National Grid IT Analyst in Waltham, Massachusetts
The Risk Analyst serves as a subject matter expert in the following areas:
Cyber Security Risk
This person will be responsible for adhering to and contributing to the continuous improvement of a robust risk framework, thus ensuring that the organization identifies, responds, communicates and monitors business risks that have either an IS and/or cyber security component to them. Ability to collaboration and communicate with IS Leadership, business leadership and corporate risk leadership is essential in this position.
Perform security risk assessments
Assessing security and business risks
Analyzing and presenting critical risks and potential remediation activities to all levels of management within the business.
Experience in implementing compliance and/or risk programs for regulatory frameworks.
Experience in conducting internal and external IS/Cyber Security risk assessments.
Experience in completing third party security risk assessments and third party reviews.
Able to demonstrate a high degree of credibility and influence senior stakeholders within the Organization.
Ability to communicate effectively both orally and in writing.
Thorough knowledge of IT and cyber security controls.
Experience in working within internal or external audit, either within a previous organization or as part of a professional services firm.
Excellent knowledge of information security and related principles.
Proven people management skills, with a track record of strong communication, influencing and motivational skills.
Able to operate as a highly independent worker and as part of a strong team with a collaborative approach.
Prior Critical National Infrastructure (CNI) and utility industry experience preferred.
Experience managing an IT Risk Register and tracking remediation activities.
Experience working within an IT Controls Framework and evaluating related risks.
Experience with analyzing various IS risks in an effort to prepare a business risk profile.
Familiar with NERC CIP Standards, SOX Regulatory Requirements, PCI Requirements.
*Professional Qualifications Required*:
Educated to degree level (or equivalent combination of education and experience)
4-6 years experience the risk management or related field
Information Security Qualifications such as CISSP
IS Risk qualifications such as CRISC
IS Governance qualifications such as CGEIT
Audit qualifications such as CISA
/National Grid is an equal opportunity employer thatvaluesa broad diversity of talent, knowledge, experience and expertise. We foster a culture ofinclusion that drives employee engagement to deliver superior performance to the communities we serve. National Grid is proud to bean affirmative action employer. We encourage minorities, women, individuals with disabilities and protected veterans to join the National Grid team./
Job: *IS DIgital Security & Risk
Organization: *IS Digital Security & Risk
Title: IT Analyst
Requisition ID: 20181756
Other Locations: NY-Brooklyn, NY-Hicksville