Specialist, Cyber Technology Risk Professional

If you’re passionate about being part of a dynamic organization that enables a Fortune 100 company with nearly $70 billion in annual sales to drive innovation and adopt new technologies that deliver business results, then Nationwide’s Technology team could be the place for you! At Nationwide®, “on your side” goes beyond just words. Our customers are at the center of everything we do and we’re looking for associates who are passionate about delivering extraordinary care. This role will work a hybrid schedule coming into the Columbus, Ohio, Des Moines, Iowa, or Scottsdale, Arizona office 2 days (Tuesday & Thursday) per week. Remote internal associates may also be considered. Information Risk Governance (IRG) consists of multiple teams and subject matter experts, assessing risk for a multitude of technologies, processes, and controls. The Financial Reporting Controls team, testing the technology controls for applications and infrastructure supporting business processes, has an exciting opportunity to contribute to the management of emerging risks within the critical technology landscape. As a Specialist, Cyber Technology Risk Professional, you'll help deliver technology control testing results for maintaining and strengthening the organization’s risk posture. Additionally, you’ll look at internal processes to drive continuous improvement to our processes and standards and contribute to the environment with efficiencies and innovation. You’ll be relied upon to work closely with internal clients to harvest good working relationships and building a strong rapport to obtain necessary documentation and provide advisement for compliance purposes. The technology landscape is rapidly evolving, so it will be imperative to navigate through the changing business environments and associated risks. In this role you will: Test multiple technology infrastructure, operations, and security controls for multiple applications concurrently. Apply critical thinking and analysis to independently execute control testing and documenting of results while adhering to professional and internal standards. Identify and document deviations and exceptions within testing results, while assessing the risk criticality and impact. Participate and lead aspects of innovation and automation initiatives for team uplift and efficiency of internal processes. Effectively use strong communication skills for partnering with internal clients and business entities. Demonstrates thought leadership to team by reviewing work performed by other team members and providing verbal and written feedback. May perform other responsibilities as assigned. Technical Skills Desired: MS Office Suite, Sharepoint, SQL, Powershell, Power Apps + BI, Python, GitHub, Archer, Glean, CoPilot Methodology and Critical Thinking Skills: Must have strong foundational understanding of Technology Audit concepts, knowledge of controls, mitigation strategies, and risk management Regulatory and Compliance Knowledge: Familiarity with Model Audit Rule (MAR), Sarbanes-Oxley (SOX), Payment Card Industry (PCI), Personal Identifiable Information (PII), HIPAA COSO, COBIT, NIST, and ISO 27001 frameworks #LI-AC1 Job Description Summary If you’re enthusiastic about delivering secure technology solutions to support a company providing extraordinary care to its customers, then Nationwide Technology is the place for you. Nationwide's industry-leading technology workforce embraces an agile work environment and a collaborative culture to deliver outstanding solutions and results. If that sounds like something you aspire to, we want to hear from you! As a Cyber Technology Risk Professional, you'll be entrusted to protect Nationwide. You'll identify issues and develop solutions for cyber security problems. You'll assess, report, and manage cyber risk through constant interaction with our technology and business partners. You'll gain an understanding of leading-edge technologies that play a key part in keeping Nationwide safe in our increasingly threatening world. You'll also help to build long-term relationships with potential Nationwide partners by providing up-to-date information on our Information Security Practices and thereby differentiating ourselves from our competitors by ensuring Nationwide is resilient in an ever-changing world and can meet, and exceed, its regulatory obligations while protecting our customers and business partners. Job Description Key Responsibilities: Supports the improvement of the risk posture pertaining to confidentiality, availability, and integrity of assigned area by identifying, documenting, and communicating cyber risks. Partners in the development and reporting of key risk metrics. Responsible for applying secure software and systems engineering practices throughout the delivery lifecycle to ensure our data and technology solutions are protected from threats and vulnerabilities. Integrates technology risk practices to reduce business risk. Partners to understand the current risk posture of portfolio and security priorities. Assists with communicating risk issue mitigation plans and ensuring risks are closed on time. Compliance: Works with external regulators to respond to inquiries properly and accurately. Continuously matures compliance capabilities, providing expertise and execution against, the risk inherent in all compliance and regulatory matters. Collaborates with customers to respond to Request for Proposal (RFP), Request for Information (RFI), and Diligence inquiries. Risk Partner: Completes simple to moderate risk assignments on time, achieving set milestones. Performs and tracks consulting efforts to improve cyber posture. Helps drive the adoption of IRM capability efforts within assigned area. Enhances application and cloud security to counteract evolving cyber threats. Serves as a conduit, driver and communicator between cyber capability and clients. Continuity: Performs straightforward to moderate Business Impact Analysis to identify enterprise-critical processes. Collaborates with peers and partners to develop test plans and strategies, monitor exercises, and communicates the results. May perform other responsibilities as assigned. Reporting Relationships: Reports to Manager, Risk Leader or above. Typical Skills and Experiences: Education: Undergraduate studies in cyber security, management information systems, engineering, math, computer science, data analytics or comparable experience and education strongly preferred. Graduate studies in cyber security, computer science or a related field are a plus. License/Certification/Designation: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Business Continuity Professional (CBCP) or another cyber certification preferred. Experience: Typically, three years of experience in one or more information risk management capabilities and/or information audit systems. Three years of experience in Technology. Knowledge, Abilities and Skills: Ability to make decisions and recommendations. Aptitude to build relationships and set individual priorities. Solid communication skills. Insurance and/or financial services industry knowledge a plus. Other criteria, including leadership skills, competencies and experiences may take precedence. Staffing exceptions to the above must be approved by the hiring manager’s leader and Human Resource Business Partner. Values: Regularly and consistently demonstrates Nationwide Values. Job Conditions: Overtime Eligibility: Exempt (Not Eligible) Working Conditions: Hybrid to normal office environment. ADA: The above statements cover what are generally believed to be principal and essential functions of this job. Specific circumstances may allow or require some people assigned to the job to perform a somewhat different combination of duties. We currently anticipate accepting applications until 06/05/2026. However, we encourage early submissions, as the posting may close sooner if a strong candidate slate is identified before the deadline. Benefits We have an array of benefits to fit your needs, including: medical/dental/vision, life insurance, short and long term disability coverage, paid time off with newly hired associates receiving a minimum of 18 days paid time off each full calendar year pro-rated quarterly based on hire date, nine paid holidays, 8 hours of Lifetime paid time off, 8 hours of Unity Day paid time off, 401(k) with company match, company-paid pension plan, business casual attire, and more. To learn more about the benefits we offer, click here. Nationwide is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive culture where everyone feels challenged, appreciated, respected and engaged. Nationwide prohibits discrimination and harassment and affords equal employment opportunities to employees and applicants without regard to any characteristic (or classification) protected by applicable law. This position could be filled within any of the lower 48 U.S. states. Smoke-Free Iowa Statement: Nationwide Mutual Insurance Company, its affiliates and subsidiaries comply with the Iowa Smokefree Air Act. Smoking is prohibited in all enclosed areas on or around company premises as well as company issued vehicles. The company offers designated smoking areas in which smoking is permitted at each individual location. The Act prohibits retaliation for reporting complaints or violations. For more information on the Iowa Smokefree Air Act, individuals may contact the Smokefree Air Act Helpline at View phone number on click.appcast.io. For NY residents please review the following state law information: Notice of Employee Rights, Protections, and Obligations LS740 (ny.gov) NOTE TO EMPLOYMENT AGENCIES: We value the partnerships we have built with our preferred vendors. Nationwide does not accept unsolicited resumes from employment agencies. All resumes submitted by employment agencies directly to any Nationwide employee or hiring manager in any form without a signed Nationwide Client Services Agreement on file and search engagement for that position will be deemed unsolicited in nature. No fee will be paid in the event the candidate is subsequently hired as a result of the referral or through other means. Nationwide pays on a geographic-specific salary structure and placement within the actual starting salary range for this position will be determined by a number of factors including the skills, education, training, credentials and experience of the candidate; the scope, complexity and location of the role as well as the cost of labor in the market; and other conditions of employment. If a Sales job, Sales Incentives, based on performance goals are possible in addition to this range. Note on Compensation for Part-Time Roles: Please be aware that the salary ranges listed below reflect full-time compensation. Actual compensation may be prorated based on the number of hours worked relative to a full-time schedule. The national salary range for Specialist, Cyber Technology Risk Professional : $95,500.00-$177,500.00 The expected starting salary range for Specialist, Cyber Technology Risk Professional : $95,500.00 - $143,500.00 At Nationwide, we find purpose in protecting people, businesses and futures with extraordinary care – and we’ve been doing that since 1926. Our financial strength and caring culture extend beyond our associates into the communities we serve. You really can feel the difference at Nationwide, which is why we continue to be named one of the Fortune 100 Best Companies To Work For. Check out why others think we're a great place to work, too, and let us know – can you see yourself at Nationwide? Nationwide is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive culture where everyone feels challenged, appreciated, respected and engaged. Nationwide prohibits discrimination and harassment and affords equal employment opportunities to employees and applicants without regard to any characteristic (or classification) protected by applicable law.