Sr Info Security Risk Analyst I

We are seeking a Sr Info Security Risk Analyst I to join our Governance, Risk, and Assurance (GRA) function. In this hybrid role, you'll be a key player in managing information security risks by evaluating security exceptions, conducting risk assessments, and collaborating with cross-functional teams to ensure compliance and mitigate threats.

Roles and Responsibilities

• Serve as a member of the working team for Risk Management within the GRA function.
• Evaluate and manage security exception requests, ensuring compliance with security standards and mitigating associated risks.
• Conduct information security risk assessments of internal processes and IT solutions as a subject matter expert.
• Prepare security exception risk profiles and reports for relevant stakeholders.
• Collaborate with cross-functional teams to ensure risk management practices align with business objectives and compliance requirements.
• Identify, analyze, assess, monitor, and track risks in the information security risk register.
• Monitor and manage risk mitigations and exceptions to ensure cybersecurity policies and standards are followed.
• Stay updated with the latest cybersecurity trends, emerging threats, and industry developments to provide proactive risk mitigation recommendations.

Skills Required

• Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications such as CISSP, CRISC, or ISO 27001 auditor are a plus.
• Strong process knowledge and ability to design and/or improve risk management processes.
• Experience in utilizing tools for risk profile data collection is desirable.
• Good knowledge of cybersecurity principles, governance, and regulatory compliance.
• Deep understanding of risk assessment methodologies, vulnerability management, and security control frameworks (NIST RMF and CSF, ISO 27001, COBIT).
• Familiarity with security controls, technologies, and best practices to mitigate cyber risks.
• Proficient in Microsoft Office (Excel, PowerPoint, Word).
• Demonstrate sound judgment and decision-making skills.
• Strong communication and interpersonal skills.
• Ability to work independently and collaboratively, prioritize tasks, and manage time effectively.
• Excellent analytical and problem-solving skills.