Director of Threat Modeling Cyber Practice Group

Profile

Director of Threat Modeling – Cyber Practice GroupAon is looking for a Director of Threat Modeling with our Cyber Practice Group, part of our global Reinsurance Solutions business.  ROLE PURPOSEAon has a holistic and industry-leading platform to address cyber risk by combining cybersecurity expertise with actuarial knowledge, catastrophe modeling, and reinsurance brokerage.  As part of this team, you will play a critical role in helping the insurance industry to identify, quantify and mitigate cyber exposures – particularly those of systemic importance.  The qualified candidate will be based out of our Chicago or New York office.We are seeing a Director of Threat Modeling for our Cyber Practice Group to lead our research and development of threat models, testing and validating industry approaches as well as creating tailored approaches to serve clients in the cyber insurance and reinsurance market.The primary role is two-fold: researching the state of the art in cyber threats, and translating this understanding into views of risk to support insurance and reinsurance decision making.  The Director will use a combination of commercial cyber catastrophe models, threat intelligence feeds, and independent research from which to draw insight.  This role will work very closely with Aon’s actuaries, catastrophe modelers and reinsurance brokers to translate these insights into actions that help re/insurers manage and mitigate risk.  You will become familiar with Aon’s tools and approach, contribute significantly to their development and present Aon’s solutions and services to our clients.  The secondary role is to supervise a Senior Technology Risk Analyst who will support you in your research and deliverables. DUTIES AND RESPONSIBILITIESUnderstand the key drivers of network security, and be able to communicate them clearly to clientsAbility to identify the full life cycle of a cyberattack, understanding vulnerabilities, attacks and motives to help map aggregation of cyber risk and establish plans to implement solutionsProvide ongoing assessment and consulting as cyber knowledge and security threats continually changeAct as liaison between the insurance industry and cybersecurity / technology industry, articulating technical knowledge to business stakeholders and non-technology audienceUnderstand where changes in the cybersecurity industry will create new opportunities or challenges for (re)insurers, as well as opportunities for Aon to develop new capabilities and products around this changing environmentAssist in the development of cyber solutions for the (re)insurance industry and advancement of leading-edge capabilities for Aon.Work with colleagues (brokers, analytics and others) to identify and respond to client needs and develop additional opportunities related to products and servicesUnderstand cyber insurance products, how they work and their purposeUnderstand types of insurance products, and how cyber risks can impact themUnderstand reinsurance contracts and products (terminology, terms and conditions)Run cyber catastrophe models and produce relevant outputsMonitor threat intelligence feeds for new campaigns, exploits, and mitigation actions that companies can use to address themContribute to the development of bespoke risk scenarios for insurance clientsPrepare client-ready PowerPoint presentations to communicate analysis results to brokers and clientsResearch and report on trends in the rapidly-evolving technology risk environment, including quarterly Aon publicationsManage workflow proactively SKILLS AND QUALIFICATIONSREQUIRED:Undergraduate degree10 -15 years’ experience advising and consulting in Cyber Security/Network SecurityStrong quantitative skillsExpertise with data communications and data privacy and a full understanding of all layers of a modern communications networkKnowledge of cutting edge cyber security tools and practices Good knowledge of cyber security frameworks like NIST and ISO 27001 Solid knowledge of the life cycle of a cyberattack – how, when, and ramificationsConversant with common threat models, e.g. Lockheed Martin kill chain and MITRE ATT&CK frameworkIdentifies and has knowledge of motives of cyber hacking: financial gain, espionage, disruption, notoriety, etc. Knowledge of relevant network security industry providersExcellent interpersonal and communication skills (oral and written) for both technical and nontechnical audiencesAbility to work in a fast-paced environment, independently and in collaboration with othersFlexibility to adapt when project timelines and expectations may change, and to adapt approaches when data is limitedTake initiative on internal projects to improve processes, products or servicesTake ownership and responsibility for quality, accuracy and timely completion of deliverablesAbility to identify and resolve problems, think creatively, strategically and analytically PREFERRED:Experience working within the Military / Intelligence Agency / Government / Law Enforcement / Cybersecurity spaceCISSP, Certified Ethical Hacker or related cybersecurity certification, or Master’s or PhD in Computer Science / CybersecurityExperience of working in a globally matrixed organization Experience in client-facing consulting Programming / Database / R / Python abilitiesKnowledge of cyber insurance and reinsurance products We offer you A competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.  Our Colleague Experience: From helping clients gain access to capital after natural disasters, to creating access to health care and retirement for millions, Aon colleagues empower results for our clients, communities, and each other every day.  They make a difference, work with the best, own their potential, and value one another.  This is the Aon Colleague Experience, defining what it means to work at Aon and realizing our vision of empowering human and economic possibility. To learn more visit Aon Colleague Experience.    About Aon:Aon plc (NYSE:AON) is a leading global professional services firm providing a broad range of risk, retirement and health solutions. Our 50,000 colleagues in 120 countries empower results for clients by using proprietary data and analytics to deliver insights that reduce volatility and improve performance. Aon provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran, marital, or domestic partner status.  Aon is committed to a diverse workforce and is an affirmative action employer. DISCLAIMER: Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. 2497278,qualifications:UNAVAILABLE,responsibilities:Director of Threat Modeling – Cyber Practice GroupAon is looking for a Director of Threat Modeling with our Cyber Practice Group, part of our global Reinsurance Solutions business.  ROLE PURPOSEAon has a holistic and industry-leading platform to address cyber risk by combining cybersecurity expertise with actuarial knowledge, catastrophe modeling, and reinsurance brokerage.  As part of this team, you will play a critical role in helping the insurance industry to identify, quantify and mitigate cyber exposures – particularly those of systemic importance.  The qualified candidate will be based out of our Chicago or New York office.We are seeing a Director of Threat Modeling for our Cyber Practice Group to lead our research and development of threat models, testing and validating industry approaches as well as creating tailored approaches to serve clients in the cyber insurance and reinsurance market.The primary role is two-fold: researching the state of the art in cyber threats, and translating this understanding into views of risk to support insurance and reinsurance decision making.  The Director will use a combination of commercial cyber catastrophe models, threat intelligence feeds, and independent research from which to draw insight.  This role will work very closely with Aon’s actuaries, catastrophe modelers and reinsurance brokers to translate these insights into actions that help re/insurers manage and mitigate risk.  You will become familiar with Aon’s tools and approach, contribute significantly to their development and present Aon’s solutions and services to our clients.  The secondary role is to supervise a Senior Technology Risk Analyst who will support you in your research and deliverables. DUTIES AND RESPONSIBILITIESUnderstand the key drivers of network security, and be able to communicate them clearly to clientsAbility to identify the full life cycle of a cyberattack, understanding vulnerabilities, attacks and motives to help map aggregation of cyber risk and establish plans to implement solutionsProvide ongoing assessment and consulting as cyber knowledge and security threats continually changeAct as liaison between the insurance industry and cybersecurity / technology industry, articulating technical knowledge to business stakeholders and non-technology audienceUnderstand where changes in the cybersecurity industry will create new opportunities or challenges for (re)insurers, as well as opportunities for Aon to develop new capabilities and products around this changing environmentAssist in the development of cyber solutions for the (re)insurance industry and advancement of leading-edge capabilities for Aon.Work with colleagues (brokers, analytics and others) to identify and respond to client needs and develop additional opportunities related to products and servicesUnderstand cyber insurance products, how they work and their purposeUnderstand types of insurance products, and how cyber risks can impact themUnderstand reinsurance contracts and products (terminology, terms and conditions)Run cyber catastrophe models and produce relevant outputsMonitor threat intelligence feeds for new campaigns, exploits, and mitigation actions that companies can use to address themContribute to the development of bespoke risk scenarios for insurance clientsPrepare client-ready PowerPoint presentations to communicate analysis results to brokers and clientsResearch and report on trends in the rapidly-evolving technology risk environment, including quarterly Aon publicationsManage workflow proactively SKILLS AND QUALIFICATIONSREQUIRED:Undergraduate degree10 -15 years’ experience advising and consulting in Cyber Security/Network SecurityStrong quantitative skillsExpertise with data communications and data privacy and a full understanding of all layers of a modern communications networkKnowledge of cutting edge cyber security tools and practices Good knowledge of cyber security frameworks like NIST and ISO 27001 Solid knowledge of the life cycle of a cyberattack – how, when, and ramificationsConversant with common threat models, e.g. Lockheed Martin kill chain and MITRE ATT&CK frameworkIdentifies and has knowledge of motives of cyber hacking: financial gain, espionage, disruption, notoriety, etc. Knowledge of relevant network security industry providersExcellent interpersonal and communication skills (oral and written) for both technical and nontechnical audiencesAbility to work in a fast-paced environment, independently and in collaboration with othersFlexibility to adapt when project timelines and expectations may change, and to adapt approaches when data is limitedTake initiative on internal projects to improve processes, products or servicesTake ownership and responsibility for quality, accuracy and timely completion of deliverablesAbility to identify and resolve problems, think creatively, strategically and analytically PREFERRED:Experience working within the Military / Intelligence Agency / Government / Law Enforcement / Cybersecurity spaceCISSP, Certified Ethical Hacker or related cybersecurity certification, or Master’s or PhD in Computer Science / CybersecurityExperience of working in a globally matrixed organization Experience in client-facing consulting Programming / Database / R / Python abilitiesKnowledge of cyber insurance and reinsurance products We offer you A competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.  Our Colleague Experience: From helping clients gain access to capital after natural disasters, to creating access to health care and retirement for millions, Aon colleagues empower results for our clients, communities, and each other every day.  They make a difference, work with the best, own their potential, and value one another.  This is the Aon Colleague Experience, defining what it means to work at Aon and realizing our vision of empowering human and economic possibility. To learn more visit Aon Colleague Experience.    About Aon:Aon plc (NYSE:AON) is a leading global professional services firm providing a broad range of risk, retirement and health solutions. Our 50,000 colleagues in 120 countries empower results for clients by using proprietary data and analytics to deliver insights that reduce volatility and improve performance. Aon provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran, marital, or domestic partner status.  Aon is committed to a diverse workforce and is an affirmative action employer. DISCLAIMER: Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time.,skills:UNAVAILABLE,workHours:UNAVAILABLE,jobBenefits:UNAVAILABLE,datePosted:2021-10-22T16:04:00 0000,employmentType:FULL_TIME,educationRequirements:UNAVAILABLE,salaryCurrency:USD,baseSalary:{@type:MonetaryAmount,currency:USD,value:{@type:QuantitativeValue,value:0,minValue:0,maxValue:0,unitText:YEAR}},validThrough:2022-10-22T16:05:28.000Z,industry:UNAVAILABLE,hiringOrganization:{@type:Organization,name:Aon Corporation,sameAs:https://jobs.aon.com,logo:https://assets.jibecdn.com/prod/aon/0.0.43/assets/brands/https://aon.icims.com/icims2/servlet/icims2?module=AppInert&action=download&id=1134557&hashed=154379},jobLocation:{@type:Place,address:{@type:PostalAddress,addressLocality:Chicago,addressRegion:Illinois,streetAddress:200 E Randolph,postalCode:60601,addressCountry:United States}}}

Company info

Aon PLC.
Website : http://www.aon.com