New York Life Insurance Company
Senior Associate - Cyber Security Risk and Control
New York Life Insurance Company, New York, New York, us, 10261
Senior Associate - Cyber Security Risk and Control
New York Life Insurance Company
Location Designation:
Hybrid - 3 days per quarter
Role Overview The Cybersecurity Risk and Controls Senior Associate will play a key role in strengthening New York Life’s cybersecurity posture by ensuring our security processes and controls align with our enterprise risk appetite and regulatory requirements. The ideal candidate will have a strong background in information security governance, risk management, and controls oversight.
What You’ll Do
Governance & Oversight
Work closely with Technology Risk to support the design and execution of cybersecurity governance processes, including policy reviews, risk reporting, and control testing.
Partner with Technology teams to ensure cybersecurity risks are identified, documented, and mitigated appropriately.
Audit & Compliance Support
Coordinate and support internal audits, regulatory exams, and external assessments related to cybersecurity.
Prepare documentation and evidence for auditors, regulators, and senior management.
Continuous Improvement
Contribute to process enhancements, automation, and control rationalization efforts to improve cybersecurity controls.
Identify opportunities to leverage AI and automation in risk monitoring and control testing.
Stay abreast of evolving cybersecurity regulations, technologies, and industry standards.
Risk & Control Assessment
Support risk and control self-assessments across cybersecurity domains (e.g., identity management, data protection, incident response, and network security).
Evaluate control effectiveness against NIST CSF, ISO 27001, and other regulatory frameworks.
Identify control gaps, track remediation progress, and validate closure activities.
Track issues and ensure timely remediation of findings.
What You’ll Bring
Bachelor’s degree in cybersecurity, information systems, risk management, or related field; or equivalent practical experience.
Minimum of 3 years of experience in cybersecurity risk management, governance, or controls oversight within a financial services or regulated industry.
Strong understanding of cybersecurity frameworks (NIST, CIS, ISO), IT general controls, and risk assessment methodologies.
Excellent verbal and written communication skills, including experience presenting risk insights to management.
Proven ability to work effectively with audit, technology, and business partners.
Preferred Qualifications
Professional certifications such as CISSP, CISA, CRISC, or CISM.
Experience supporting regulatory exams (e.g., NYDFS, OCC, NAIC).
Familiarity with AI/ML risk, cloud security, identity and access management, data protection, infrastructure security, endpoint protection, vulnerability management, application security, cybersecurity operations.
Prior experience developing cyber risk metrics or dashboards for leadership.
Pay Transparency Salary Range: $97,500 - $139,500
Overtime eligible: Exempt
Discretionary bonus eligible: Yes
Sales bonus eligible: No
Company Overview At New York Life, our 180-year legacy of purpose and integrity fuels our future. As we evolve into a more technology-, data-, and AI-enabled organization, we remain grounded in the values that drive lasting impact. Our diverse business portfolio creates opportunities to make a difference across industries and communities—inviting bold thinking, collaborative problem-solving, and purpose-driven innovation. Here, you’ll find the rare balance of long-standing stability and forward momentum, supported by an inclusive team that honors tradition while embracing progress.
Our Benefits We provide a full package of benefits for employees – and have unique offerings for a modern workforce, including leave programs, adoption assistance, and student loan repayment programs. Based on feedback from our employees, we continue to refine and add benefits to our offering, so that you can flourish both inside and outside of work. Learn more about our comprehensive benefit options.
Our Commitment to Inclusion At New York Life, fostering an inclusive workplace is fundamental to who we are and how we serve our communities. We have a longstanding commitment to creating an environment where individuals can contribute their best and succeed together. This foundation is rooted in our core values of humanity and integrity, ensuring that every employee feels valued and supported. By embracing a broad range of perspectives and experiences, we achieve greater success and fulfill our promise of providing financial security and peace of mind to families across all communities.
Legal & Equal Employment Opportunity
New York Life is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or any other protected characteristic.
Job Requisition ID: 92888
#J-18808-Ljbffr
Location Designation:
Hybrid - 3 days per quarter
Role Overview The Cybersecurity Risk and Controls Senior Associate will play a key role in strengthening New York Life’s cybersecurity posture by ensuring our security processes and controls align with our enterprise risk appetite and regulatory requirements. The ideal candidate will have a strong background in information security governance, risk management, and controls oversight.
What You’ll Do
Governance & Oversight
Work closely with Technology Risk to support the design and execution of cybersecurity governance processes, including policy reviews, risk reporting, and control testing.
Partner with Technology teams to ensure cybersecurity risks are identified, documented, and mitigated appropriately.
Audit & Compliance Support
Coordinate and support internal audits, regulatory exams, and external assessments related to cybersecurity.
Prepare documentation and evidence for auditors, regulators, and senior management.
Continuous Improvement
Contribute to process enhancements, automation, and control rationalization efforts to improve cybersecurity controls.
Identify opportunities to leverage AI and automation in risk monitoring and control testing.
Stay abreast of evolving cybersecurity regulations, technologies, and industry standards.
Risk & Control Assessment
Support risk and control self-assessments across cybersecurity domains (e.g., identity management, data protection, incident response, and network security).
Evaluate control effectiveness against NIST CSF, ISO 27001, and other regulatory frameworks.
Identify control gaps, track remediation progress, and validate closure activities.
Track issues and ensure timely remediation of findings.
What You’ll Bring
Bachelor’s degree in cybersecurity, information systems, risk management, or related field; or equivalent practical experience.
Minimum of 3 years of experience in cybersecurity risk management, governance, or controls oversight within a financial services or regulated industry.
Strong understanding of cybersecurity frameworks (NIST, CIS, ISO), IT general controls, and risk assessment methodologies.
Excellent verbal and written communication skills, including experience presenting risk insights to management.
Proven ability to work effectively with audit, technology, and business partners.
Preferred Qualifications
Professional certifications such as CISSP, CISA, CRISC, or CISM.
Experience supporting regulatory exams (e.g., NYDFS, OCC, NAIC).
Familiarity with AI/ML risk, cloud security, identity and access management, data protection, infrastructure security, endpoint protection, vulnerability management, application security, cybersecurity operations.
Prior experience developing cyber risk metrics or dashboards for leadership.
Pay Transparency Salary Range: $97,500 - $139,500
Overtime eligible: Exempt
Discretionary bonus eligible: Yes
Sales bonus eligible: No
Company Overview At New York Life, our 180-year legacy of purpose and integrity fuels our future. As we evolve into a more technology-, data-, and AI-enabled organization, we remain grounded in the values that drive lasting impact. Our diverse business portfolio creates opportunities to make a difference across industries and communities—inviting bold thinking, collaborative problem-solving, and purpose-driven innovation. Here, you’ll find the rare balance of long-standing stability and forward momentum, supported by an inclusive team that honors tradition while embracing progress.
Our Benefits We provide a full package of benefits for employees – and have unique offerings for a modern workforce, including leave programs, adoption assistance, and student loan repayment programs. Based on feedback from our employees, we continue to refine and add benefits to our offering, so that you can flourish both inside and outside of work. Learn more about our comprehensive benefit options.
Our Commitment to Inclusion At New York Life, fostering an inclusive workplace is fundamental to who we are and how we serve our communities. We have a longstanding commitment to creating an environment where individuals can contribute their best and succeed together. This foundation is rooted in our core values of humanity and integrity, ensuring that every employee feels valued and supported. By embracing a broad range of perspectives and experiences, we achieve greater success and fulfill our promise of providing financial security and peace of mind to families across all communities.
Legal & Equal Employment Opportunity
New York Life is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or any other protected characteristic.
Job Requisition ID: 92888
#J-18808-Ljbffr