IT Security Analyst Ref. # INF001153
Governance, Risk & Compliance.
(Oak Brook, IL) Utilize information technology, cybersecurity, privacy skills and experience with various IT governance and control frameworks (including NIST, COBIT, CMMI, ISO 2700x, SOC II) and security regulations/directives (including GPDR, SOX, and CSA) to execute and manage multi-faceted projects for Kellogg’s IT infrastructure related to risk management, mitigation and response; compliance; control assurance; and user awareness. Ensure security governance controls and considerations are consistent and remain relevant throughout the organization to protect the company from Cyber Security threats as well meeting regulatory requirements and industry best practices, aligned with Kellogg’s strategic business plan. Implement security strategies and policies/standards in compliance with legislation and other directives including PCI, Sarbanes-Oxley, and ISO 27001. Troubleshoot issues and conduct quantitative and qualitative analysis of large and complex data.
Function as the Archer system administrator, manage the Vendor Risk Re-Assessment process for Cyber Security, perform risk assessments, analyzes technology and information security risks to the enterprise, identifies control needs and works with the technology/product owner to drive implementation of appropriate controls to comply with Kellogg’s policy and standards. Work closely with data/process owners and control performers to educate on control requirements and associated risk of non-compliance. Maintain key metrics, reports and scorecards for tracking key goal indicators (KGI’s), key risk indicators (KRI’s), and key performance indicators (KPI’s) indicative of effective risk management, and value delivery.
Define and execute Cyber Security User Awareness and Training program, manage the Governance Risk and Compliance SharePoint Intranet site, define and execute Phishing Simulation program.
To apply for this job please visit itjobpro.com.