Senior Technology Risk Analyst

2 days left

Employer
Location
Minneapolis, MN
Posted
Mar 21, 2017
Closes
Apr 29, 2017
Contract Type
Full Time

Senior Technology Risk Analyst-MIN04819 Working at Cargill is an opportunity to thrive—a place to develop your career to the fullest while engaging in meaningful work that makes a positive impact around the globe. You will be proud to work for a company with a strong history of ethics and a purpose of nourishing people. We offer a diverse, supportive environment where you will grow personally and professionally as you learn from some of the most talented people in your field. With 150 years of experience Cargill provides food, agriculture, financial and industrial products and services to the world. We have 150,000 employees in 70 countries who are committed to feeding the world in a responsible way, reducing environmental impact and improving the communities where we live and work. Learn more at www.cargill.com.

Description

Position Purpose

The Information Security Analyst provides guidance and support for technology risk management & compliance activities within Cargill Corporate Functions and Cargill Enterprises globally at the direction of the Regional and Enterprise Technology Risk & Control Managers (Regional/Business Information Security Officers).


The information security analyst will develop knowledge in Cargill processes, policies, and tools to assist in the identification and management of technology risks. The position will focus on information security principles, threat modeling, and 3rd party risk. The position will collaborate with Cargill's Technology Governance Risk & Control (TGRC) subject matter experts in the assessment of technology risk and in the implementation and monitoring of effective security controls.
Responsibilities include, but are not limited to, education & consultation, project consultation, assessing technology solutions, and providing regular updates to Unit Stakeholders and the Technology Risk & Control Managers.

Principal Accountabilities


30% - Consulting and Risk Assessment

  • Develop relationships with stakeholders to gain consensus on strategies, recommendations, findings and project plans
  • Develops an understanding of business goals and frames risk discussions in business terms
  • Constructively engages business partners regarding information security issues
  • Actively and professionally engages business partners in conversations that drive good risk decisions
  • Responds to security inquiries, provided in a timely and consistent manner

25% - Project Consultation

  • Facilitates identification / completion of information security project tasks (Project Risk Checklist)
  • Provide consultation and interpretation of Global I/T risk management policies
  • Coordinate completion of technology risk assessments (e.g. privacy, 3rd party, application)
  • Provide consultation in design of controls into business and technology processes
  • Collaborate with Global I/T Subject Matter Experts on technology risks/gaps
  • Serve as the liaison between business partners and technology teams


20% Implementation of Security Controls

  • Consult and validate the implementation of technology controls
  • Collaborate with Technology Risk Analysts on common risks to achieve optimization and coordination of risk management activities
  • Provide regular reports on the progress of risk management activities to the Technology Risk & Control Manager and business partners
  • Facilitate security incident response activities
  • Facilitate the completion and remediation activities of the following Risk Management Processes
  • Risk Exception / Findings
  • Network Security Design
  • Resiliency Planning
  • Third party/Cloud-based technology vendor assessment / management


15% - Monitoring

  • Monitor internal / external threat vectors identifying impact to Business Unit partners.
  • Monitors compliance of application owner control activities
  • Assist audit preparation and remediation activities
  • Provide regular reports on the risk management status / activities to the Technology Risk & Control Manager and business partners


10%- Education & Awareness

  • Provide Technology Risk & Controls training & awareness
  • Prepare / Communicate risk management scorecard

Qualifications

Required


  • Bachelor's degree in Computer Science, MIS, Computer Engineering or equivalent
  • Communication Skills:
  • Excellent verbal and written communications skills and the ability to interact professionally with a diverse group, executives, managers, and subject matter experts
  • Must be able to effectively convey information and translate technical terms in a clear and concise manner to both technical and business audiences
  • Excellent persuasion and influencing skills (directly & indirectly)
  • Effective teaming skills encompassing cross-functional teams, peer relationships, and understanding and appreciating differences
  • Excellent analytical, reasoning, and creative problem solving skills
  • Demonstrated experience in independently managing priorities & workload effectively and making timely decisions
  • Agile learning capabilities.
  • Demonstrated efforts to take initiative and drive for results
  • Demonstrated customer focus skills and strong interpersonal skills in terms of effective listening, patience, composure, and conflict management
  • Demonstrated ability to persevere, adapt to adversity, move forward and drive for results (resilient)


Preferred

  • 8 years of IT or audit experience
  • 3 years of experience in Risk Management, Information Security, Controls, or I/T Audit practices.
  • Information Security certification (e.g. CISSP)
  • Knowledge of and ability navigate and manage risks of cloud-based technology
  • Experience in threat modeling - identification of critical assets, threat vectors and protection measures
  • Experience in Third Party risk assessments and the management of 3rd party relationships
  • Experience with security event management solutions
  • Experience with Patch and vulnerability scanning
  • Experience with Intrusion Prevention and Detection monitoring
  • Experience with networking and infrastructure architecture
Equal Opportunity Employer, including Disability/Vet.

Job Information Technology

Primary Location US-MN-Minneapolis

Schedule Full-time

Job Type Standard

Shift Day Job

Apply for Senior Technology Risk Analyst

Already uploaded your resume? Sign in to apply instantly

Apply

Upload from your computer

Or import from cloud storage

Your Resume must be a .doc, .pdf, .docx, .rtf, and no bigger than 1Mb


4000 characters left


By applying for a job listed on FoodNavigatorJobs you agree to our terms and conditions and privacy policy. You should never be required to provide bank account details. If you are, please email us.