Director - Data Security at CNA (Chicago, IL)

| Chicago, IL | Hybrid
Sorry, this job was removed at 1:54 a.m. (CST) on Saturday, February 12, 2022
Find out who's hiring remotely in Chicago, IL.
See all Remote Data + Analytics jobs in Chicago, IL
By clicking Apply Now you agree to share your profile information with the hiring company.
Job Summary
Leadership position responsible for spearheading the vision design and implementation of data security controls for CNA. This position leads the data security team develops data security strategies and conducts data security readiness assessments for the selection development and implementation of enterprise data security standards. This position will focus on designing data encryption programs developing policies and procedures and strategy. Additional responsibilities include data classification data privacy/risk assessments and implementation of programs and data protection as a service. This position also has exposure to a range of Data Security technologies ranging from Data Loss Prevention (DLP) Cloud Access Security Brokers (CASB) DLP features Encryption/Tokenization Digital Rights Management Data Protection and Data Discovery across Structured Unstructured and Cloud.
Essential Duties & Responsibilities
Performs a combination of duties in accordance with departmental guidelines:
  • Develops coordinates and is accountable for the Secure Data Strategy - Embedding security into the overall approach and vision for data in an organization.
  • Builds leads and has full management responsibility for the performance and development of a team of experienced data security professionals.
  • Oversees Secure Data Integration - Incorporating secure technological and business processes to align data from various sources.
  • Data Protection - Provides capabilities layered on top of data at rest or in motion to secure the contents from unauthorized access.
  • Directs implementation of technical capabilities such as rights management to enforce the movement or transmission of data.
  • Data Security in the Cloud - Implements technical capabilities to protect and secure data in the cloud and to protect and secure structured and unstructured database assets.
  • Database Security - Implements technical capabilities to protect and secure structured and unstructured database assets.
  • Secures Data Analytics - Collects and analyzes business and event data to drive security value and enables the utilization of data as a business asset.
  • Documents and advises on areas of security improvement that balances risk with business operations and do not diminish efficiencies or innovation.
  • In collaboration with Legal identifies current and potential legal and regulatory issues affecting information security and assesses their impact on CNA's security and technology teams.

May perform additional duties as assigned.
Reporting Relationship
Typically AVP or above
Skills Knowledge & Abilities
  • Expert level knowledge of data security concepts.
  • Proven ability to effectively lead coach and develop a data security group.
  • Strong knowledge of the insurance industry its products and services.
  • Strong knowledge of data security technical solutions (e.g. data loss prevention classification inventorying tools data discovery).
  • Expert knowledge of traditional and modern cloud data solutions.
  • Ability to assess risks in line with information security objectives and risk tolerance of the institution. Proven conceptual analytical and evaluation skills.
  • Excellent interpersonal verbal presentation and written communication skills with the ability to effectively interact with internal and external business partners.
  • Ability to work well independently under pressure and to meet tight deadlines.
  • Excellent project management skills with ability to organize prioritize and plan effectively to meet project goals.
  • Expert knowledge of privacy/data standards and regulations local domestic and global (State Level Data Protection ISO GAPP NIST 800 53 HIPPA HiTrust Privacy by Design GDPR EU Data Protection Directives CCPA APEC Privacy Framework.

Education & Experience
  • Bachelor's Degree with Master's preferred in Computer Science or related discipline or equivalent.
  • Typically a minimum of ten years of IT Security experience preferably with recent cloud security experience.
  • Typically a minimum of five years of security architecture experience designing and implementing data security solutions involving data encryption.
  • Typically a minimum of five years of experience assessing or building programs in data protection: data encryption (FPE) tokenization masking and key management
  • Typically a minimum of three years in asset and data discovery tooling (e.g. ServiceNow Varonis Netwrix)
  • Typically a minimum of five years of experience in data encryption solutions within cloud environments (e.g. AWS Azure GCP)
  • Typically a minimum of five years of hands-on experience with Data Security vendors product capabilities and solutions focus on Data Encryption and not limited to Data Loss Prevention Data Rights Management Data Classification and Data Privacy
  • Experience and background in security metrics creation and reporting specifically in the data space
Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PerlLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • jQueryLibraries
    • jQuery UILibraries
    • ReactLibraries
    • Node.jsFrameworks
    • SpringFrameworks
    • AccessDatabases
    • DB2Databases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • Google AnalyticsAnalytics
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • SalesforceCRM
    • SendGridEmail
    • MarketoLead Gen

An Insider's view of CNA

How would you describe the company’s work-life balance?

Work-life balance has always been a priority for me. It always will be. CNA’s hybrid working model allows me to not only maximize collaboration with my peers but also take advantage of increased flexibility by combining remote and in-office work. I’m empowered to take control of my schedule based on what works best for me and my team.

Alison Massey

Agile Scrum Master Consultant

How do you collaborate with other teams in the company?

On the Security Advisory team, collaboration is key to what we do. We sit at a unique intersection of security goals and business objectives. By working across nearly every IT team at CNA, we balance the need for maintaining secure initiatives and keeping projects on track. It’s our job to find the best, secure path to ‘Yes’ for business requests.

Zach Jones

Director, Security Advisory

How has your career grown since starting at the company?

I joined CNA as a contractor and became a full-time employee after an eight-year contractor journey. I’m passionate about solving technical challenges and CNA allows me to foster that passion. Every day, I learn about emerging technologies. I’m empowered to develop, grow, and create a career that works for me and my lifestyle.

SenthilKumar Asokan

Applications Engineer Senior Specialist

How do your team's ideas influence the company's direction?

Enterprise Architecture creates foundations for IT expectations across CNA. I’m on a team that builds reusable IT assets, communicates best practices, and decides standards for tooling, and more. I influence CNA outside of my role, too, specifically through CNA’s Employee Resource Groups. I’m empowered to influence both IT and our culture of inclusion.

Lisa Smith

Architecture Senior Specialist

What does career growth look like on your team?

Career growth can take on many different forms at CNA, and that’s because there are always opportunities to acquire transferrable skills. On my team specifically, we’re encouraged to identify and work toward development opportunities that matter to us. We’re empowered to make a difference while advancing our careers.

Josie Lee

Director, HR Business Partner

What are CNA Perks + Benefits

CNA Benefits Overview

One of the many advantages of working at CNA is the benefits program we offer you and your eligible dependents,
beginning on the first day of your employment. The program features a variety of plans that provide health care
benefits, well-being, disability and survivor protection, and 401(k) savings, among others. Below are highlights
of the offerings.

Volunteer in local community
Partners with Nonprofits
Friends outside of work
Open door policy
Team owned deliverables
Group brainstorming sessions
Open office floor plan
Dedicated Diversity/Inclusion Staff
Diversity Employee Resource Groups
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Onsite Gym
Mental Health Benefits
Retirement & Stock Options Benefits
401(K) Matching
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Adoption Assistance
Vacation & Time Off Benefits
Generous PTO
Paid Holidays
Paid Sick Days
Perks & Discounts
Commuter Benefits
Some Meals Provided
Relocation Assistance
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Cross functional training encouraged
Online course subscriptions available
Paid industry certifications

More Jobs at CNA

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about CNAFind similar jobs like this