Earnix

GRC Specialist

Ramat Gan, ILTechnology & Analytics

Position Intro

Earnix is a leading provider of advanced pricing and rating solutions tailored for the insurance industry. Our cutting-edge software empowers actuaries and data scientists within insurance companies to make data-driven decisions and optimize pricing strategies. With a commitment to innovation and a deep understanding of the insurance landscape, Earnix is at the forefront of revolutionizing how insurers approach pricing and rating.

Description

We are looking for a GRC specialist who will join our Security and Compliance team to build and manage Earnix governance, risk, and compliance aspects from the ground up.  

 

What you'll do: 

The GRC Specialist identifies and assesses potential information security risks, recommends mitigations, and helps the risk owners drive the implementation of mitigations to reduce the risk to an acceptable level. 

You will manage the process of technical Risk assessments with team members and coworkers. 

Lead the organization-wide compliance program, ensuring activities, processes, and procedures meet defined requirements, policies, and regulations. 

Align with suppliers, and internal teams like IT and application teams to ensure compliance with organizational security requirements. 

Work with internal and external Audit representatives and outside consultants as appropriate on required security assessments and audits. 

 

Requirements

You’ll do it using: 

At least 2 years of experience in the field of GRC. 

Knowledge of common cyber security and risk management frameworks/ standards/ regulations in the financial industries. 

Solid knowledge of information security principles and practices. 

Excellent communication and presentation skills in English- verbal and written 

Excellent documenting and reporting skills 

Project management and coordination skills 

Knowledge of risk management frameworks and industry best standards (NIST, privacy frameworks, cloud security frameworks, etc.) and experience performing information security audits (e.g., ISO2700x, SOC2, CSA, etc.)  - an advantage

Experience with Third-Party Cyber Risk & Attack Surface management tools (such as Panorays)- an advantage.

Experience with Security awareness platform- an advantaged

Experience with compliance platforms (such as Anecdotes) an advantaged

Familiarity working with AWS cloud environment – an advantage  

Background from a SaaS company – an advantage 


You’ll excel by: 

Demonstrate a Can-Do attitude, high professionalism, and a commitment to project success

Be passionate about problem-solving and on-time delivery 

Communicate efficiently with all relevant stakeholders

Thinking outside of the box and seeing the bigger picture

Being Self-motivated and well organized

View all positions

Learn about us

Blog

Adopting Intelligent Insurance Operations to Combat Inflation

August 2, 2022
Inflation has proven one of the most difficult economic parameters to predict. Nearly two full business generations have elapsed without inflation being a dominant topic of conversation, as it was earlier, driven by two major 20th-century wars and the oil shocks of the 1970’s:  As seen in the cha ...
Read more
Blog

Modernizing Financial Services Through Composable Solutions

July 4, 2022
The terms “composable” and “composability” are gaining momentum in financial services, as insurance firms and banks work to eliminate silos, quickly implement new capabilities, and actualize robust strategies across the business, all without introducing added risk, or inefficiencies.  That’s a tall ...
Read more
diagonal lines