Support enterprise-wide cyber risk management and governance activities
Collaborate across global teams to assess risks, recommend and implement robust security controls
Contribute to the development and maintenance of information security policies and standards
Support both local and global regulatory compliance efforts, including identifying control gaps and assisting in risk remediation activities
Conduct regular security controls testing and comprehensive risk assessments
Prepare regular reports on the organization’s cyber risk posture for presentation to senior management
Foster strong partnerships and collaborate regularly with other departments

Bachelor's degree in Cybersecurity, Computer Science, or related field
2+ years of experience in information security risk management or similar role
Knowledge and expertise with a wide range of security/risk management governance, guidance, compliance concepts and documentation such as NIST 800-53, NIST Cybersecurity Framework (CSF), ISO or equivalent
Experience using and administrating GRC tooling
Proficient with Windows and Linux, including Active Directory and EntraID
Strong analytical, good organizational, effective communication, and presentation skills
Flexibility in work given and ability to actively research how to perform new tasks
Proficient in using Microsoft Teams, Excel, PowerPoint, Word and AI tools (Copilot, ChatGPT and others)
Experience with GenAI coding assistance and leveraging AI to improve processes
CISSP, CRISC, CISM or other related security certifications.

Information Security Specialist

Key skills