Information Security Analyst - GRC

About The Position

Requirements

• Bachelor's Degree in related field (e.g., Information Security, Computer Information Systems, Information Technology, or Project Management) or equivalent work experience.
• Minimum of 2 years related work experience in Information Security, IT/IS Audit, Security Governance, Risk, Compliance, or a related field.
• Familiarity with industry security standard frameworks and cybersecurity compliance regulations (e.g., PCI, ISO 27001/27002, NYDFS, WI Data Security Act).
• Successfully completed or able to work towards a security certification (e.g., CISA, CRISC, CISSP, PCI ISA, Security+, etc.).
• Experience with security domains (e.g., Identity and Access Management, Security and Risk Management, Compliance, Organization of Information Security, Cryptography, Security Assessment and Testing, etc.).
• Able to work independently and collaboratively as part of a diverse, distributed team in an Agile environment.
• Strong analytical, problem solving, and conceptual thinking skills.
• Proven interpersonal, communication, writing, and meeting facilitation skills.

Responsibilities

• Review and understand fundamental regulations and frameworks related to cybersecurity and manage Sentry's security documents and applicable processes to be in alignment with them.
• Focus on developing and testing of Information Security controls and confirm compliance.
• Lead in conducting security risk assessments to identify concerns and ensure compliance to Sentry's security documents by gathering data, analyzing effectiveness of controls, collaborating with internal and external parties, and evaluating risk magnitude.
• Work with stakeholders across the organization to remediate security issues, build information security controls and maintain governance processes.
• Manage risk and support our associates' compliance to Sentry's policies, standards, and applicable regulatory requirements.
• Write and publish Sentry's security policies, standards, and applicable supporting documentation.
• Maintain the inventory of information security controls, exceptions, and test evidence to ensure the risks associated with non-compliant controls are sufficiently managed.

Benefits

• Sentry is happy to offer flexibility through a scheduled Hybrid work model. Monday and Friday work from home if you choose to, Tuesday through Thursday you'll work in office.
• As a Sentry associate, you will have an in-office workspace and materials for your home office. In addition to the laptop, you will receive prior to your start, Sentry will provide equipment for your home office.
• Meal Subsidy available for associates who report to an office.
• 401(K) plan with a dollar for dollar match on your first eight percent, plus immediate vesting to help strengthen your financial future.
• Continue your education and career development through Sentry University (SentryU) and utilize our Tuition Reimbursement program.
• Generous Paid-Time Off plan for you to enjoy time out of the office as well as Volunteer-Time off.
• Group Medical, Dental, Vision, Life insurance, Parental leave, and our Health and Wellness benefits to encourage a healthy lifestyle.
• Well-being and Employee Assistance programs.
• Sentry Foundation gift matching program to encourage charitable giving.