Technology Security - Strategy & Design Lead
Location:
Clinton , New Jersey
Posted:
February 22, 2018
Reference:
60233-en_US

New York Life Insurance Company (“New York Life” or “the company”) is the largest mutual life insurance company in the United States*. Founded in 1845, New York Life is headquartered in New York City, maintains offices in all fifty states, and owns Seguros Monterrey New York Life in Mexico.

 

New York Life is one of the most financially strong and highly capitalized insurers in the business. The company reported 2016 operating earnings of $1.954 billion. Total assets under management at year end 2016, with affiliates, totaled $538 billion.  As of year-end 2016, New York Life’s surplus was $23.336 billion**.  New York Life holds the highest possible financial strength ratings currently awarded to any life insurer from all four of the major ratings agencies: A.M. Best, A++; Fitch AAA; Moody’s Aaa; Standard & Poor’s AA+. (Source: Individual Third Party Ratings Report as of 8/17/16).

 

Financial strength, integrity and humanity—the values upon which New York Life was founded—have guided the company’s decisions and actions for over 170 years.

 

Job Function and Key Duties & Responsibilities

 

The Technology Security - Strategy & Design lead is an experienced Information Technology and Security professional who will be responsible for partnering with leadership at NYL to provide innovative strategy, design and architectural expertise to drive NYL’s overall technology security roadmap. This is a senior strategy engineering position within the Technology Security organization that will provide expert consultative guidance for all technology security domains and initiatives; as well as for key NYL business programs and projects.


The well qualified candidate will apply his/her expertise to provide security architecture, design and engineering leadership and guidance for the ongoing development of the Technology Security program at New York Life.


Role & Responsibilities

  • Provides a strategic lens in the development and delivery of detailed project capability roadmaps for all Technology Security domains.
  • Leads the architecture and design of all elements of the Technology Security program and provides strategic guidance to the development and evaluation of emerging cyber security technologies.
  • Leads architecture and design efforts for various Technology Security capabilities – analysis of vendor proposals, evaluations of build versus buy, and other key project deliverables.
  • Partners with NYL Cloud Services organization to architect, design and develop a rationalized Cloud Security roadmap aligned with NYL business objectives and data protection goals.
  • Provides oversight to the overall design and execution of testing of new cyber security technologies to be implemented in the NYL environment.
  • Provide industry thought-leadership through white papers, articles, presentations, and conferences.
  • Provides oversight of infrastructure architecture, planning and design for the various pillars within Technology Security; ensuring that NYL strategic security goals and industry best practices are baked into future plans and roadmaps.
  • Provides architecture, design and strategy direction for the problem management processes.
  • Responsible for developing a product strategy roadmap and supporting architectures for existing technology security capabilities as well as for future technology acquisitions.
  • Serves as key contributor and participant in the ongoing Enterprise Architecture and Security Review Boards to provide Technology Security point of view, ensure strategy alignment and best practices are incorporated into all reviewed projects and initiatives.
  • Provides coaching and facilitates cyber security knowledge sharing to less experienced staff to encourage and support the development of contemporary cyber security knowledge within NYL technology security team.
  • Leads cross-functional teams to ensure consistency and oversight of technology security architecture, design and best practices.
  • Maintains contemporary knowledge of current and future security technologies and architectures.

     

    Required Qualifications:

  • Experience as a subject matter expert for architecture, planning, coordination, and execution of complex high visibility tasks essential to the engineering and operations of all technology security capabilities at NYL.
  • Well versed in data protection concepts and industry standard products – ex; DLP, Database Security, File Integrity Monitoring, Data Discovery, Data Governance, Data Access Management, Cryptography, Tokenization, etc.
  • Security architecture, strategy and design experience across one or more technology security pillars; Network Security, Infrastructure/End Point Security, Application Security, Identity and Access Management, Vulnerability Management, Cloud Security, and Mobility Security.
  • Detailed understanding of networking concepts and operational functionalities; TCP/IP, OSI model, Firewalls, Proxies, DNS, Routing, Switching, RAS, IDS/IPS, etc.
  • Contemporary experience and understanding in the the areas of infrastructure design, security solution design, and security engineering.
  • Interpersonal skills including the ability to collaborate effectively, and excellent written and oral communications
  • Strong background architecting, designing or engineering technology security solutions in common cloud environments; AWS, Azure, etc.
  • Experience with automation and roboticization of maintenance and support functions to support continuous improvement of quality and consistency of future operational tasks.
  • Strong background of performing product evaluations and innovative thinking within the Cyber Security technology market a major plus.
  • Prior Windows and/or UNIX scripting experience is a plus – Perl, PowerShell, and UNIX Shell Scripting.

     

    Required Experience, Education and Professional Certifications:

  • Minimum 8-12 years of expanding responsibility
  • BA/BS Degree in Engineering, Computer Science, or equivalent experience in Cyber Security, Technology Architecture, and Engineering.
  • CISSP, CISSP-ISSAP, CEH, GCIA, TOGAF 9, or similar certification required.

 

Location: [ADC/CNJ/JCNJ]

Type of Position : FT

People Manager:  YES

Dept/Div: Corporate Technology / Infrastructure

Hiring Manager:  Nathan Smolenski

Functional Area:  Technology Security Engineering

 

SF: LI-CC1

 

 

EOE M/F/D/V

 

If you have difficulty using or interacting with any portions of this Web site due to incompatibility with an Assistive Technology, if you need the information in an alternative format, or if you have suggestions on how we can make this site more accessible, please contact us at: (212) 576-5811.

 

*Based on revenue as reported by “Fortune 500, ranked within Industries, Insurance: Life, Health (Mutual),” Fortune Magazine, June 17, 2016.  See http://fortune.com/fortune500/  for methodology.

**Total surplus, which includes the Asset Valuation Reserve, is one of the key indicators of the company’s long-term financial strength and stability and is presented on a consolidated basis of the company.

 

1. Operating earnings is the key measure use by management to track Company’s profitability from ongoing operations and underlying profitability of the business. This indicator is based on generally accepted accounting principles in the US (GAAP), with certain adjustments Company believes to be appropriate as a measurement approach (non GAAP), primarily the removal of gains or losses on investments and related adjustments.

 

2. Assets under management represent Consolidated Domestic and International insurance Company Statutory assets (cash and invested assets and separate account assets) and third party assets principally managed by New York Life Investment management Holdings LLC, a wholly owned subsidiary of New York Life Insurance Company.


A little about us:
From sales careers to professions in insurance and investments, we lead the way.

Know someone who would be interested in this job? Share it with your network.