Sr. Director, Enterprise Data Protection

Built on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers.

Brown & Brown is an independent insurance intermediary that through its licensed subsidiaries provides a variety of insurance and reinsurance products and services to corporate, public entity, institutional, trade, professional, association, and individual clients. Headquartered in Daytona Beach, Florida, offices are located across the United States, with products and services offered through four major business divisions. We are listed on the NYSE at BRO. Our drive to be the best has made Brown & Brown one of the largest and most respected independent insurance intermediaries in the nation, with over 75 years of continuous service. The Company is ranked as the sixth largest such organization in the United States and seventh in the World by Business Insurance magazine.

The Sr. Director, Enterprise Data Protection will establish and lead the Data Privacy & Protection practice for Brown & Brown. Reporting to the Chief Data Officer (CDO), this role is responsible for the strategy and execution of the Technology Solutions program(s) and practice(s) required to protect company and sensitive client data from internal and external threats in alignment with applicable regulation(s) and privacy law(s). This experienced individual will partner across the business and technology to develop, implement, and monitor data protection related policies, standards, procedures, technologies and controls across the enterprise with a focus on enabling Brown & Brown teammates to work anywhere securely.

Serving as a consultant and partner to the business and embedded delivery teams across the organization, they will provide support, managed services, technical capabilities and subject matter expertise to enable and accelerate the design and implementation of data protection related policies and controls. This leadership position will serve as the company champion for Data Classification and Data Protection, collaborating with internal stakeholders and external partners to develop and deliver educational content and training focused on protecting company and sensitive client data.

Responsibilities:

• Establish and lead the Data Privacy & Protection practice.

• Partner with the CDO, CISO and CTO to develop, communicate and implement the Enterprise Data Protection Strategy.

• Drive the development, implementation and monitoring of data protection related policies, standards, procedures, technologies and controls.

• Establish an Enterprise inventory of data assets and their classification in alignment with Brown & Brown data protection related policies.

• Drive the development, implementation and reporting of data protection metrics, KPIs and KRIs.

• Partner with business stakeholders to improve Brown & Brown's data protection maturity in a way that supports the business strategy and drives desired business outcomes.

• Develop third-party partnerships and operating models to support delivery scaling requirements.

• Work well with co-located and distributed team members and partners.

• Demonstrate a high degree of creativity and problem-solving skills.

• Other duties as assigned.

Required:

• Bachelor's degree in computer science or related field or equivalent work experience.

• Experience defining and implementing Data Loss Prevention programs.

• Strong knowledge of concepts, risks and controls related to data discovery, classification, tagging and protection.

• Experience with Proofpoint, BigID, Veronis and/or equivalent technologies and platforms.

• Experience writing policies and standards, including incorporating feedback and building consensus across a large group of stakeholders.

• Experience working with key stakeholders and leaders in business and technology.

• Experience facilitating working sessions and building consensus.

• Experience working with external third-parties to develop relationships and operating models for cost-effective scaling of delivery.

• Excellent verbal and written communication skills.

• Ability to build strong relationships and work collaboratively on teams.

• Self-starter that works well and is able to be a leader in a matrixed team environment.

• Ability to adapt and respond in a rapidly evolving business environment.

• 10+ years of related work experience.

Preferred:

• Experience with design, implementation and delivery of Data Loss Prevention solutions in a hybrid environment (e.g. on-premises data centers, cloud data centers, Microsoft M365).

• Experience with data protection in a multi-national environment with controls to monitor and enforce consumer rights and geo-location requirements (e.g. GDPR).

• 15+ years of related work experience and 10+ years of progressive leadership experience.

• Experience in the insurance industry and/or basic knowledge of insurance.

What we offer:

• Excellent growth and advancement opportunities

• Competitive pay based on experience.

• Discretionary Time Off (DTO)

• Generous benefits package: health, dental, vision, 401(k), etc.

• Employee Stock Purchase Plan

• Tuition Reimbursement and Student Loan Repayment Assistance

• Mental Health Resources

We are an Equal Opportunity Employer. We take pride in the diversity of our team and seek diversity in our applicants.