Analyst, Information Security Governance, Risk, and Compliance

About The Position

Requirements

• Bachelor's Degree or Equivalent in related STEM field
• A minimum of two years experience of previous related experience or equivalent work experience based on Edwards criteria

Nice To Haves

• Experience in information security, risk management, compliance, or a related governance or operational role
• Experience supporting governance processes related to data governance and responsible AI
• Exposure to risk, issues, audit, or compliance management tools
• Experience leading risk assessments
• Professional certifications such as Security+, GISP, CRISC, GSEC, GISF, or similar
• Experience supporting or implementing requirements aligned to frameworks such as NIST 800‑53 or equivalent
• Working knowledge of NIST‑based security and risk control concepts
• Strong written and verbal communication skills, with the ability to engage non‑technical stakeholders
• Ability to manage competing priorities in a fast‑paced environment
• Collaborative mindset with a customer‑focused approach
• Working knowledge of cybersecurity and information security risk principles

Responsibilities

• Support intake, tracking, and lifecycle management of information security, data, and AI‑related risk issues
• Coordinate stakeholder escalations and follow‑ups to ensure accurate risk documentation, ownership, and remediation tracking
• Assist with issue prioritization and reporting to support leadership decision‑making
• Support control model governance activities, including control documentation maintenance and operational governance processes
• Assist with policy and standards lifecycle activities, including updates, reviews, and stakeholder coordination
• Partner with service owners and subject matter experts to ensure governance artifacts remain accurate and usable
• Support the development, maintenance, and validation of risk, control, and performance metrics
• Partner with stakeholders to ensure reporting reflects current risk posture and supports data‑driven leadership decisions
• Assist in maintaining dashboards and metrics used for operational and executive‑level visibility
• Partner directly with business and IT stakeholders to facilitate risk discussions and resolve governance questions
• Support training and awareness activities related to information security, data governance, and responsible AI use
• Build trusted working relationships through clear communication and reliable execution
• Perform moderately complex analysis related to information security governance and risk management
• Support continuous improvement initiatives across GRC processes and tooling

Benefits

• competitive salaries
• performance-based incentives
• a wide variety of benefits programs to address the diverse individual needs of our employees and their families