Cybersecurity Awareness & Assurance Analyst

Information Technology
47389 Requisition #
Apply for Job
Share this Job
Sign Up for Job Alerts

Arthur J. Gallagher & Co., one of the world's largest insurance brokerage and risk management services firms, provides a full range of retail and wholesale property/casualty (P/C) brokerage and alternative risk transfer services globally, as well as employee benefit brokerage, consulting and actuarial services. Gallagher also offers claims and information management, risk control consulting and appraisal services to clients around the world. If you're looking for a professional career with an industry leader then you have come to the right place.  Wherever your interests lie, we're sure you will agree on one thing: our continued prosperity hinges on our greatest resource --- our people.


Position Summary:

The Cybersecurity Awareness & Assurance Analyst will be a key member of the Global Cybersecurity Services team responsible for coordination of cybersecurity awareness training and assurance activities. Success in this role requires a good understanding of information security best practices, control frameworks, ability to understand and communicate risk and controls, organization, planning, and good communication and writing skills. This position is responsible for developing and delivering a framework, strategies and plans for the Cybersecurity Training and Awareness Program to raise the general level of awareness of cybersecurity and deeper training for job related security competencies in critical functions. The role will work closely with AJG corporate functions such as Legal Compliance, Human Resources, Corporate Communications, Information Technology and business unit/divisional personnel.


This role is expected to develop and deliver awareness and training materials in person, hands-on, as well as through online Learning Management Systems and other trainers in the organization. The role ensures that the cybersecurity awareness program communicates our security policies and requirements in a manner which facilitates knowledge, understanding and practical application so that audience know, understand and can follow them.


Essential Duties and Responsibilities: 

  • Proactive and self-motivated, willing to take the lead on security awareness and training activities, developing and delivering to a well-thought-out strategy and plans.
  • Plan, manage and create a positive cybersecurity awareness program that effectively engages employees, including changing the security behaviors of Gallagher’s users.
  • Ensure that cybersecurity awareness program meets compliance requirements and relevant industry regulations and standards.
  • Coordinate and administer mandatory cybersecurity and data protection trainings through online Learning Management systems as well as other methods.
  • Prepare and deliver targeted awareness campaigns (phishing, cybersecurity and data protection newsletters, information governance, etc.)
  • In coordination with divisional/regional functional owners and IT security/compliance leads, develop or modify awareness plans for different cultures, nationalities and languages, identify gaps and develop training plans for internal staff.
  • Develop project and program budgets and maintain security training vendor relationships.
  • Develop and maintain metrics that effectively measure the program’s impact. 
  • Maintain departmental SharePoint site(s). 
  • Active participation in strategic initiatives in accordance with overall cybersecurity goals and objectives.
  • Maintain cybersecurity and data protections policies and standards documentation and manages waivers too policy/standard.
  • Familiarity with the use of integrating social media, gamification technology, virtual rewards programs in awareness programs.
  • Support daily operational security activities such as responses to client inquiries regarding the information security program as required.
  • Perform cybersecurity reviews including regulatory assessments, vendor management assessments, and security compliance related projects.


Additional Duties:

  • Participate as required in Incident Response activities.
  • Participate in security investigations and compliance reviews as required.
  • Perform cybersecurity reviews including regulatory assessments, vendor management assessments, and security compliance related projects







  • Bachelor's degree
  • Minimum 3 years of cybersecurity or related experience
  • Excellent organizational skills and ability to communicate with internal/external entities and executives
  • Familiarity with information security frameworks, standards, practices (ISO 27001, NIST, COBIT)
  • Domestic and International travel may be required
  • Publication level writing skills
  • 1-3 years of Marketing or Communications or Learning Management Systems experience a plus
  • Proactive and self-motivated
  • Strong organization, documentation, and time management skills
  • Ability to collaborate effectively at many levels and from different organizations, and lead ad hoc project teams as necessary
U.S. Eligibility Requirements
  • Interested candidates must submit an application and resume/CV online to be considered 
  • Must be 18 years of age or older 
  • Must be willing to submit to a background investigation; any offer of employment is conditioned upon the successful completion of a background investigation 
  • Must have unrestricted work authorization to work in the United States.  For U.S. employment opportunities, Gallagher hires U.S. citizens, permanent residents, asylees, refugees, and temporary residents. Temporary residence does not include those with non-immigrant work authorization (F, J, H or L visas), such as students in practical training status. Exceptions to these requirements will be determined based on shortage of qualified candidates with a particular skill. Gallagher will require proof of work authorization
  • Must be willing to execute Gallagher's Employee Agreement, or the Non-Disclosure and Confidentiality Agreement, which requires, among other things, post-employment obligations relating to non-solicitation, confidentiality and non-disclosure
Gallagher believes that all persons are entitled to equal employment opportunity and does not discriminate against nor favor any applicant because of race, color, religion, sex, age, veteran status, disability, national origin, or any other legally protected status.  Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination.  In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified applicant with a disability, unless the accommodation would impose an undue hardship on the operation of our business.

Similar Listings

Rolling Meadows, Illinois, United States

📁 Information Technology

Requisition #: 47410

Rolling Meadows, Illinois, United States

📁 Information Technology

Requisition #: 46841

Rolling Meadows, Illinois, United States

📁 Information Technology

Requisition #: 47323