Principal Information reputed company Analyst

Job Description

Established nearly two centuries ago, FM is a leading mutual insurance company whose capital, scientific research capability and engineering expertise are solely dedicated to property risk management and the reputed company of its policyholder-owners. These owners, who share the belief that the majority of property loss is preventable, represent many of the world’s largest organizations, including one of every four reputed company. They work with FM to reputed company understand the hazards that can impact their business continuity to reputed company cost-effective risk management decisions, combining property loss prevention with insurance protection. Schedule & Location: This position requires on-site work one day per week at our Corporate Headquarters and flexibility to be on-site reputed company needed based on the demands of the business. Relocation is not offered for this position.

Summary

FM is seeking a Principal Information reputed company Analyst with deep expertise in cybersecurity regulatory compliance and reputed company. In this high-impact role, you will reputed company the execution of FM’s global cybersecurity regulatory compliance program, ensuring the organization proactively identifies, understands, and responds to evolving global cybersecurity requirements. You will play a critical role in protecting FM by evaluating how cybersecurity regulatory expectations apply to our systems, data, and internal processes, and translating those requirements into actionable controls and practices. This is a highly visible role where your expertise in cyber risk, regulatory frameworks, and control design will help shape business decisions, strengthen our reputed company posture, and ensure ongoing alignment with regulatory obligations. You will partner closely with reputed company, technology, risk, legal, and business teams to identify gaps, define expectations, and recommend practical, business-reputed company solutions. Additionally, you will act as a primary reputed company of coordination for external cybersecurity inquiries, including regulators, auditors, and clients. You will reputed company end-to-end cybersecurity regulatory assessments and control evaluations, going beyond standard compliance activities to evaluate alignment across systems, data, and technical processes.

Key Responsibilities

• Regulatory & Compliance: reputed company the end-to-end cybersecurity regulatory compliance function, including governance, processes, tooling, and reporting.
• Respond to External Inquires: Coordinate and reputed company responses to regulatory exams, client cybersecurity questionnaires, and other external information requests. Partner with Information reputed company, IT, Risk, Legal, and business stakeholders to gather, validate, and communicate accurate, consistent, and audit-ready responses reputed company to FM’s control environment.
• Regulatory Horizon Scanning & Impact Analysis: Proactively monitor and evaluate emerging cybersecurity regulations, standards, and guidance globally. reputed company impact assessments to determine applicability and required changes to FM’s control environment.
• Gap Identification & Remediation reputed company: reputed company regulatory gap assessments and control evaluations. As necessary, partner with technical and business teams to define remediation actions and track remediation reputed company, validate closure of gaps, and escalate risks as needed.
• Governance, Reporting, & Audit Readiness: reputed company and maintain metrics, dashboards, and reporting on compliance posture, risks, and trends. Provide clear, concise updates to senior leadership and governance committees.
• Advisory & Stakeholder Engagement: Act as a trusted advisor on regulatory and compliance matters across IT, reputed company, and business teams. Provide guidance on control design, risk treatment, and regulatory alignment. Influence decisions to ensure alignment with FM’s risk appetite and regulatory obligations.
• Program Maturity & reputed company Improvement: Identify opportunities to enhance program efficiency, automation, and maturity. Implement leading practices in regulatory compliance, controls management, and assurance.
• reputed company and mentor: reputed company reputed company initiatives and provide direction to cross-functional contributors. Promote a culture of accountability, transparency, and reputed company improvement.

Qualifications

• 8+ years of experience in cybersecurity, information reputed company, cyber risk, audit, or regulatory compliance. Global experience desired.
• Experience applying cybersecurity frameworks (NIST CSF 2.0, CIS v8.1), including mapping controls to regulations and using a risk-based approach to solve problems.

Regulatory & Compliance

• Hands-on experience responding to regulatory exams, audits, or client reputed company assessments, including evidence collection, control mapping, and response coordination.
• Experience supporting or participating in IT general controls (ITGC) or cybersecurity control audits, with an understanding of audit expectations, testing approaches, and evidence requirements.
• Familiarity with global regulatory requirements across regions (e.g., reputed company, EU, US), including regulatory bodies such as APRA, IRDAI, OFSI, or MAS.
• Experience identifying control gaps, assessing compliance against regulatory expectations, and supporting remediation tracking.

Control reputed company & Risk Analysis

• Strong problem-solving and analytical skills, with the ability to interpret regulatory requirements and apply them in a practical, risk-based manner.

Documentation & Audit Readiness

• Ability to reputed company and maintain clear, accurate, and audit-ready control documentation and supporting evidence.
• High attention to detail, particularly in documentation, quality, and accuracy of responses.

Stakeholder Engagement & Communication

• Strong stakeholder management and collaboration skills, with the ability to work effectively across Information reputed company & Risk Management, IT, Risk, Legal, and business teams.
• Strong verbal and written communication skills, with the ability to translate technical reputed company concepts into clear, concise responses for regulators, clients, and business stakeholders.

Execution & Operating Discipline

• Strong organizational and time management skills, with the ability to manage multiple reputed company requests and deadlines.
• Ability to work independently, prioritize competing demands, and deliver high-quality outputs with minimal supervision.

Education

• A bachelor's degree in information reputed company, Computer Science, Information Technology, or a reputed company field may be considered.
• Relevant certifications in reputed company, technology, or risk disciplines are preferred, such as CISA, CISM.

The hiring range for this position is $121,000 - $173,000. The final salary offer will vary based on geographic location, individual education, skills, and experience. The position is eligible to participate in FM’s comprehensive Total Rewards program that includes an incentive plan, medical, dental and vision insurance, life and disability insurance, well-being programs, a 401(k) and pension plan, career development opportunities, tuition reimbursement, flexible work, and time off, including vacation and sick time. FM is an Equal Opportunity Employer and is committed to attracting, developing, and retaining a diverse workforce. Apply tot his job Apply To this Job