Cloud Compliance Manager

Position Overview

The Cloud Compliance Service Owner contributes to RGA’s culture of innovation by owning, shaping, and executing a cloud compliance service for RGA application teams. Owns RGA’s cloud controls framework in alignment and collaboration with IT Compliance and RGA’s Cyber Security Program. Develops and drives the strategy, vision and roadmap for a cloud compliance service that spans from actual control design all the way through to evidence production. Accountable for compliance health for RGA cloud services. The Service Owner will take action to create and execute prioritized resolution plans as compliance issues are identified and will provide audit support to Cloud Services’ customers.

Responsibilities

  • Works closely with IT stakeholders, IT Compliance and Cloud Architects to define a cloud compliance service for RGA application teams. Maintains a compliance roadmap and scopes, establishes requirements, communicates and executes the roadmap, guided by policies, resource requirements, budgets, and the business plan.
  • Accountable for maintaining a cloud controls framework and maintaining compliance in accordance with that framework across all RGA cloud services.
  • Identifies and implements risk mitigation techniques regarding potential impacts of new infrastructure and data flows on existing security, industry, contractual and privacy-related compliance obligations.
  • Partners with Information Security and Global Security & Privacy Office teams to identify, document and steward operational and security risk remediation plans, mitigating existing risks and uncovering potential risks for proactive protection.
  • Champions secure software development practices that builds security and privacy by design and default into day-to-day operations.
  • Ensures all acceptance criteria and “definition of done” align to enterprise compliance standards and documented procedural best practices at scale.
  • Creates, implements, and monitors effective metrics for cloud compliance and prioritizes remediation efforts based on risk.
  • Develops and maintains effective relationships; takes ownership for the relationships, ensuring organizational objectives are met. Communicates difficult concepts and negotiates with others to adopt a different point of view and drive innovation.
  • Uses sophisticated analytical thought to develop, recommend, and gain consensus on innovative process and technology, which result in new or enhanced reliable, scalable, performant, and distributed, services and solutions.
  • Works in an agile environment and continuously reviews the business needs, refines priorities, outlines milestones and deliverables, and identifies opportunities and risks.
  • Creates business cases, as needed and performs cost analysis and cost management activities to ensure adherence with approved budgets for cloud compliance services and tooling.

Requirements

  • Bachelor’s degree or equivalent education/ experience
  • Master’s degree and/or LOMA certification
  • AWS Practitioner Certificate

Company Overview

RGA’s culture stresses high performance and collaboration, and the company hires the smartest people in the industry. And, the smart people they hire are not just number crunchers. RGA values creativity and curiosity. RGA also values humility, and its employees work together without ego to bring value to RGA while revolutionizing the life and health insurance space.

Reference number : US06044

More Information

Apply for this job

Leave your thoughts