AVP, IT Controls

Your Future Team Fortitude Re: In 2016, AIG created a third reporting segment, Legacy, to manage non-core assets and liabilities, and businesses in run-off, with the objective of balancing the benefits of return of capital or capital redeployment, with potential near-term reductions in book value.  The launch of the Fortitude Re entity in 2017 (formally DSA Re) was an important early step in achieving that objective.  AIG continued the Fortitude Re strategy by announcing a strategic partnership with The Carlyle Group to achieve the long-term vision for Fortitude Re.  Fortitude Re currently reinsures $36 billion of AIG’s Legacy Life and Annuity and General Insurance liabilities. Fortitude Re’s diversified risk portfolio, strong claims operation, and efficient administration capabilities provide the foundation for a platform that can be scaled over time to offer unique solutions to external parties.  AIG and Carlyle plan to build Fortitude Re into a standalone platform with financial strength that complements its strategically differentiated capabilities.  AVP, IT Controls   You will join a small team of IT professionals at a recently created run-off Third Party Administrator for insurance products. Our goal is to develop our IT Control Function further. Initially, you will implement, maintain, and administer processing controls ensuring secure, timely, and accurate processing of data.   Building into our current processing proactive measures for monitoring and alerting on of processing files and data within the Information Technology Department.   Responsibilities Implementation of IT control programs/ frameworks while identifying and minimizing negative impacts to the business. Develops and implements IT Operational controls. Acts as a subject matter expert in the evaluation, development and implementation of a business application Information Technology internal control system. Builds change management plans of varying scope and type; leads or participates in a variety of change management activities including readiness assessments, planning, stakeholder management, execution, evaluation and sustainment of initiatives. Monitoring to ensure that operating processing jobs are following defined processes and procedures. Builds awareness, knowledge, and skills and, as necessary, provides communication, practical tools and ongoing support including making presentations, to promote a culture of risk identification and management. Supports the management of 1st LOD program for Information Technology in compliance with appropriate principles, standards & direction from the second line of defense groups. Includes developing and promoting program and ensuring the execution of all program components. Analyzes the impact and effectiveness of the program through periodic reviews. Recommends adjustments to the overall program, policy or processes within the business/group in accordance with the Risk Appetite Statement, Governance and Corporate Policy. Supports Information Technology through internal/external audits or regulatory examinations and assists in development of action plans to resolve any identified issues. Provides support to the development and delivery of training and awareness programs within Information Technology to increase awareness of controls and compliance to operating controls requirements. Ensuring staff and subcontractors adhere to sound processing principles of data. Will maintain and enhance current IT controls to ensure successful SOC 1 and SOC 2 reports   Qualifications Min of 1 to 2 years of experience in any of the 3 areas: IT Audit, Financial Audit, or Operational Audit Experience in large companies or financial institutions Experience with SOC 1 and SOC 2 control development and reporting. Demonstrated experience with NYDFS, HIPAA, state insurance regulations. Experience with cloud and multiple vendor/supplier environments. Experience with providing subject matter expertise in the interpretation and deployment of key Industry standards and regulatory requirements Experience with playing a key role in the review, ongoing assessment and testing of IS/IT controls. This includes test preparation, test execution, providing recommendations and reporting on the status of the identified gaps / issues as well as providing input for regulatory reporting and audit queries Experience with contributing effectively and proactively as well as developing, consolidating, analyzing, recommending, and reporting of findings

Salary : $36 - $0