Data Security Director

CNA

Job Location:

Chicago, IL - USA

Yearly Salary: $ 97000 - 189000

Posted on: 5 days ago

Vacancies: 1 Vacancy

Job Summary

You have a clear vision of where your career can go. And we have the leadership to help you get there.At CNA we strive to create a culture in which people know they matter and are part of something important ensuring the abilities of all employees are used to their fullest potential.

Leadership position responsible for spearheading the vision design and implementation of data security controls for CNA. This position leads the data security team develops data security strategies and conducts data security readiness assessments for the selection development and implementation of enterprise data security standards. This position will focus on designing data encryption programs developing policies and procedures and strategy. Additional responsibilities include data classification data privacy/risk assessments and implementation of programs and data protection as a service. This position also has exposure to a range of Data Security technologies ranging from Data Loss Prevention (DLP) Cloud Access Security Brokers (CASB) DLP features Encryption/Tokenization Digital Rights Management Data Protection and Data Discovery across Structured Unstructured and Cloud.

JOB DESCRIPTION:

Essential Duties & Responsibilities

Performs a combination of duties in accordance with departmental guidelines:

Develops coordinates and is accountable for the Secure Data Strategy - Embedding security into the overall approach and vision for data in an organization.
Builds leads and has full management responsibility for the performance and development of a team of experienced data security professionals.
Oversees Secure Data Integration - Incorporating data discovery classification and remediation processes to align with business processes protecting data from various sources.
Directs implementation of technical capabilities such as rights management to enforce the movement or transmission of data.
Data Security in the Cloud - Implements technical capabilities to identify classify and secure structured and unstructured data assets.
Secures Data Analytics - Collects and analyzes business and event data to drive security value and enables the utilization of data as a business asset.
Documents and advises on areas of security improvement that balances risk with business operations and do not diminish efficiencies or innovation.
In collaboration with Legal identifies current and potential legal and regulatory issues affecting information security and assesses their impact on CNAs security and technology teams.

May perform additional duties as assigned.

Reporting Relationship

Typically AVP or above

Skills Knowledge & Abilities

Expert level knowledge of data security concepts.
Proven ability to effectively lead coach and develop a data security group.
Strong knowledge of the insurance industry its products and services.
Strong knowledge of data security technical solutions (e.g. data loss prevention classification inventorying tools data discovery).
Expert knowledge of traditional and modern cloud data solutions.
Ability to assess risks in line with information security objectives and risk tolerance of the institution. Proven conceptual analytical and evaluation skills.
Excellent interpersonal verbal presentation and written communication skills with the ability to effectively interact with internal and external business partners.
Ability to work well independently under pressure and to meet tight deadlines.
Excellent project management skills with ability to organize prioritize and plan effectively to meet project goals.
Expert knowledge of privacy/data standards and regulations local domestic and global (State Level Data Protection ISO GAPP NIST 800 53 HIPPA HiTrust Privacy by Design GDPR EU Data Protection Directives CCPA APEC Privacy Framework.

Education & Experience

Bachelors Degree with Masters preferred in Computer Science or related discipline or equivalent.
Typically a minimum of 10 years of IT Security experience preferably with recent cloud security experience.
Typically a minimum of 5 years of security architecture experience designing or implementing data security solutions.
Typically a minimum of 5 years of experience assessing or building programs in data security: data classification data governance data rights management and data loss prevention.
Typically a minimum of 3 years of experience in data protection solutions within cloud environments (e.g. AWS Azure GCP)
Typically a minimum of 5 years of hands-on experience with Data Security vendors product capabilities and solutions focus and not limited to Data Loss Prevention Data Rights Management Data Classification and Data Privacy
Experience and background in security metrics creation and reporting specifically in the data space

#LI-KJ1 #LI-HYBRID

In certain jurisdictions CNA is legally required to include a reasonable estimate of the compensation for this District of Columbia California Colorado Connecticut Illinois Maryland Massachusetts New York and Washington the national base pay range for this job level is $97000 to $189000 determinations are based on various factors including but not limited to relevant work experience skills certifications and location. CNA offers a comprehensive and competitive benefits package to help our employees and their family members achieve their physical financial emotional and social wellbeing goals. For a detailed look at CNAs benefits please visit.

CNA is committed to providing reasonable accommodations to qualified individuals with disabilities in the recruitment process. To request an accommodation please contact.

Required Experience:

Director

JOB DESCRIPTION:

Essential Duties & Responsibilities

Performs a combination of duties in accordance with departmental guidelines:

Develops coordinates and is accountable for the Secure Data Strategy - Embedding security into the overall approach and vision for data in an organization.
Builds leads and has full management responsibility for the performance and development of a team of experienced data security professionals.
Oversees Secure Data Integration - Incorporating data discovery classification and remediation processes to align with business processes protecting data from various sources.
Directs implementation of technical capabilities such as rights management to enforce the movement or transmission of data.
Data Security in the Cloud - Implements technical capabilities to identify classify and secure structured and unstructured data assets.
Secures Data Analytics - Collects and analyzes business and event data to drive security value and enables the utilization of data as a business asset.
Documents and advises on areas of security improvement that balances risk with business operations and do not diminish efficiencies or innovation.
In collaboration with Legal identifies current and potential legal and regulatory issues affecting information security and assesses their impact on CNAs security and technology teams.

May perform additional duties as assigned.

Reporting Relationship

Typically AVP or above

Skills Knowledge & Abilities

Expert level knowledge of data security concepts.
Proven ability to effectively lead coach and develop a data security group.
Strong knowledge of the insurance industry its products and services.
Strong knowledge of data security technical solutions (e.g. data loss prevention classification inventorying tools data discovery).
Expert knowledge of traditional and modern cloud data solutions.
Ability to assess risks in line with information security objectives and risk tolerance of the institution. Proven conceptual analytical and evaluation skills.
Excellent interpersonal verbal presentation and written communication skills with the ability to effectively interact with internal and external business partners.
Ability to work well independently under pressure and to meet tight deadlines.
Excellent project management skills with ability to organize prioritize and plan effectively to meet project goals.
Expert knowledge of privacy/data standards and regulations local domestic and global (State Level Data Protection ISO GAPP NIST 800 53 HIPPA HiTrust Privacy by Design GDPR EU Data Protection Directives CCPA APEC Privacy Framework.

Education & Experience

Bachelors Degree with Masters preferred in Computer Science or related discipline or equivalent.
Typically a minimum of 10 years of IT Security experience preferably with recent cloud security experience.
Typically a minimum of 5 years of security architecture experience designing or implementing data security solutions.
Typically a minimum of 5 years of experience assessing or building programs in data security: data classification data governance data rights management and data loss prevention.
Typically a minimum of 3 years of experience in data protection solutions within cloud environments (e.g. AWS Azure GCP)
Typically a minimum of 5 years of hands-on experience with Data Security vendors product capabilities and solutions focus and not limited to Data Loss Prevention Data Rights Management Data Classification and Data Privacy
Experience and background in security metrics creation and reporting specifically in the data space

#LI-KJ1 #LI-HYBRID

CNA is committed to providing reasonable accommodations to qualified individuals with disabilities in the recruitment process. To request an accommodation please contact.

Required Experience:

Director

Apply Now

About Company

CNA

CNA provides insurance solutions to more than 1 million businesses and professionals worldwide. With more than 100 years of industry experience, CNA has earned a reputation as one of the most trusted commercial insurance companies in the business. We’re a powerful legacy built on expe ... View more

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click