MassMutual Financial Group Security Solutions Strategist Architect in Springfield, Massachusetts
Since 1851, MassMutual’s commitment has always been to help people protect their families, support their communities, and help one another. This is why we want to inspire people to Live Mutual. We’re people helping people.
A career with us means you will work alongside exceptional people and be empowered to reach your professional and personal goals. Our employees are the foundation of what makes MassMutual a strong, stable and ethical business. We seek and value unique and varied perspectives and experiences because we believe we are stronger when all voices are heard. We invite you to bring your bright, innovative ideas to MassMutual as we continue to help millions of Americans rely on each other.
Together, we’re stronger.
The Security Solutions Strategist will work as part of the Program Office of the CISO within Enterprise Information Risk Management. Accountable for constructing sound, pragmatic and contemporary Security technology solutions for current and emergent business needs within the context of, and in order to advance, the conformance to established information security policy and standards. At a broader level the Security Solution Strategist is involved in defining a security technology capability and/or solution roadmap and facilitating the implantation of this roadmap. The Security Solution Strategist works with the Enterprise and Solutions Architects, BISOs and EIRM Global Business leads for strategic direction (both conforming to, and helping to define) and plays a key role as a growth/innovation driver and advocate for good design where: The work focuses on the overall architecture, design, build, and integration of security solutions or platforms spanning multiple security / technical and/or business capability domains with cost / strategic implications as a primary driver.
Develop and maintain an information security technology strategy and roadmap in collaboration with Enterprise Architecture, including cost estimates, in response to information risk and security requirements and business strategies and requirements. Conducts enterprise security and vulnerability analyses and threat assessments as part of the Information Risk Management lifecycle. Collects, analyzes, and summarizes information risk & security data and trends. Informs the evolution of non-functional security requirements and control procedures in line with policies & standards and line of business objectives.
Plans security systems and controls by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.
Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation.
Partners with Business Information Risk Officers, Business leads and Technology work Cells to verify security technology implementation and quality assurance – Includes creation and execution of test scripts and prepares system security reports by collecting, analyzing, and summarizing data and trends.
Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.
Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
Eight years of experience in information security systems architecture, controls design and implementation.
Strong subject matter expertise with industry standard information security authoritative sources e.g. COBIT, ISO , NIST and associated architecture control and design methodologies
Has a deep understanding of Information security for computing platforms
Ability to deal with the ambiguity associated with working in a fast paced and changing environment
Demonstrated success with developing a risk-aware culture through partnership with peer technology teams and supported LOB(s)
Proficient problem-solving skills using data analytics and risk quantification – FAIR risk analysis experience or equivalent preferred
Demonstrated success in guiding, and influencing sound risk and security remediation strategies aligned with core business objectives and risk appetite
Strong leadership qualities and business acumen able to deal with all levels of the organization
Sound business judgment and decision making skills
Able to drive and influence organizational change
Strong communication an interpersonal skills
Strong collaboration skills
Authorized to work in the U.S. without sponsorship now or in the future
Information security engineering and architecture a plus
Experience or knowledge in life insurance and/or financial services products and services
Ability to translate information security and technical controls into Business terms that are easily understood
Bachelor degree in information security/technology or associated discipline and CISSP required; Preferable Certifications: CRISC
Work in Springfield/Enfield Office/ Boston Office
Flexible work arrangement is an option
Ranked No. 93 in the annual FORTUNE ® 500 Ranking (FORTUNE ® Magazine, June 2018) and recognized as a World’s Most Ethical Company by Ethisphere, MassMutual is guided by a single purpose: We help people secure their future and protect the ones they love. As a company owned by our policyowners, we are defined by mutuality and our vision to put customers first. It’s more than our company structure – it’s our way of life. We are a company of people protecting people. Our company exists because people are willing to share risk and resources, and rely on each other when it counts. At MassMutual, we Live Mutual.
Focus on the Customer: We understand our customers well and look for every opportunity to deliver an experience that is clear, easy, personal, human, empowering and trustworthy.
Act with Integrity: We deliver on our promises by being open, honest and humble and by adhering to the letter and spirit of applicable laws, rules, regulations and company policies.
Value People: We respect and learn from each other’s diverse backgrounds, experiences and ideas. We engage and develop people to their greatest potential.
Work Collaboratively: We work together to achieve results by actively listening, seeking, understanding and creating solutions as a unified team driving toward one company, one culture, one brand.
Achieve Results: We focus on winning by exceeding expectations and getting better – everyone, every day.
For more information, visit www.massmutual.com or find us on Facebook, Twitter, LinkedIn, YouTube, Google+, Instagram and Pinterest.
MassMutual is an Equal Employment Opportunity employer Minority/Female/Sexual Orientation/Gender Identity/Individual with Disability/Protected Veteran. We welcome all persons to apply. Note: Veterans are welcome to apply, regardless of their discharge status.
At MassMutual, we’re fostering an inclusive and dynamic environment where our employees are valued for who they are and can build successful careers. For us, diversity and inclusion is more than a goal, it’s the only way forward.
• 100% rating on the Human Rights Campaign Corporate Equality Index (2018)
• National Association for Female Executives Top Company for Executive Women (2018)
• Disability Equality Index® (DEI) Best Place to Work for Disability inclusion (2018)
• Working Mother Media 100 Best Company (2017)
• Military Friendly Employer (2018)