Senior security analyst

This position leads the development and execution of security awareness initiatives to reduce organizational risk by educating employees on cybersecurity threats, risks, and best practices. Proactively analyzes human-related security risks and behaviors and recommends targeted awareness strategies to prevent future occurrences. Collaborates cross-functionally with business and technical teams to align security awareness efforts with organizational objectives and ensure effective integration into business processes.

In this hybrid role, you will be expected to work a minimum of 10 days per month from the office. Candidates should reside within approximately 35-50 miles of one of the following office locations: Madison, WI 53783; Boston, MA 02110.

Internal candidates are encouraged to apply and should review the internal mobility guidelines in the hybrid policy reference guide for more information on potential relocation.

Candidates can be considered at the Lead level, if qualified.

Position Compensation Range

$97,000.00 - $164,000.00

Pay Rate Type

Salary

Compensation may vary based on the job level and your geographic work location. Relocation support is offered for eligible candidates.

Primary Accountabilities

• Develop, implement, and manage enterprise-wide security awareness programs to educate employees on cybersecurity risks, policies, and best practices.
• Design engaging training materials, campaigns, and communications tailored to diverse audiences across the organization.
• Conduct regular assessments of employee security awareness through surveys, simulated phishing exercises, and other measurement tools; analyze results and recommend improvements.
• Collaborate with cross-functional teams (IT, HR, Legal, Communications) to ensure alignment of security awareness initiatives with organizational goals and compliance requirements.
• Monitor emerging threats and trends in cybersecurity, update awareness content and training accordingly.
• Track and report key metrics on program effectiveness to leadership, providing actionable insights for continuous improvement.
• Serve as a subject matter expert and advisor on security awareness, supporting incident response and risk mitigation efforts as needed.
• Maintain documentation of program activities, training completion, and compliance with regulatory standards.
  
  

Specialized Knowledge & Skills Requirements

• In-depth understanding of cybersecurity principles, threat landscapes, and risk management frameworks (e.g., NIST, ISO 27001).
• Experience in adult learning theory, instructional design, and effective communication strategies for technical and non-technical audiences.
• Experience with security awareness platforms, phishing simulation tools, and e-learning management systems.
• Familiarity with regulatory requirements and industry standards related to information security (e.g., HIPAA, PCI DSS, GDPR).
• Strong analytical skills to interpret data, identify trends, and measure program impact.
• Ability to translate complex security concepts into clear, actionable guidance for employees.
• Excellent project management skills, with the ability to prioritize tasks and manage multiple initiatives simultaneously.
• Professional certifications such as CISSP, CISM, or SANS Security Awareness are highly desirable.
• Travel Requirements
• Up to 10%.
  
  

Additional Information

• Offer to selected candidate will be made contingent on the results of applicable background checks
• Offer to selected candidate is contingent on signing a non-disclosure agreement for proprietary information, trade secrets, and inventions
• Sponsorship will not be considered for this position unless specified in the posting
  
  

We provide benefits that support your physical, emotional, and financial wellbeing. You will have access to comprehensive medical, dental, vision and wellbeing benefits that enable you to take care of your health. We also offer a competitive 401(k) contribution, a pension plan, an annual incentive, 9 paid holidays and a paid time off program (23 days accrued annually for full-time employees). In addition, our student loan repayment program and paid-family leave are available to support our employees and their families. Interns and contingent workers are not eligible for American Family Insurance Group benefits.

We are an equal opportunity employer. It is our policy to comply with all applicable federal, state and local laws pertaining to non-discrimination, non-harassment and equal opportunity. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.

American Family Insurance is committed to the full inclusion of all qualified individuals. If a reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please email [email protected] to request a reasonable accommodation.