• Director, IT Compliance, Technology Services

    Job Locations US-NC-Raleigh
    Job ID
    # of Openings
    Information Technology
  • Overview

    The Company


    Arch Capital Group Ltd. is a Bermuda-based company which provides insurance, reinsurance and mortgage insurance on a worldwide basis.  Arch Capital Services Inc. provides support and expertise to entities across ACGL to help them operate effectively and efficiently. Arch is committed to helping its associates create what’s next by providing access to a variety of programs supporting your professional development and a culture that encourages innovation, collaboration and professional growth. We seek talent that thinks innovatively, values collaboration and will go the extra mile to serve our customers and develop our company.


    The Position

    The Director, IT Compliance will provide delivery of the IT Compliance function in Arch Capital Services, liaising closely with other IT and business management, as well as with individual contributors. They will be the main point of contact for all IT Security Compliance related activities including driving a wide range of initiatives such as the annual Risk and Control Assessments, NYDFS cybersecurity compliance, and IT tasks within GDPR as part of the Global Information Security program. Travel up to 10% may be required.

    Job Responsibilities

    • Conduct IT risk and control assessment activities (RCSA) aligned to industry frameworks such as ISO 27001 and NIST meeting the requirements of NYDFS and GDPR
    • Manage delivery of IT Compliance related tasks with partners located domestically and globally
    • Deliver regular reporting to senior management regarding IT Compliance matters
    • Provide advisory support and education relating to IT risk management and compliance to leaders responsible for identification, management and monitoring of IT risks
    • Lead the efforts to proactively identify changes to the risk and regulatory IT compliance environment of Arch domestically and globally; communicate this to Privacy and Security representatives
    • Coordinate the reviews and implementation of policies and standards annually and as needed for new policies
    • Participate in review and audit activities as the central point of contact for Arch Technology Services (ATS)
    • Monitor the performance and completion of IT risk related remediation activities
    • Lead the Policy Governance efforts of the O&S group at domestically and globally


    Desired Skills

    • CISSP, CISA, ISO 27001 Certifications, preferred
    • Thorough understanding of the relationship between risks and controls along with a grasp of prioritizing remediation efforts
    • Ability to work independently and be a key contributor in a team environment
    • Strong analytical and problem solving abilities
    • Understanding of project management methodologies and tools
    • Experience managing diverse, cross-functional and cross-departmental projects and technologies
    • Well-rounded understanding of technology, operations, security, and key business processes
    • Excellent written and oral communication skills

    Required Education/Experience 

    • 5+ years of relevant technology experience across multiple domains (applications, data, infrastructure, etc.)
    • 2+ years of experience managing IT Risk and/or Compliance programs for complex, global organizations
    • 2+ years of experience in the insurance or financial services industry


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed