We are currently seeking a skilled Information Security Analyst to join our Governance, Risk & Compliance segment of the Cyber Security Team. This role offers an exciting opportunity to contribute to the development and implementation of information security management practices.
Key Responsibilities:
* Perform activities in support of one or more information security management practices, including security compliance, risk assessment and management, and security policy management.
* Evaluate and ensure activities are performed in accordance with company policies and industry standard frameworks.
* Conduct information security risk assessments, continuous monitoring, and various regulatory or contractual compliance activities.
* Collaborate with key stakeholders to analyze and communicate information security risks and control compliance status.
* Develop and maintain training materials for stakeholders within the process area.
* Advise and educate stakeholders on managing cybersecurity risks and information assurance activities.
Requirements:
* Working knowledge of industry best practices and commonly used frameworks and standards (e.g., NIST 800-53/171, COSO, SOC/SSAE 18, COBIT, ISO 27001).
* Familiarity with regulations pertaining to information security, cyber risk management, compliance, and data privacy (e.g., SOX, GDPR, HIPAA, GxP/GALP/GMP).
* Prior experience using integrated risk management tools (e.g., ServiceNow) and/or vendor risk management tools (e.g., Process Unity) is a plus.
Ideal Candidate:
* A Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Enterprise Risk Management or related field or equivalent experience and one year of risk management, cybersecurity, compliance or related experience.
* Excellent written and verbal communication skills.
Benefits:
Our organization offers a competitive salary package, annual bonuses based on performance goals, comprehensive benefits, and opportunities for growth and development.
We foster a culture that values diversity, inclusion, and belonging, providing a workplace free of discrimination and harassment.