Vice President, IT Security

Vice President, IT Security

• Manage the cybersecurity posture and help drive cybersecurity priorities of a portfolio of applications
• Provide day-to-day oversight and coordination across the assigned Business Units for Cybersecurity projects
• Act as a trusted advisor to the assigned business portfolio CIO organization on cybersecurity risk assessment and remediation strategies
• Partner with the Software Security Assessment (SSA) Team to ensure application portfolios adhere to standards and recertification cadence
• Serve as a subject matter expert/technical lead in translating Cybersecurity requirements based on assessed real risk articulation of the assigned portfolio
• Collaborate with other Information Security Organization leads to deliver tactical and strategic work and provide transparency and communications horizontally to all regional business unit Project Managers
• Use analytics to identify critical security risks and recommend actions to improve
• Review threat intelligence feeds from company cyber defense center and track remediation progress across AIG business units
• Work with Technical Risk and Controls Team to ensure that regulatory security requirements are being met by the business units (NYDFS, GDPR, DORA)
• Lead project meetings, communicate project status, assess project risk/issues, develop mitigation plans and resolutions with both project staff and senior leadership
• Work with regional teams to embrace scope and budgetary needs

• 15+ years of experience in Application Development and/or Infrastructure and network domain applied to business application
• 5+ years Information Security and Risk Management experience required
• Bachelor’s Degree required; MBA or MS a plus
• Experience with cybersecurity controls and tools like Crowdstrike, Qualys, Veracode, Tanium, WhiteHat, and Imperva
• Security Certifications a plus: CISSP, CISM, CISA, CRISC, CGEIT
• Knowledge of development or architecture frameworks with strong knowledge of cybersecurity domain
• Strong understanding of application development architecture and techniques; and ability to assess application cyber-risk across all layers of the business application
• Ability to communicate security risks in business terms to all levels of the organization
• Ability to positively influence the behavior of peers and build relationships with other teams
• Ability to work as an individual contributor, but with significant influencing skills
• Excellent Project Management, problem-solving, and analytical skills; PMP certification a plus
• Strong communication and presentation skills, both verbal and written; MS PowerPoint a plus
• Ability to work in a fast-paced environment, and across multiple time zones
• Self-starter, ability to work independently with minimal supervision
• Strong organizational and time management skills
• Commitment to advancing skills in the cybersecurity field

• 401k matching
• Health insurance
• Flight privileges
• Volunteer Time Off and Matching Grants
• Total Rewards Program

AIG is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks