Business Information Security Officer (BISO) - (National Warranty Business)

| Phoenix – Mesa – Scottsdale, AZ
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Job Summary
The Business Information Security Officer will be a member of the Global Information Security (IS) organization Responsible for providing management, oversight and direction for Information Security for CNA National Warranty, in alignment with the overarching Information Security strategy and guidelines of CNA.
You will work closely with CNA National Warranty Chief Operations Officer (COO) and other Technology leaders and will be supporting the group/team by developing a deep understanding of the business in order to have specialized information security risk-based discussions. This relationship will ensure a focus on the right risk priorities. You will also provide guidance on information security topics, policies, and controls.
Essential Duties & Responsibilities
Performs a combination of duties in accordance with departmental guidelines:
  1. Liaises between CNA Information Security and CNA National Warranty IT team to implement Information Security policies, processes and procedures and advises CNA National management on risk issues related to information security and recommends actions in support of the CNA's wider risk management and compliance programs.
  2. Develop a robust understanding of National Warranty's operating model and client risk factors to provide a balanced perspective on security risk mitigation measures. Collaborate with business and technology leaders so that desired security outcomes can be accommodated in partnership with CNA's business objectives.
  3. Oversees IT risk management for CNA National Warranty, including the identification, analysis and measurement of risks; monitoring and reporting on IT risks and disposition of risks in partnership with CNA Information Security and Risk Management teams.
  4. Establishes and directs the design, development, testing and implementation of Information Security strategies, plans, products and other access control techniques. Identifies emerging vulnerabilities, evaluates associated risks and threats and provides countermeasures in partnership with CNA Information Security.
  5. Manages the reporting, investigation and resolution of information security incidents. Works with and consults with business leaders on potential data breaches. Oversees digital forensics activities to support HR, Legal or other stakeholders while maintaining appropriate chain of custody.
  6. Responsible for implementing security standards, procedures and guidelines to prevent the unauthorized use, release, modification or destruction of data across multiple platforms and environments, in alignment with CNA corporate standards.
  7. Provides insights on emerging security issues to CNA National Warranty leadership and/or CNA Information Security team and provides guidance and advocacy regarding the prioritization of CNA investments that impact information security
  8. Oversees staff supporting the Office of the General Counsel in the collection, delivery and presentation of electronic evidence regarding litigation for and against the company. Provides services to manage the full lifecycle of electronically stored information to those ends.
  9. Works closely with Corporate Security and Safety to ensure common approach to threat and intelligence analysis, risk management, training and awareness, compliance, and crisis management.
  10. Ability to quantify the security risk issues/concerns from a financial impact to the firm perspective. Understand and incorporate resource availability so security mitigation risk recommendations are realistic and achievable within CNA's budget, or partner with leadership on securing necessary funding to support these measures.

May perform additional duties as assigned.
1. Maintain contact with industry security standard setting groups and awareness of State and Federal legislation and regulations pertaining to data privacy, information security and business continuity.
2. May be called upon to speak to customers or prospects about CNA's Information Security and Data protection capabilities.
3. Direct and lead risk assessment and management processes for third party vendors and suppliers
4. Evaluate new projects at CNA National Warranty to ensure that security issues are proactively identified and appropriately remediated. Provide transparency into risks to senior business leaders.
5. Develop or adapt communications and related campaigns for information security awareness among CNA National Warranty staff.
Reporting Relationship
This position reports directly to CNA's SVP & Chief Information Security, with dotted line reporting to CIO of CNA National Warranty.
Skills, Knowledge & Abilities
1. Senior level understanding of multiple aspects of information security, risk management and business continuity management, including: security policies, security and risk management frameworks, disaster recovery techniques, vulnerability management, security operations, access control and security incident management.
2. Senior level knowledge of regulations (e.g. SOX, HIPAA, privacy, etc.) and internal controls.
3. Excellent ability to influence change in corporate understanding and adoption of information security concepts.
4. Excellent communications and interpersonal skills and ability to work effectively with peers; senior executives in IT and the business, and internal/external stakeholders.
5. Ability to exercise professional judgment and assume responsibility for decisions which have impact on people, quality of service and costs.
6. Advanced computer skills.
7. Preferred insurance industry knowledge.
Education & Experience
1. Bachelor's degree with Master's preferred in Computer Science or related discipline, or equivalent work experience.
2. Typically a minimum of 10 years of experience in information security or related areas.
3. Applicable certifications preferred (CISSP, CISA, etc.)
*LI-KC1
Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • .NETLanguages
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PerlLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • jQueryLibraries
    • jQuery UILibraries
    • ReactLibraries
    • AngularJSFrameworks
    • Node.jsFrameworks
    • SpringFrameworks
    • AccessDatabases
    • DB2Databases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • Google AnalyticsAnalytics
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • SalesforceCRM
    • SendGridEmail
    • MarketoLead Gen

What are CNA Perks + Benefits

CNA Benefits Overview

One of the many advantages of working at CNA is the benefits program we offer you and your eligible dependents,
beginning on the first day of your employment. The program features a variety of plans that provide health care
benefits, well-being, disability and survivor protection, and 401(k) savings, among others. Below are highlights
of the offerings.

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Open door policy
Team owned deliverables
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Someone's primary function is managing the company’s diversity and inclusion initiatives
Diversity Employee Resource Groups
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Onsite Gym
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Adoption Assistance
Vacation & Time Off Benefits
Generous PTO
Paid Holidays
Paid Sick Days
Perks & Discounts
Relocation Assistance
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Online course subscriptions available
More Jobs at CNA180 open jobs
All Jobs
Finance
Data + Analytics
Dev + Engineer
HR + Recruiting
Internships
Legal
Marketing
Operations
Product
Project Mgmt
Sales
Content
Finance
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Developer
new
Chicago, IL
Finance
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Sales
new
Philadelphia, PA
HR + Recruiting
new
Chicago, IL
Developer
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Content
new
Chicago, IL
Operations
new
Lake Mary
Operations
new
Lisle
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Lake Mary
Operations
new
Lisle
Operations
new
Sioux Falls
Operations
new
Wyomissing
Operations
new
Lake Mary
Data + Analytics
new
Chicago, IL
Operations
new
Dallas-Fort Worth, TX
Product
new
Chicago, IL
Sales
new
Lake Mary
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Finance
new
Chicago, IL
Finance
new
Chicago, IL
Finance
new
Chicago, IL
Operations
new
Lisle
Finance
new
Chicago, IL
Project Mgmt
new
Chicago, IL
Developer
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Sioux Falls
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Sales
new
Melville
Sales
new
Philadelphia, PA
Sales
new
Chicago, IL
Operations
new
Chicago, IL
HR + Recruiting
new
Chicago, IL
Developer
new
Wyomissing
Data + Analytics
new
Chicago, IL
Content
new
Dallas-Fort Worth, TX
Operations
new
Chicago, IL
Developer
new
Chicago, IL
Operations
new
Chicago, IL
Finance
new
Chicago, IL
Sales
new
Minneapolis–Saint Paul, MN
Finance
new
Dallas-Fort Worth, TX
Marketing
new
Chicago, IL
Operations
new
Wyomissing
Finance
new
Kansas City, MO
Operations
new
Phoenix – Mesa – Scottsdale, AZ
Data + Analytics
new
Detroit, MI
Operations
new
Minneapolis–Saint Paul, MN
HR + Recruiting
new
Chicago, IL
HR + Recruiting
new
Chicago, IL
Finance
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Developer
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Finance
new
Houston, TX
Finance
new
Dallas-Fort Worth, TX
Finance
new
Minneapolis–Saint Paul, MN
Project Mgmt
new
Chicago, IL
Developer
new
Chicago, IL
Finance
new
Chicago, IL
Operations
new
Miami, FL
Data + Analytics
new
Chicago, IL
Internships
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Finance
new
Lake Mary
HR + Recruiting
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Finance
new
Philadelphia, PA
Finance
new
Dallas-Fort Worth, TX
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView CNA's full profileSee more CNA jobs