IT Compliance Specialist III in Winston-Salem, NC at National General Insurance

Date Posted: 2/28/2018

Job Snapshot

Job Description

Primary Purpose:

The IT Compliance Specialist III is a senior role in the team responsible for ensuring that IT operational and security policies adhere to regulatory and legal compliance standards such as PCI, SOX, HIPAA, ISO27001 and NIST Cybersecurity Frameworks. The team monitors, measures and reports on the effectiveness and efficiency of IT operational and security processes, procedures and controls designed to meet compliance requirements and company policies.


Essential Duties and Responsibilities:

  • Leads team of IT Compliance Specialists providing guidance and inspiration to perform at maximum efficiency
  • Works with Security Architects, Security Analysts, Security Administrators and other IT and business departments to design effective and efficient procedures and controls to meet IT compliance requirements
  • Creates and maintains up to date catalog of policies, procedures, documents and evidence commonly required for security and compliance audits
  • Plans and executes IT security audits related to SOX, HIPAA, PCI, NIST Cybersecurity and other regulatory entities
  • Plans and executes IT security audits related to security best practices such as user access control, separation of duties and system hardening
  • Reviews audit findings and creates risk and gap analysis reports
  • Recommends remediation activity for compliance activities found deficient and monitors remediation progress
  • Provides technical auditing duties as liaison between the IT department and internal and external auditing teams
  • Reviews audit trails and access control violations, reporting such violations to Security Analysts and management when necessary
  • Monitors changes in the IT regulatory and security landscape and reports on the impact of those changes to IT security and operational processes and procedures
  • Maintains System Security Policy documentation
  • Other duties as assigned


Minimum Skills and Competencies:

  • 6+ years of experience as an IT Compliance Specialist or IT Auditor
  • Bachelor’s degree in Computer Science or Computer Information Systems or related or equivalent experience
  • Demonstrated knowledge of HIPAA, PCI, SOX, ISO27000 and NIST Cybersecurity Frameworks
  • Excellent communication and writing skills
  • Demonstrated detailed oriented self-starter and the ability to work independently with limited supervision and limited direction, and in collaborative team environments
  • A strong ability to multi-task and manage varying priorities and projects
  • Excellent interpersonal, verbal, and written communication skills with the ability to communicate security risk and compliance related concepts to a broad range of technical and non-technical staff
  • The ability to provide support after normal business hours as needed


Desired Skills:

  • CISSP, CISA, CISM, CCRISC, or CGEIT certifications
  • Tripwire Enterprise, Tripwire IP360, Nessus, BeyondTrust Retina, Qradar, Trustwave TrustKeeper, Proofpoint, McAfee ePO/HBSS
  • Experience with high-level programming languages (e.g. Java, C, C++, C#, python) and web application development (JavaScript, PHP, ASP)

Job Requirements


About National General Holdings:

National General Holdings Corp. is headquartered in New York City. National General traces its roots to 1939, has a financial strength rating of A– (excellent) from A.M. Best, and provides personal and commercial automobile, homeowners, umbrella, recreational vehicle, motorcycle, supplemental health, and other niche insurance products. We are a specialty personal lines insurance holding company. Through our subsidiaries, we provide a variety of insurance products, including personal and commercial automobile, homeowners, umbrella, recreational vehicle, supplemental health, lender-placed and other niche insurance products.

National General is a fast paced, dynamic, and entrepreneurial organization. Our team members live by and exemplify what we call the 4Es. At National General, we are Energized, Engaged, Empowered, and we Execute every day in order to provide an exceptional experience for our customers! We are passionate about our organization and the value that we add every day. A successful candidate with National General will embody the 4Es. Our team is poised to outperform the competition. We are National General Insurance and with us you can be extraordinary! Come join our team!

Companies and Partners

Direct General Auto & Life, Personal Express Insurance, Century-National Insurance, ABC Insurance Agencies, NatGen Preferred, NatGen Premier, Seattle Specialty, National General Lender Services, ARS, RAC Insurance Partners, Mountain Valley Indemnity, New Jersey Skylands, Adirondack Insurance Exchange, VelaPoint, Quotit, HealthCompare, AHCP, NHIC, Healthcare Solutions Team, North Star Marketing, Euro Accident.

In addition to a phenomenal career opportunity, National General Insurance offers an excellent benefits package including:

• Paid Training
• Medical, Dental, Vision benefits
• Wellness Programs
• Life and Short/Long Term Disability Insurance
• 401k w/ Company Match
• Company Paid Holidays & Generous Time-off policy
• Employee Discount Program
• Career Advancement and Development Opportunities
• On-site Healthcare Clinic (Winston-Salem and Cleveland offices)
• On-site Fitness Center (Cleveland and Dallas offices)
• Subsidized parking (Cleveland office)

National General Holdings Corp. is an Equal Opportunity (EO) employer – Veterans/Disabled and other protected categories. All qualified applicants will receive consideration for employment regardless of any characteristic protected by law. Candidates must possess authorization to work in the United States, as it is not our practice to sponsor individuals for work visas.

In the event you need assistance or accommodation in completing your online application, please contact NGIC main office by phone at (336) 435-2000.