IT Security Analyst III

We are Athene. At Athene, we are driven to do more. We are a leading retirement services company that issues, reinsures and acquires retirement savings products designed for the increasing number of individuals and institutions seeking to fund retirement needs. We see every day as a new opportunity to measure ourselves against the best - and then we don't stop until we've set the bar even higher. We're ready to help you achieve more.

Purpose:
Athene is looking for an IT Security Analyst III to serve as a recognized expert on IT risk management. This individual will have an active role in shaping and influencing design and implementation of key information technology strategies as it relates to risks and controls. This role encompasses IT risk management, audit tracking, cybersecurity awareness, as well as IT Governance, Risk, & Compliance (GRC) processes. You will collaborate across IT and with our business partners to assess technology risks and ensure identified issues are tightly managed. You will work in a fun and rapidly changing environment and help shape the future of Athene's cybersecurity program. You will report directly to our CISO.

Accountabilities:

• Facilitate the continued assessment of Compliance processes.
• Lead end-to-end walkthroughs to identify risks, control gaps and improvement opportunities.
• Develop IT governance and compliance-related educational and training materials.
• Understanding of vendor compliance. Understanding of SOC1/SOC2 audit process required.
• Coordinate and facilitate production of SOX requests for external audit.
• Draft responses to internal and external audit findings.
• If needed act as a security project coordinator for multiple small internal projects and enhancements.

Qualifications and Experience:

• Bachelor's Degree or equivalent experience.
• 3+ years of experience in Information Technology, Information Security, Risk Management and compliance.
• Direct experience and working knowledge of GRC module like ServiceNow or other GRC module required.
• Familiarity with Risk Management framework and understand Technology related risk and its impact and likelihood measurement.
• Understanding of modern technical security controls (i.e. firewalls, SIEMS, IPS, HIPS, and web proxies)
• Financial or Insurance industry knowledge.
• Familiarity with SDLC and DevSecOps methodologies.
• Industry-recognized security certifications (such as CISSP).
• Conversant in Jira and Confluence.

Drive. Discipline. Confidence. Focus. Commitment. Learn more about working at Athene.

Athene is a Military Friendly Employer! Learn more about how we support our Veterans.

Athene celebrates diversity, is committed to inclusion and is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, marital status, sexual orientation, veteran status or any other status protected by federal, state or local law.