Job Description:
The Information Security Program Lead Analyst is responsible for driving efforts to support governance, risk and compliance. This role involves ensuring the execution of Information Security directives and activities in alignment with cyber and information security policy.
Key Responsibilities:
* Production of monthly IS metrics for multiple legal entities and regional governance bodies.
* Preparation of periodic IS reports for senior management summarizing the risk posture for the business.
* Guidance on preparing for audits, resolving audit findings and ensuring closure.
* Assistance with the strengthening of controls and process to pass audits with a satisfactory audit rating for all IS topics with no major IS issues.
* Preparation and management of responses to regulatory bodies on behalf of the CISO regional leadership.
* Preparation of management information.
* Support governance of risk exceptions, issues, and corrective action plans.
* Execution of approvals and reviews when needed.
* Proactive engagement with counterparts (in different disciplines) and teams to enhance risk oversight.
* Establishment of communication channels with cross-sector ISOs to strengthen relationships and tackle security issues efficiently.
Required Skills and Qualifications:
Proficient in interpreting and applying policies, standards and procedures. Demonstrates clear and concise written and verbal communication. Proven influencing and relationship management skills. Proven analytical skills.
Benefits:
Equal opportunity employer. Qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.
Others:
Participation in the IS community on committees and cross-business / functional opportunities. Attendance and participation in internal/external forums and risk committees when necessary.