MSA - The Safety Company
Information Security Risk Analyst
MSA - The Safety Company, Cranberry Twp, Pennsylvania, United States, 16066
Overview Are you someone who is passionate, motivated, and driven to make a difference? If so, MSA Safety is the perfect fit for your career. At MSA, SAFETY is who we are AND it is what we do. We are a purpose-driven company committed to deploying innovation and technology to deliver on our Mission to help protect people and assets all around the world. We continue to be relentless in our pursuit of solving our customers greatest problems so they can go home safe each and every day. Are you in? Read on for more details about this particular role. Responsibilities The Information Security Risk Analyst works with different stakeholders from Engineering, IT, Legal or Software Application to support to understand risk in decision making, keep track of these risks, regularly review risk and align on regulatory requirements The position in embedded in the Governance, Risk and Compliance group and is a key contributor to the IT risk management program. The role works close with technical teams and will join their efforts in design phase of implementation projects as well as help the teams understand implications on other functions. This position will also support and lead opportunities to leverage programing efforts for automation and analytics to drive continuous improvement across the security program. Description of duties and responsibilities: Conduct risk assessments on existing and new systems and technologies. Assist in the development and implementation of security policies and procedures. Assist with SecOps Team in automation tuning and security events and incidents to identify potential risks. Collaborate with IT and business teams to ensure compliance with security standards. Document and report security risks and vulnerabilities to senior management. Participate in security audits and assessments. Drive/Deliver company standards, policies, procedures, and guidelines toward frameworks such as ISO 27001 and NIST 800-171 frameworks. Drive/Deliver Enterprise Security Training and Awareness Campaign surrounding policies, principles, and standards. Follow MSA Standard Operating Procedures and internal quality measures in completing work. Design, document and continually enhance security administration policies, processes, and procedures. Qualifications Special knowledge, skills and abilities required: Experience with the IT industry through internships or similar programs. Degree in information security, Computer Science, or a related field. Demonstrated ability to communicate professionally and effectively in written and oral format. Demonstrated ability to work independently, with guidance in only the most complex situations. Produce high-quality work results. Responds to customer needs by providing accurate and timely solutions to problems presented. Preferred Qualification: Prior experience in Information Security Management / Compliance Programs. Education and experience required: 0-2 years security experience Preferred: Bachelor's degree in information science, Computer Science or related discipline Preferred candidate identified. LI-EE1 Hybrid