Aflac ยท 1 day ago
Global Sec Assurance Consult
Columbus, GA
Full-time
Hybrid
Mid, Senior Level
$108K/yr - $135K/yr
5+ years expAflac is a Fortune 500 company and an industry leader in voluntary insurance products. They are seeking a Global Sec Assurance Consultant to maintain cybersecurity controls, assist with risk assessments, and ensure compliance with industry standards.
FinanceFinancial ServicesHealth CareInsurance
Responsibilities
Maintain the cybersecurity control library composed of entity, global and regional controls aligned against the NIST Cybersecurity Framework and utilizing NIST 800-53 controls as a basis and share ideas for control enhancements and maturity opportunities
Maintain the associated control requirements and meta data for the controls as well as the control mapping to laws, regulations, and industry standards
Perform quality review of requests for control requirement changes to ensure proper rigor is consistently in place across all regions
Assist with conducting the annual enterprise risk assessment, including maintaining mapping to the controls
Assist with facilitating the annual Control Owner attestation process in alignment with CAP's procedures
Maintain the control self-testing guidelines which define guidance for Control Owners to perform testing of control design and operating effectiveness
Provide guidance to Control Owner as needed regarding testing documentation, evidence, and other supporting material that can be leveraged by the Control Owner to ensure their test conclusion is properly supported for test of design and operation effectiveness
As assigned, provide support to regional CAP teams (e.g. Japan CAP) regarding CAP processes
Collect remediation plans from Control Owners where control gaps have been identified, and proactively track progress of remediation
Assist with facilitation of independent maturity assessments of the Global Security program against the NIST Cybersecurity framework via the oversight of an independent assessment conducted by a third party
Identify integration points into enterprise processes as well as with disciplines that are outside of the security department but have security related responsibilities to provide holistic view (i.e. Asset Management, Patch Management, Application Development, Architecture, Infrastructure, Third Party Risk Management, and Physical Security)
Assist with producing reporting that is used to communicate the results of attestations and changes affecting the organization's Information Security posture to leadership
Apply the organization's risk tolerance and risk management approach in evaluating the security posture, and escalate matters of significance
Interface with designated stakeholders that own cybersecurity controls and educate them on their control related responsibilities, including providing guidance on reaching the target maturity for each control in the library
Partner with GRC team to effectively utilize GRC solution for assurance related activities and reporting
Align to global security strategies and plans to support the Cyber Assurance Program
Performs other duties as required
Qualification
Required
Excellent verbal and written communication skills with strong attention to detail
Proficient in Japanese when directly supporting the Japan CAP team
Experience applying and assessing industry-recognized security standards for Information Security, Physical Security, Business Continuity, Disaster Recovery, Crisis Management, and IT (Asset Management, Configuration Management, Vulnerability Patching)
Knowledge and experience in Technology Risk Management concepts and control
Managing to regulatory requirements for protecting information assets
Global technology organizational concepts
Principles and methods of all information security disciplines
Knowledge of regulatory protective requirements of personal private information (i.e. FSA, FISC, HIPAA, GLBA, SEC, NYDFS, and financial integrity under Sarbanes-Oxley, etc.)
Knowledge of and in-depth experience in the ability to apply industry-recognized security standards
Knowledge of cloud computing technologies and security best practices
Bachelor's Degree in Computer Science, Information Security, Cybersecurity, business administration or a related field
Five or more years of information technology security experience
Or an equivalent combination of education and experience
Preferred
Certified Information Security Manager (CISM)
Certified Information Systems Auditor (CISA)
Certified Information Systems Security Professional (CISSP)
Benefits
Medical, dental, and vision coverage
Prescription drug coverage
Health care flexible spending
Dependent care flexible spending
Aflac supplemental policies (Accident, Cancer, Critical Illness and Hospital Indemnity offered at no costs to employee)
401(k) plans
Annual bonuses
Opportunity to purchase company stock
11 paid holidays
Up to 20 days PTO to be used for any reason
State-mandated sick leave
Adoption and parental leave
Company
Aflac
Aflac is a company that offers individuals and companies supplemental disability insurance.
10001+ employees
H1B Sponsorship
Aflac has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (8)
2024 (2)
2023 (3)
2022 (7)
2021 (2)
Funding
Current Stage
Public CompanyTotal Funding
unknown1974-06-14IPO
Leadership Team
JR Shamley
SVP National Accounts Business Development & Growth Solutions
Matthew D. Owenby
SVP, Chief Human Resources Officer and Corporate Services Executive
Recent News
Security Week
2026-01-03
2025-12-30
Company data provided by crunchbase