aflac.

 

Work Designation. Depending on your location within the continental US, this role may be hybrid or remote.

  • If you live within 50 miles of the Aflac offices located in Columbus, GA or Columbia, SC, this role will be hybrid. This means you will be expected to work in the office for at least 60% of the work week. You will work from your home (within the continental US) for the remaining portion of the work week. Details of this schedule will be discussed with your leadership. 
  • If you live more than 50 miles from the Aflac offices located in Columbus, GA or Columbia, SC, this role will be remote. This means you will be expected to work from your home, within the continental US. If the role is remote, there may be occasions that you are requested to come to the office based on business need. Any requests to come to the office would be communicated with you in advance.

 

What does it take to be successful at Aflac?

  • Acting with Integrity
  • Communicating Effectively
  • Pursuing Self-Development
  • Serving Customers
  • Supporting Change
  • Supporting Organizational Goals
  • Working with Diverse Populations

 

What does it take to be successful in this role?

  • Knowledge of information security policies and principles of information handling and protection
  • Strong working knowledge of applicable laws, regulations and industry standards related to compliance and risk management, including guidance documents and enforcement history affecting the life sciences and/or healthcare industries, strongly preferred. Examples include subject matter expertise and drive enhancements for one or more security information security compliance authoritative sources (Gramm-Leach-Bliley Act, FFIEC IT Handbooks, HIPAA, Sarbanes-Oxley (SOX), etc.).
  • Understanding of the regulatory landscape and changes affecting the Global Security program
  • Understanding of risk management methodology identifying: threat, vulnerability, likelihood, impact, and security controls and counter-measures
  • Ability to prepare and present situational updates to varying levels of leadership and varying technical experience
  • Knowledge of developing and consistently reporting against metrics to identify and measure process outputs and process maturity

 

Education & Experience Required

  • Bachelor’s Degree in Computer Science, Information Systems, Information Security, Risk Management or any policy or legal related field
  • Six or more years of relevant work experience in IT Compliance, Risk Management or other related field

Or an equivalent combination of education and experience

 

Education & Experience Preferred

  • Certification in CISA, CISM, CISSP

 

Principal Duties & Responsibilities

  • Supports the development and adoption of up-to-date information security policies, standards and procedures with regulatory requirements and best practices across all Aflac subsidiaries and companies
  • Researches, plans, implements, and monitors compliance systems and initiatives and helps oversee the protection of organizational assets
  • Helps in researching and interpreting regulations and laws to establish compliance standards, and may develop and/or deliver training and communications/change management relative to new standards
  • Assesses organizational systems to determine gaps in compliance and determine opportunities for remediation and planned sustainment
  • Assists in investigating violations of compliance policy, laws, regulations, etc. or conduct on-going monitoring and reporting to ensure remediation
  • Responsible for project management relative to new compliance initiatives, products, or annual processes and may conduct assessments and report on control efficacy, suggest/implement treatment and remediation approaches as well as suggest compensating approaches
  • Support, manage, and ensure adequate coverage of corporate information security policies with information security legal requirements, regulatory mandates, and related industry benchmarks.
  • Support information security related exams, audits, customer requests, and business line needs.
  • Supports the creation and continuous currency of a Global Risk Assessment as required by FFIEC and NY DFS; understands and contributes to inventory of risk register tracking, scoring and associated risk statements. Supports reporting of Global Security risk through US and Global Risk Committees
  • Conducts compliance and policy/standards risk assessments; requests and analyzes documentation necessary to perform appropriate assessment
  • Documents risk exceptions, risk acceptances or informational updates as required, tracks for appropriate remediation plan and to closure and provides clear and concise risk assessment results
  • Develops and maintains regional and global policy exceptions, risk acceptance and policy violation processes
  • Provides evidence and coordinates responses for audits, regulatory reviews and controls testing
  • Reviews responses to Analyst level staff responses to security questionnaires in support of regulatory reviews, sales cycles and other inquiries
  • Ensures issues identified by internal or external audits, compliance assessments, operational testing, or other methods are remediated, appropriately tested and tracked to resolution. Assists in presenting non-remediated issues at appropriate committee levels commiserate with risk
  • Performs operational control testing for the department, documenting and remediating issues. Responsible for operationalizing test scripts for assigned controls as part of the Control Assurance Program (CAP)
  • Performs other duties as required

 

Total Rewards

This compensation range is specific to the job level and takes into account the wide range of factors that are considered in making compensation decisions including, but not limited to: education, experience, licensure, certifications, geographic location, and internal equity. The range has been created in good faith based on information known to Aflac at the time of the posting.  Compensation decisions are dependent on the circumstances of each case. This salary range does not include any potential incentive pay or benefits, however, such information will be provided separately when appropriate. The salary range for this position is $55,000 - $140,000.

 

In addition to the base salary, we offer an array of benefits to meet your needs including medical, dental, and vision coverage, prescription drug coverage, health care flexible spending, dependent care flexible spending, Aflac supplemental policies (Accident, Cancer, Critical Illness and Hospital Indemnity offered at no costs to employee), 401(k) plans, annual bonuses, and an opportunity to purchase company stock.  On an annual basis, you’ll also be offered 11 paid holidays, up to 20 days PTO to be used for any reason, and, if eligible, state mandated sick leave (Washington employees accrue 1 hour sick leave for every 40 hours worked) and other leaves of absence, if eligible, when needed to support your physical, financial, and emotional well-being. Aflac complies with all applicable leave laws, including, but not limited to sick and safe leave, and adoption and parental leave, in all states and localities. #DICE


Nearest Major Market: Columbus GA