IT Compliance Analyst

Who are we?
A strategic and trusted insurance partner, Berkshire Hathaway Specialty Insurance (BHSI), provides a broad range of commercial property, casualty and specialty insurance coverages and outstanding service to customers and brokers around the world. Part of Berkshire Hathaway’s insurance operations, we bring our solutions to market with our stellar brand name, top-rated balance sheet, and the expertise of our global team of professionals, who exude excellent capabilities and strong character.

We are a values-based organization where respect, integrity, excellence, collaboration, and passion define who we are and how we do business. We value diversity of backgrounds, experience, and perspectives and strive to foster an inclusive environment that enables all our team members to bring their best selves to work. We are one team committed to building a culture where every teammate has the opportunity to contribute and be recognized. Want to be part of the team building the finest property, casualty and specialty lines insurance company in the world?

Learn more about our unique culture and history.

Job Opportunity:

Berkshire Hathaway Specialty Insurance (BHSI) has an exciting opportunity for a new team member to join their Boston based IT Audit/Compliance team as an IT Compliance Analyst. In this newly created role, the IT Compliance Analyst will take an active role in the execution of our IT audit and compliance framework, while collaborating closely with both internal and external partners. In this role, there is significant opportunity for career growth while assisting in the expansion of our evolving global audit/compliance landscape. This is an opportunity to provide significant impact working with external global regulators, and internal regional legal and compliance teams from an enterprise-wide position.

Duties & Responsibilities:

• Facilitate regularly scheduled IT audit/compliance activities, and follow up with responsible parties regarding outstanding requests, and/or questions.
• Maintain, organize, and store audit evidence in preparation for upcoming scheduled audits.
• Request, collect, review, and assess compliance reports from external organizations (i.e., SOC 2 type 2 reports).
• Conduct internal audits (i.e., health checks) and assess the effectiveness of current controls and processes in place.
• Assist in developing, implementing, and executing additional internal IT audit/compliance activities.
• Coordinate with team members regarding the remediation status of closing out identified audit gaps.
• Provide support to our offices from both a U.S. and global perspective (i.e., Asia, Middle East, UK, Europe, Australasia, etc.) regarding the fulfillment of external audit requests and obligations.
• Analyze global IT regulatory authorities (i.e., GDPR, CBI, MAS, APRA, BAFIN, etc.) and coordinate with individuals to ensure controls are in place to meet requirements.
• Attend/participate in e-learning training sessions to increase background knowledge of the ever-evolving IT regulatory landscape.

Qualifications, Skills and Experience:

• Experience working in an IT audit/compliance function with a general understanding (at minimum) in several of the IT audit/compliance topics listed below:
  1. Active Directory, password standards, user access provisioning/deprovisioning, user access reviews, change management, batch jobs/backups, disaster recovery, service accounts, patch management, risk assessment.
  2. Software development and IT operations knowledge to assess the planning and ongoing maintenance of DevSecOps practices and Application security.
  3. Knowledge of cloud governance, cloud technology and cloud security is a plus.
• Solid background knowledge of US domestic IT regulations (i.e., SOX, CCPA, PCI, NY-DFS etc.) is recommended.
• Background knowledge of global IT regulations (i.e., GDPR, CBI, MAS, APRA, BAFIN etc.) is preferred, but not required.
• Ability to work in a team-based environment and communicate effectively and efficiently with others domestically and globally.
• Previous experience working with auditing tools and software (i.e., Workiva, AuditBoard, etc.) is a plus.

BHSI Offers:
• A competitive package and exciting growth opportunities for career-oriented teammates
• A dynamic, action oriented, and thoughtful environment centered on always doing the right thing for our customers, teammates and our other stakeholders
• A purposely non-bureaucratic organization that embraces simplicity over complexity and emphasizes individual excellence in a team framework

NOTE: Compensation will be commensurate with experience. This job description is not intended to be all-inclusive. Team Member may perform other related duties as negotiated to meet the ongoing needs of the organization