Cyber Risk Analyst, IT DR Specialist

About The Position

Requirements

• Strong understanding of BCP/IT DR program management and risk governance.
• Knowledge of risk management frameworks and standards (ISO 27001, NIST).
• Experience with BT and OT environments.
• Minimum 5 years in IT risk management, cybersecurity, or BCP/IT DR.
• Demonstrated experience managing IT DR programs in complex organizations.

Responsibilities

• BCP/IT DR Governance Represent and articulate BCPIT DR risk to the organization, ensuring risks are clearly communicated and understood at all levels.
• Lead the governance of the BCP/IT DR program, focusing on the creation and ongoing documentation of comprehensive plans.
• Define and develop metrics that highlight the programs risks and operational performance for SBD leadership.
• Develop and drive holistic mitigation strategies, collaborating with business units to ensure ownership of mitigation actions that are aligned to overarching governance principles.
• Facilitate the development and execution of risk response tasks, ensuring mitigation efforts across business units are coordinated and governed effectively.
• Establish and maintain governance frameworks that unify business unit approaches to BCP/IT DR, ensuring consistency, scalability, and accountability.
• Cybersecurity & Technology Risk Management Support enhancing the risk management program regarding the planning, documentation, quantification, and response to cybersecurity and technology risks.
• Support risk assessments, policy exception analysis, issue management, risk tolerance definition, and the creation and monitoring of key risk indicators (KRIs).
• Ensure risk response activities are documented, tracked, and aligned with organizational risk tolerance and strategic objectives.
• Drive continuous improvement in risk management practices, promoting a culture of risk awareness and proactive mitigation.
• Investigate and understand the BCP/IT DR capabilities across the organization
• Document BCP/IT DR risks and issues according to the defined risk management framework
• Partner with leadership to determine risk appetite in accordance with BCP/IT DR risks
• Develop, maintain, and enhance the governance process for BCP/IT DR standards, processes, and documentation.
• Partner with business owners to implement and manage BCP/IT DR programs, including testing and continuous improvement.
• Conduct gap analyses and recommend enhancements for BCP/IT DR controls.
• Create and monitor program metrics for operational performance for leadership consumption.
• Create and monitor Key Risk Indicators (KRIs) to track risk exposure.
• Support and oversee the execution of risk assessments.
• Collaborate with embedded risk managers and the Cyber Security Organization to align initiatives and address risks.
• Analyze and execute policy exceptions, ensuring appropriate risk acceptance and mitigation.
• Maintain risk governance documentation, dashboards, and reports.
• Stay informed on emerging risks, regulatory changes, and best practices

Benefits

• You’ll receive a competitive salary and a great benefits plan, including:
• Medical, dental, life, vision, disability, 401(k), Employee Stock Purchase Plan, paid time off, and tuition reimbursement in addition to programs & benefits in support of your well-being.
• Discounts on Stanley Black & Decker tools and other partner programs.
• You’ll get a competitive salary and a comprehensive benefits plan that includes medical, dental, life, vision, wellness program, disability, retirement benefits, Employee Stock Purchase Plan, Paid Time Off, including paid vacation, holidays & personal days, and tuition reimbursement.
• And, of course, discounts on Stanley Black & Decker tools and products and well as discount programs for many other vendors and partners.