National Grid IT Analyst in Waltham, Massachusetts

*Job Purpose:*

The Risk Analyst serves as a subject matter expert in the following areas:

  • IS Controls

  • Cyber Security Risk

  • IS Risk.

This person will be responsible for adhering to and contributing to the continuous improvement of a robust risk framework, thus ensuring that the organization identifies, responds, communicates and monitors business risks that have either an IS and/or cyber security component to them. Ability to collaboration and communicate with IS Leadership, business leadership and corporate risk leadership is essential in this position.

*Key Accountabilities:*

  • Perform security risk assessments

  • Assessing security and business risks

  • Analyzing and presenting critical risks and potential remediation activities to all levels of management within the business.

_Knowledge Required:_

  • Experience in implementing compliance and/or risk programs for regulatory frameworks.

  • Experience in conducting internal and external IS/Cyber Security risk assessments.

  • Experience in completing third party security risk assessments and third party reviews.

  • Able to demonstrate a high degree of credibility and influence senior stakeholders within the Organization.

  • Ability to communicate effectively both orally and in writing.

  • Thorough knowledge of IT and cyber security controls.

  • Experience in working within internal or external audit, either within a previous organization or as part of a professional services firm.

  • Excellent knowledge of information security and related principles.

  • Proven people management skills, with a track record of strong communication, influencing and motivational skills.

  • Able to operate as a highly independent worker and as part of a strong team with a collaborative approach.

  • Prior Critical National Infrastructure (CNI) and utility industry experience preferred.

  • Experience managing an IT Risk Register and tracking remediation activities.

  • Experience working within an IT Controls Framework and evaluating related risks.

  • Experience with analyzing various IS risks in an effort to prepare a business risk profile.

  • Familiar with NERC CIP Standards, SOX Regulatory Requirements, PCI Requirements.

*Professional Qualifications Required*:

  • Educated to degree level (or equivalent combination of education and experience)

  • 4-6 years experience the risk management or related field

  • Information Security Qualifications such as CISSP

  • IS Risk qualifications such as CRISC

  • IS Governance qualifications such as CGEIT

  • Audit qualifications such as CISA

/National Grid is an equal opportunity employer thatvaluesa broad diversity of talent, knowledge, experience and expertise. We foster a culture ofinclusion that drives employee engagement to deliver superior performance to the communities we serve. National Grid is proud to bean affirmative action employer. We encourage minorities, women, individuals with disabilities and protected veterans to join the National Grid team./

Job: *IS DIgital Security & Risk

Organization: *IS Digital Security & Risk

Title: IT Analyst

Location: MA-Waltham

Requisition ID: 20181756

Other Locations: NY-Brooklyn, NY-Hicksville