Lead Security & Risk Analyst (Hybrid)

Position Compensation Range:

Pay Rate Type:

Compensation may vary based on the job level and your geographic work location. Relocation support is offered for eligible candidates.

Primary Accountabilities

• Lead the Control Repository Workstream: Design, implement, and maintain a centralized control repository that supports consistent risk management, control reuse, and audit readiness.
• Drive Cross-Functional Collaboration: Partner with control owners, risk teams, audit, engineering, and policy stakeholders to clarify control expectations, improve accountability, and align with regulatory and internal requirements.
• Support Broader digital risk and compliance Initiatives: Contribute to policy governance, regulatory consultation, and assessment coordination by ensuring controls are well-defined, mapped, and understood across the organization.
• Enable Education and Adoption: Develop guidance, training, and communications to promote control ownership and risk-aware decision-making.
• Advance Governance and Reporting: Identify gaps, overlaps, and opportunities for automation; support reporting and continuous improvement efforts across the digital risk and compliance team.
• Oversees the planning and execution of compliance audits, including risk assessment, audit scope, identifying and testing processes/controls and developing specific recommendations.
• Works with leadership to evaluate risk relative to company strategy and risk appetite, assign accountability of mitigation strategies, and implement processes to monitor and report success.
• Accountable for stakeholder engagement/management to understand internal processes and identify potential risks.

Specialized Knowledge & Skills Requirements

• Demonstrated experience providing customer-driven solutions, support or service.
• Extensive knowledge and understanding of IT Risk Management and/or Information Systems Auditing.
• Extensive knowledge and understanding of IT risk and control frameworks.
• Experience with control lifecycle management, governance, and stakeholder engagement.
• Demonstrated experience conducting IT risk and control assessments.
• Extensive knowledge and understanding of IT risk management and reporting.
• Solid knowledge and understanding of risk management methods, standards, processes, governance models, and industry standard risk analysis approaches.
• Excellent communication and facilitation skills, including the ability to translate complex requirements into clear, actionable control guidance.

Licenses:
*Not Applicable.

Travel Requirements
*Up to 10%.

Physical Requirements
*Work that primarily involves sitting/standing.

Working Conditions
*Not Applicable.

• Offer to selected candidate will be made contingent on the results of applicable background checks

• Offer to selected candidate is contingent on signing a non-disclosure agreement for proprietary information, trade secrets, and inventions

• Sponsorship will not be considered for this position unless specified in the posting

In this flex office/home role, you will be expected to work a minimum of 10 days per month from one of the following office locations: Madison, WI 53783; Boston, MA 02110
Candidates must reside within a 50-mile radius of the office location (or 35-mile radius for Boston / Chicago). #LI-Hybrid

Internal candidates are encouraged to apply regardless of location and will be considered based upon the needs of the role.

We provide benefits that support your physical, emotional, and financial wellbeing. You will have access to comprehensive medical, dental, vision and wellbeing benefits that enable you to take care of your health. We also offer a competitive 401(k) contribution, a pension plan, an annual incentive, 9 paid holidays and a paid time off program (23 days accrued annually for full-time employees). In addition, our student loan repayment program and paid-family leave are available to support our employees and their families. Interns and contingent workers are not eligible for American Family Insurance Group benefits.

We are an equal opportunity employer. It is our policy to comply with all applicable federal, state and local laws pertaining to non-discrimination, non-harassment and equal opportunity. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.

American Family Insurance is committed to the full inclusion of all qualified individuals. If a reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please email AskHR@AmFam.com to request a reasonable accommodation.