Job Information
ASSA ABLOY Cybersecurity Risk and Compliance Senior Analyst in -, Connecticut
Career Opportunities: Cybersecurity Risk and Compliance Senior Analyst (25904)
Requisition ID 25904 - Posted - Sargent Manufacturing Company - Architectural Hardware Group - USA: Connecticut (Remote) More (1) - IT, Telecom & Internet - Posting Country (1) - Yes - Mid-senior level - Travel Required: 0%-10%
Job Description Print Preview
Are you looking for an opportunity to apply your business acumen, cybersecurity skills, and organizational transformation experience to help us create a more secure and open world? Do you have a passion for assessing risk, policy design and deployment, and problem-solving? If so, we may have the perfect opportunity for you!
ASSA ABLOY Americas is looking for a Cybersecurity Risk and Compliance Senior Analyst to enhance the Company’s information security and cybersecurity risk program. Headquartered in New Haven, CT, the Cybersecurity Risk and Compliance Senior Analyst will be part of the Americas division of ASSA ABLOY Opening Solutions. We are an innovative and growth-oriented global company. We offer a collaborative environment where your ideas and contributions are welcomed.
Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.
What you will be doing
The Cybersecurity Risk and Compliance Senior Analyst is a key role in ASSA ABLOY’s strategy to accelerate the organization’s cyber resilience. The newly created position will report to ASSA ABLOY America’s Division CISO and will be accountable for the divisional Cyber Risk and Compliance program. The role will build strong alliances with all functions and sub-groups across the division to help in the process of identifying, analyzing, quantifying, and treating risks. In addition, this role will be responsible to define, measure, and report on Information security compliance within the operation of an ISMS, providing relevant KPIs and KRIs. A talented and self-motivated person, who is inviting and collaborative and can guide business functions to handle organizational cyber risks and transform these into controls will find this position a perfect place for success.
Position Specific Responsibilities
Establish divisional cyber risk governance
Build divisional risk management culture and methodologies
Maintain divisional cyber risk register
A broad knowledge of IT Services and a tight collaboration with IT for the transformation of business requirements into IT Policies and controls will ensure success
Establish and execute risk assessment and management with business functions
Build and maintain Cyber Risk and Compliance Reporting dashboards and reports for stakeholder groups
Definition, monitoring and reporting of Key Risk indicators and relevant Key performance indicators
Create, modify and implement divisional policies and directives based on Information security standards ISO27001 and NIST
Develop deep coalitions with business partners to anchor Information Security into Policy framework
Collaborate with corporate counsels and HR departments to monitor enforcement of standards and regulations
Review policies periodically to identify hidden risks or non-conformity issues
Develop and oversee control systems to prevent or deal with violations of legal guidelines and internal policies
Evaluate the efficiency of controls and improve them continuously
What we are looking for
Professional certification in Information Security CISM or CISSP
Professional certification in CRISC or ISO27005 preferred
Minimum 3 years of experience in a global cyber security management role
Proven experience of implementing and operating information security risk and compliance management within an environment of similar size and global representation
Strong knowledge of current digital service delivery concepts, technology, and its cyber protection capabilities
Good enterprise business knowledge with the ability to articulate risks in clear business language
Good knowledge of global regulatory compliance demands in the areas of privacy, industry or governmental segments. (GDPR, CCPA, PCI-DSS, critical infrastructure, Patriot Act…)
Engaged, committed, creative, hands-on and self-motivated personality
Expert knowledge and proven success in implementing Information Security Management System (ISMS) in an enterprise organization
Analytical and conceptual ability to identify compliance risks and develop practical solutions and adjustments
Excellent business and IT communication skills in the English language
What we offer
We’re passionate about providing amazing opportunities and benefits, so that you can enjoy a lifelong career with us. We are proud to offer:
Continuous professional development opportunities and an environment that fosters internal growth and mobility
Competitive compensation and benefits package which includes multiple healthcare options, tuition reimbursement, and matching 401k
Generous holiday schedule and paid time off to refresh and recharge
Employee pricing on our products and discount programs for travel, entertainment, and more!
We review applications regularly, so don’t hesitate, apply today!
ASSA ABLOY is an Equal Opportunity Employer/Minorities/Females/Disabled/Veteran
#LI-EL1
#LI-OSA
#LI-Onsite
We are the ASSA ABLOY Group
Our people have made us the global leader in access solutions. In return, we open doors for them wherever they go. With nearly 52,000 colleagues in more than 70 different countries, we help billions of people experience a more open world. Our innovations make all sorts of spaces – physical and virtual – safer, more secure, and easier to access.
As an employer, we value results – not titles, or backgrounds. We empower our people to build their career around their aspirations and our ambitions – supporting them with regular feedback, training, and development opportunities. Our colleagues think broadly about where they can make the most impact, and we encourage them to grow their role locally, regionally, or even internationally.
As we welcome new people on board, it’s important to us to have diverse, inclusive teams, and we value different perspectives and experiences.