×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Information Security Cybersecurity

Sr. Analyst, Governance, Risk and Compliance; GRC), Information Security

Job in Indiana Borough, Indiana County, Pennsylvania, 15705, USA
Listing for: Mondelez International
Full Time position
Listed on 2026-02-19
Job specializations:
  • IT/Tech
    Information Security, Cybersecurity
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below
Position: Sr. Analyst, Governance, Risk and Compliance (GRC), Information Security

Job Description

Are You Ready to Make It Happen at Mondelēz International?

Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.

You work with the information security team as a competent and experienced information security and compliance specialist.

How you will contribute

You will assess information security risks in line with internal policy and external best practices, and support security of information and IT assets by testing security systems and applying security standards, policies, and procedures. Under the guidance of global information security lead, you will implement cyber security technology and provide day‑to‑day business support. If relevant to your role, you will manage third‑party providers to ensure that any internal or third‑party adhere to standards.

You will also provide information security training to appropriate teams.

What you will bring

A desire to drive your future and accelerate your career. You will bring experience and knowledge in:

  • Your experience in information security, compliance and risk management.
  • Your knowledge of security solutions and their applicability to Mondelēz International.
  • Your knowledge of security strategies, awareness campaigns, policies/standards and governance.
  • Your communication skills with technical specialists, leaders, and peers.
  • Your analytical and problem‑solving abilities.
  • Your teamwork and leadership to achieve common goals.
More about this role

As an individual contributor, the successful candidate will be proficient at managing risk assessments of both third parties and internal technologies.

In addition, the candidate will be performing compliance activities related to technology assurance areas around access management, vulnerability management and configuration management.

Candidate will also demonstrate ability and experience in governance related activities including administrative management of risk and control registers as well as policies and standards.

What extra ingredients you will bring:
Risk Management Responsibilities
  • Execute risk assessment testing supporting the Risk Manager.
  • Document risk assessment results.
  • Support Risk Manager in drafting risk assessment reports.
  • Perform administrative management of risk register (additions/editions/deletions, etc).
  • Document risk acceptance/exemptions that have been approved per the program.
  • Manage quarterly/annual review of risk acceptance/exceptions.
  • Manage risk assessment results in relevant dashboards.
  • Document Issues and Remediation activities for all exceptions noted during risk assessments.
Compliance Responsibilities
  • Perform quarterly compliance assurance testing.
  • Document compliance testing results.
  • Maintain Management Action Plan (MAP) catalog with due dates.
  • Manage monthly audit MAPs. Includes the timely communication of open MAPs and escalation as needed of risks to completing MAPs at their agreed delivery dates.
  • Perform administrative activities in GRC Solution for compliance related activities.
  • Provide administrative support for ad‑hoc external audits.
  • Provide administrative support for internal audits.
  • Support compliance program reporting activities.
Job specific requirements
  • 3 years in Information Security field, with at least 2 years working in GRC.
  • Experience with GRC tools (e.g., Archer).
  • Knowledge of security concepts and methodologies such as risk assessments, risk & controls, policies & standards, enterprise security strategies, network, and cloud security.
  • Knowledge of security frameworks such as CIS and NIST.
  • Excellent written and verbal communications skills, including presentational skills and able to clearly communicate issues to management and other key stakeholders.

No Relocation support available

Business Unit Summary

At Mondelēz International, our purpose is to empower people to snack right by offering the right snack, for the right moment, made the right way. That means delivering a broad range of delicious, high‑quality snacks that nourish life's moments, made with sustainable ingredients and packaging that consumers can feel good about.

We have a rich portfolio of strong brands globally and locally including many household names such as Oreo, belVita and LU…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search