Pekin Insurance Careers logo

Enterprise Security Analyst II - (GRC) Governance, Risk, and Compliance

Pekin Insurance Careers
2 days ago
Full-time
On-site
Pekin, Illinois, United States
$60,000 - $77,000 USD yearly
Cybersecurity

Looking for more than just a job? You’ve found it.

At Pekin Insurance, you’re not a number—you’re part of something bigger. For over 100 years, we’ve built a community where people are valued, supported, and empowered to grow. Here, you’ll find a workplace where collaboration is real, ideas are welcome, and the work you do truly matters. We’re proud to help people through life’s toughest moments—and it’s our people who make that possible.

From day one, you’ll be encouraged to bring your whole self to work, take on meaningful challenges, and grow in ways that matter to you. 

This is your opportunity to belong, thrive, and make a difference—right here at Pekin Insurance.

 

Position Objective

The Enterprise Security Analyst II proactively protects the integrity, confidentiality, and availability of information and informs management of the effectiveness of network and data security controls. This position assists with the development and implementation of Enterprise Security policies, standards, and guidelines.  The Enterprise Security Analyst II will review new and existing controls to ensure they meet security requirements and align with industry standards.

Essential Job Functions

  • Performs Governance, Risk, and Compliance (GRC) activities and procedures and implements security best practices across the enterprise to identify, analyze, and mitigate potential IT risks
  • Creates, reviews, and implements corporate information security policies and procedures
  • Conducts vendor risk assessments assessments on new and current technology to evaluate the security posture of third-party procedures
  • Recommends controls for reporting, analyzing, and reducing the impact of security incidents
  • Prepares, analyzes, and presents risk reports to management and internal stakeholders
  • Assists with security assessments and penetration tests for risk reporting and mitigation
  • Ensures information technology changes are assessed for impact on security aspects, including the Information Security Policy, security controls, and standards
  • Attends change advisory board meetings when appropriate
  • Conducts and assists with the development of security awareness training material
  • Keeps current with security industry standards and appropriate government regulations
  • Provides mentoring for junior level analysts and interns
  • Conducts and assists with the development of security awareness training material
  • Performs other duties as assigned

Education & Experience

  • Bachelor’s degree in Computer Science, Information Security, or related field
  • Typically requires 3+ years in IT audit, risk management or security compliance

Preferred or Specialized

  • Prior experience with Governance, Risk, and Compliance (GRC) platforms

Certifications & Licenses

  • Certifications related to cyber security preferred, such as Security+, Certified Risk and Information Systems Control (CRISC) or Certified Information Systems Auditor (CISA)

Knowledge, Skills, & Abilities

Demonstrated ability to:

  • Communicate effectively in both oral and written form
  • Exercise sound judgment in making critical decisions
  • Work as a team member and follow directions
  • Analyze, organize, and prioritize work while meeting multiple deadlines
  • Work comfortably in a fast-paced work environment 
  • Analyze and prepare documents, reports, and correspondence

Demonstrated skill in:

  • Managing one’s own time and working independently 
  • Completing assignments accurately and with attention to detail

Demonstrated knowledge of:

  • Compliance standards and security frameworks (COBIT, NIST, HIPAA, ISO27001/2, OWASP, PCI) 
  • Networking communication protocols used within information security technology solutions
  • Security regulations and security requirements that impact the insurance industry (GLBA, HIPAA, PCI)
  • Security best practices, policies, standards, and guidelines
  • Security architecture and secure implementation of new technology

 

 Applicants must be authorized to work in the U.S. without sponsorship now or in the future.

   Pay Range: 

  • $60,000-$77,000 per year 
    • This range is based on the expected level of experience and skills for this position. Final compensation will depend on individual

  Benefits: 

  •  Health, Dental and Vision Insurance
  •  Generous 401(k) with company match
  • Paid Time Off (PTO) with Paid Holidays
  • Flexible/Hybrid Work Schedule
  • Paid Volunteer Program

 

      For more information about the benefits we offer, please visit our Careers Page.