Senior Cybersecurity GRC Analyst

Bachelor’s degree or certification in cybersecurity, or equivalent industry experience
Experience with cybersecurity standards including NIST, ISO 27001, ISO 28000, SOC, and privacy frameworks
10+ years experience in cybersecurity risk management
Experience with security compliance and vulnerability scanning technologies
Experienced in cloud security
Knowledgeable of security strategies and practices within the manufacturing industry
Ability to earn trust, maintain positive and professional relationships, and contribute to a culture of inclusion
Must be a U.S. citizen or national, U.S. permanent resident (current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum.

Use automation for various GRC tasks including scorecard creation, roadmap updates, and compliance evidence gathering.
Use outcome-driven metrics and key performance indicators to measure cybersecurity effectiveness and drive improvements and efficiencies.
Assess compliance using monitoring technologies and regular audits and reviews, identifying areas of non-compliance and recommending corrective actions.
Generate reports on risk assessments, compliance status, and control effectiveness to communicate findings to stakeholders at various levels within the organization.
Support internal and external audits by providing documentation and supporting evidence of compliance.
Support policies and procedures maintenance aligned with in-scope security frameworks, regulations, and internal standards to manage identified risks effectively.
Conduct regular risk assessments to identify potential threats and vulnerabilities across the organization, analyzing their impact and likelihood of occurrence.