Overview
Legal & General is a leader in Pension Risk Transfer with over 35 years of experience globally, servicing over a million annuitants. Building on our global success, we established our Pension Risk Transfer platform in the US in 2015. The business has grown steadily, and in 2022, we eclipsed $2 billion in premium writing.
At Legal & General Retirement America (LGRA), we aim to secure the retirement of the people we serve and positively impact our communities. We are passionate about what we do and how we do it. This means working with pace and energy to reach our goals and challenging ourselves to achieve more. Our goal is to build a unique environment where the balance between work and life is possible.
Purpose and Objective
The main responsibility of the Information Security Technical Analyst is to support the secure development, implementation, and operation of solutions across the Legal & General Retirement America Division.
Role and Responsibilities
Understand security control requirements, as defined in Legal & General’s security policies, standards, and IT control framework, and translate them into key security patterns and solution designs to advise project managers, Architect teams, and developers across the business.
Maintain awareness of current and emerging security risks and the changing threat landscape and recommend mitigating solutions to project managers, Architect teams, and developers to help ensure security enhancement and controls are pro-actively applied.
Support the assessment and risk analysis of findings from application, Network, and infrastructure security scans analyzing vulnerabilities found and, where necessary, discussing the findings with developers and infrastructure managers to document and sign off on any change in ratings of the findings based on risk and compensating control factors.
Assist in the production of key security reporting for various governance committees and ensuring that KRI’s are accurately reported.
Review the configuration of existing systems or solutions and identify security issues that require a change to its configuration, provide improvement recommendations, and raise any potential risks to help ensure security risks are proactively handled.
Collaborate with organizational change and project leaders to stay ahead of and continuously improve the project lifecycle methodology and security design governance requirements to help ensure security requirements are embedded at the onset of a project.
Assist in the security scoping of penetration tests, assessment of findings, and documenting and signing off on any change in ratings of the findings based on risk and compensating control factors.
Requirements
Degree in an IT security-related course (preferred but not essential) or equivalent experience in computer science, IT, business, or a related field.
Certification in Information Security and/or Information Technology (preferred but not essential) such as CompTIA Security , Microsoft Certified: Security, Compliance, and Identity Fundamentals, SSCP or equivalent.
Expertise in the development of Information Security technical frameworks.
Knowledge of cloud technologies (Azure preferred).
An understanding of general security practices, principles, and technologies such as firewalls, vulnerability management scanning tools, web application firewalls, encryption technologies, identity & access management, etc.
Organized with a demonstrable ability to prioritize feature work, meet deadlines, and apply time effectively.
Strong analytical and problem-solving skills.
Good interpersonal and communication skills and works effectively as a teammate.
Prior experience in delivering highly technical and innovative security engineering/design products.
Prior experience working with a strong security background.
Previous financial services sector experience is preferred but not essential.
Benefits
10 - 25 vacation days depending on experience level and years of service
4 floating holidays & 2 personal days
10 - 15 sick days, depending on years of service
2 paid volunteering days
Summer Fridays
Health benefits, including medical, dental, and vision coverage
Supplemental health benefits and life insurance
6 weeks of paid parental and maternal leave
Immediate vesting into a 401k savings plan with up to 6% company match
100% employer-contributed Pension Plan - Cash Balance Plan after 1 year of service
Flexible Workspace and Arrangements
Tuition and Certification reimbursements
Infertility and domestic partner benefits
The expected hiring compensation range for this position is $83,017 - $99,620 annually. Base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. The current bonus target for the position is 5% of the base salary with a stretch to twice the target, modified for corporate and individual performance.
This role is to be filled outside of the state of Colorado
We are an equal-opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.