Envestnet is seeking a Business Assurance Security Manager to join our Technology department. This is a hybrid role, with in-office work required at either our Raleigh, NC or Berwyn, PA office location.
Envestnet is transforming the way financial advice is delivered through its connected technology, advanced insights, and asset management solutions – backed by industry-leading service and support. Since 1999, Envestnet has served the wealth management industry and today supports trillions in platform assets, serving over a hundred thousand financial advisors. The vast majority of the nation’s leading banks, the largest wealth management and brokerage firms, and over 500 of the largest RIAs rely on Envestnet’s wealth management platform and solutions to drive business growth, boost productivity, and deliver better financial outcomes for their clients.
Envestnet’s Strategy:
Leverage our scale and efficiencies to serve our clients’ needs comprehensively
Enable financial advisors to deliver more holistic advice – reflecting a more complete view of their clients’ financial lives, and in a more connected environment
For more information, please visit www.envestnet.com.
Job Summary:
The Business Assurance Security Manager ensures compliance with programs and processes to mitigate cybersecurity risk. BA Security Manager is responsible for the communication and completion of all security questions and security audits including the management of Third-Party risk data accumulation from our clients and business partners across the organization.
Job Responsibilities:
Responsible for assuring that all activities are properly documented, all tickets are communicated professionally and clearly, and that all documentation is organized efficiently and effectively.
Responsible for developing and documenting the process used by the client assurance team and managing the adherence to it; develops new processes or modifies existing processes to remain in line with our customers' needs as requirements change
Serve as mentor for the day-to-day activities of the current Client Assurance support resources including all members of the Service Management and Security Analyst function in the US and India.
Provide metrics and performance indicators on client assurance activities and assessment results.
Work with other organizations which we require to successfully complete third part audits including, but not limited to – HR, Compliance, Legal, Sales and Engineering (across Business Units) to make sure the team has the latest information necessary for success while minimizing findings.
Development and maintenance of aggregated metrics for the cyber security program
Providing regular reports and updates to senior management on client assurance activities and outcomes.
Responsible for ensuring the timely, responses, coordination and management of all client audits while minimizing audit issues or findings.
Accountable for validating all external communications to clients and developing and managing internal communication for all aspects of the function.
Own the tooling and management of process related to Jira, Loopio and any other reporting or Audit tools, both in making sure they are configured to suit our needs but are continuously being improved for the overall Information security function.
Responsible for delivering client assurance to Cloud SaaS providers, as well as the effective utilization of AI technologies.
Responsible for satisfying the compliance requirement of continuous self-education by conducting trainings for new hires and the Enterprise security team.
Adherence to and application of Envestnet legal, compliance, risk, business continuity and administrative policy within the role and department(s) including the timely completion of training & awareness, affirmations and testing as requested.
As part of the responsibilities for this role, you will understand and readily support Envestnet's established corporate business practices, policies, internal controls and procedures designed to create value or minimize risk
Required Qualifications:
A bachelor's degree in computer science, information technology, cybersecurity, or a related field is preferred.5+ years field experience in a client services function handling complex requests and complex audit response.
Experience in working with AI technologies, including understanding of AI-driven solutions and their integration within security frameworks.
Strong experience working with SaaS platforms, including implementation, management, optimization of SaaS solutions, and best practices for ensuring client assurance within a SaaS environment.
A strong understanding of cybersecurity principles, concepts, and best practices.
Understand risk assessment methodologies, compliance frameworks (such as NIST, CACI, GDPR, SOC2, and PCI DSS service providers. Candidate should have a clear and in-depth understanding of the architecture, security controls, and deployment models of these platforms.
Familiar with using and implementing GRC tools for audits and evidence management such as Archer
Envestnet:
Competitive Compensation/Total Reward Packages that include:
Health Benefits (Health/Dental/Vision)
Paid Time Off (PTO) & Volunteer Time Off (VTO)
401K – Company Match
Annual Bonus Incentives
Parental Stipend
Tuition Reimbursement
Student Debt Program
Charitable match
Wellness Program
Envestnet is an Equal Opportunity Employer.
#LI-AQ1