×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant IT Project Manager

Sr. Cyber GRC Specialist; Hybrid

Job in Hartford, Hartford County, Connecticut, 06112, USA
Listing for: Selective Insurance Group
Full Time position
Listed on 2025-12-27
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, IT Project Manager
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below
Position: Sr. Cyber GRC Specialist (Hybrid)

About Us

At Selective, we don't just insure uniquely, we employ uniqueness. Selective is a midsized U.S. domestic property and casualty insurance company with a history of strong, consistent financial performance for nearly 100 years. Selective's unique position as both a leading insurance group and an employer of choice is recognized in a wide variety of awards and honors, including listing in Forbes Best Midsize Employers in 2025 and certification as a Great Place to Work® in 2025 for the sixth consecutive year.

Employees are empowered and encouraged to Be Uniquely You by being their true, unique selves and contributing their diverse talents, experiences, and perspectives to our shared success. Together, we are a high-performing team working to serve our customers responsibly by helping to mitigate loss, keep them safe, and restore their lives and businesses after an insured loss occurs.

Overview

Note:

(For NJ candidates) This role will be located at our future headquarters in Short Hills, N.J. Until the new headquarters is operational, the successful candidate will be offered the ability to work in our Branchville, N.J. location during this interim period.

We are seeking a highly experienced and knowledgeable Cyber GRC Senior Specialist to join our team. The ideal candidate will have 5-7 years of experience in governance, risk, and compliance, along with relevant industry certifications. This role involves leading the development and maturity of our cGRC programs, ensuring compliance with internal policies and external regulations, and providing strategic guidance to the organization.

Responsibilities
  • Subject matter expert in the development, implementation, and maintenance of cGRC policies, procedures, and frameworks.
  • Conduct multiple advanced comprehensive cGRC risk assessments including third-party assessments which encompass vendor onboarding and the vendor lifecycle to ensure vendors meet security and data protection standards, and to identify, evaluate, and prioritize risks across the organization, providing required and recommended mitigation action items.
  • Conduct operational risk assessments internally to ensure security and data protection standards, and to identify, evaluate, and prioritize risks across the organization, providing required and recommended mitigation action items.
  • Monitor and report on compliance with regulatory requirements and internal policies.
  • Collaborate with various departments to ensure adherence to cGRC standards.
  • Manage and oversee internal and external audits, including preparing documentation and responding to audit inquiries.
  • Maintain and update risk registers and compliance documentation.
  • Provide training and guidance to staff on GRC-related topics.
  • Stay current with industry trends and regulatory changes to ensure ongoing compliance.
  • Ability to collaborate with legal, security, business and IT teams to develop and implement strategies to mitigate risks and enhance compliance which uphold the CIA Triad, ensuring data confidentiality, integrity and availability.
  • Provide strategic guidance and support to senior management on cGRC-related matters.
  • Encourage cultural change by recommending sound IT security practices in day-to-day operations.
  • Continuously evaluate and improve the organization's cGRC processes and tools, leveraging industry best practices, automation, and innovative solutions.
  • Manage weekly and quarterly metrics related to IT Security risks, contract reviews, Non-Adherent Vendors, and vendor security incidents.
  • Lead the coordination of weekly and quarterly metrics related to IT Security risks, contract reviews, Non-Adherent Vendors, and vendor security incidents.
  • Lead the quarterly information security awareness training course including the design and implementation.
  • Manage metrics relevant to the operational success of the cGRC program.
Qualifications
  • 5-7 years of experience in GRC, risk management, or compliance.
  • Relevant industry certifications such as CISSP, CISM, CRISC, or similar preferred.
  • In-depth understanding of regulatory requirements and industry standards (e.g., NST CSF, NIST AI RMF, ISO 27001, GDPR, SOC1/2, Sarbanes‑Oxley).
  • Excellent analytical and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search