Assoc Security Technical Analyst

The role of the Associate Security Technical Analyst - Governance, Risk, and Compliance (GRC) requires technical skill, superior customer service, and excellent communication and writing skills. The Associate Analyst is an entry-level role that has some experience at gathering and distinguishing key details, and able to assist with decision-making processes. This role encompasses a basic understanding of technology governance, risks, controls, and compliance along with modern day cyber security issues, asset management lifecycles, and data management. This position contributes to roadmaps and standards, helping ensure standards are kept current.

We are currently filling two positions: one on the Risk Management team and the other will initially be on the Governance team focusing in software asset management. Both roles focus on day-to-day GRC (Governance, Risk, & Compliance) operations. The ideal candidates will be adept at helping identify and implement GRC process and operational improvements; automation skills are a plus!

• Develops and maintains visual dashboards, producing high-quality reports and documents, proofreading for accuracy and succinctness, providing recommendations to Sr Principal(s), Principal(s), and management.
• Supports the team to analyze and implement operational, regulatory and business mandates and legal requirements; identifies and analyzes less complex, ambiguous and/or conflicting business process/technology issues; assists department managers on development, enhancement, and maintenance issues
• May be directly responsible for one or more of the following supporting senior staff in work related to: controls, risk mitigation/management, compliance, audit administration and support, hardware/software/OT asset management operations;
• Participates in team collaborative efforts, such as annual team goals and planning, process continuous improvement, waste elimination initiatives, daily and weekly operating reviews. Takes an active approach at helping team maintain internal processes, gap analysis and resolution. Adheres to Company's quality systems and methodologies.
• Contributes as an entry-lev resource on the IT & Security Governance, Risk, and Compliance Team, working independently with Company stakeholders and keeping leadership appropriately informed; may also interact with vendors, publishers, governmental agencies, or other companies
• Ensures timely completion of deliverables; assists the team at meetings and review boards; and acts as a backup for others on the team; supports team members in managing daily operations, validating objectives and KPIs; takes corrective action with KPI countermeasures if needed, and collaborates with business and technical areas to achieve goals
• Researches and advocates on new (and renewed) technologies, architectures, and products for the enterprise;
• Develops knowledge to help senior staff and management with decisions and solutions for current and incoming work, demonstrating clear, thoughtful approaches; regularly meets with stakeholders to address questions and issues, ensuring decisions and action items are documented and executed; exhibits proactive demeanor in all interactions
• Builds skill to learn how to translate written technical standards to non-technical stakeholders and articulates standard gaps, using tools and templates available; supports senior staff that monitors standard and policy adherence, addressing compliance issues
• Other duties as assigned or may be necessary

• Basic understanding of IT and cybersecurity concepts with a grasp of how technology, systems, and configurations influence risk exposure and mitigation strategies
• Excellent communication, interpersonal, and listening skills with the ability to convey risk implications to technical and non-technical stakeholders and influence informed decision-making
• Basic understanding of technology tools, data management techniques, and core technical concepts
• Basic knowledge of developing and optimizing data management processes and generating reports that support data-driven decision-making
• Eager in developing ability to take ownership of work from initiation to completion and consistently deliver high-quality results on time, and make sound decisions independently while knowing when to escalate or engage leadership
• Enthusiastic about learning how to create program recommendations for leadership, product owners, and stakeholders
• Demonstrates excellent teamwork and embodies the virtues of being humble, hungry, and people smart

• Bachelor's degree in Information Technology, Cyber Security or related discipline with two (2) or more years of relevant experience.
• [OR] Associate degree in Information Technology, Cyber Security or related discipline with Four (4) or more years of relevant experience.
• [OR] High School Degree/GED with 6 or more years of relevant experience in Information Technology, Cyber Security or related discipline.