Share this Job

Sr. IT Risk & Security Consultant

Apply now »

Date Posted: Sep 22, 2022

Location(s): Cary, NC, US, 27513

Company: MetLife

Sr. IT Risk & Security Consultant

Location: Cary, NC USA (Hybrid)


Role Value Proposition: 

Our growing InfoSec organization at MetLife is expanding and adding an experienced Senior IT Risk Consultant. This role is a mix of business, technical and functional aspects so the ideal candidate will come from a background with a mix of skills in controls, IT Security, Risk Management, and Digital Transformation. The value of this role is to ensure we have processes and controls in place to meet our growing legal, regulatory, controls, and security requirements. The control environment is key to maintaining our security risk posture at MetLife.


Key Responsibilities:

  • Develop, deploy, improve, and govern the InfoSec controls environment to ensure the processes and controls are integrated, comprehensive, effective, automated, and meet regulatory and operational requirements.
  • Develop and maintain collaborative relationships with IT business partners, IT leadership, Control Owners, and Internal Audit stakeholders to drive control standards and manage risk.
  • Provide direction and guidance in the development, implementation and communication of control related policies and standards.
  • Help drive program to ensure we are building strong security and I/T processes, controls, and automate controls whenever possible to provide increased efficiency and operating effectiveness.
  • Support all assessments (maturity, readiness, compliance) and audits (internal/external) related to the IT Process, Risk, and Control (PRC) framework, the risk management framework, and compliance framework, and proactively managing the governance, structure, and maintenance of the PRC framework using tools (i.e. Archer and OpenPages).
  • Understanding of risk and change management, security policies and controls, control implementation experience with NIST, SOX, or UCF.
  • Translate business requirements into specific system, application, or process designs.
  • Clearly articulate complex risk mitigation strategies and priorities in simple ways to align global matrixed groups of stakeholders to common objectives.
  • Partner with Internal Controls, Audit, Business Controls, and Legal teams to ensure we develop required controls and meet operational, regulatory and audit requirements.


Essential Business Experience and Technical Skills:



  • Bachelor’s degree in Information Technology, Security, or related degree
  • A minimum of 3 years of experience working with IT Security and Controls
  • General understanding of IT infrastructure, operating system platforms, and security-related concepts
  • General understanding of IT Security frameworks (e.g. NIST 800-53, NIST CSF, COBIT, ISO 27001)
  • Must be an intelligent, articulate, and influential to effectively translate and communicate technical concepts



  • Knowledge of IT operations, Information Security operations, Identity and Access controls, and Change Management controls across multiple platforms
  • Working knowledge of SOX, SSAE18, PCI, HIPAA frameworks of controls
  • Understanding of Risk Management process, FAIR Cyber Risk model


At MetLife, we’re leading the global transformation of an industry we’ve long defined. United in purpose, diverse in perspective, we’re dedicated to making a difference in the lives of our customers.





MetLife, through its subsidiaries and affiliates, is one of the world’s leading financial services companies, providing insurance, annuities, employee benefits and asset management to help its individual and institutional customers navigate their changing world. Founded in 1868, MetLife has operations in more than 40 countries and holds leading market positions in the United States, Japan, Latin America, Asia, Europe and the Middle East.


We are one of the largest institutional investors in the U.S. with $642.4 billion of total assets under management as of March 31, 2021. We are ranked #46 on the Fortune 500 list for 2021. In 2020, we were named to the Dow Jones Sustainability Index (DJSI) for the fifth year in a row. DJSI is a global index to track the leading sustainability-driven companies. We are proud to have been named to Fortune magazine’s 2021 list of the “World’s Most Admired Companies.”      


MetLife is committed to building a purpose-driven and inclusive culture that energizes our people. Our employees work every day to help build a more confident future for people around the world.


We want to make it simple for all interested and qualified candidates to apply for employment opportunities with MetLife.  For further information about how to request a reasonable accommodation, please click on the Disability Accommodations link below.


MetLife is a proud Equal Employment Opportunity and Affirmative Action employer dedicated to attracting, retaining, and developing a diverse and inclusive workforce. All qualified applicants will receive consideration for employment at MetLife without regards to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, uniformed service member or veteran status, or any other characteristic protected by law.


MetLife maintains a drug-free workplace.


Nearest Major Market: Raleigh