Senior Analyst, Governance, Office CISO; Global Security

What is the Opportunity?

The Senior Analyst, Governance, Office of the CISO, will play a critical role in supporting ongoing Cyber and Risk governance maturity and transformation initiatives across the Office of the CISO and Cyber operations. This role will support strengthening governance routines and maturing data and reporting across domains. The ideal candidate will bring a strong blend of strategic thinking and execution capability, with experience in managing metrics, and producing actionable reporting insights for a variety of stakeholder groups.

• Metrics and Reporting:
  • Validate automation against business requirements, supporting the development of automated solutions and mechanisms to deliver data-driven insights using large datasets from multiple sources.
  • Support the metric-development lifecycle, from design to retirement, to ensure data integrity, metric quality and accuracy.
  • Enable stakeholders to source metric information, ensuring timeliness and availability for ongoing reporting.
  • Support business reporting requirements, driving high-quality updates and maintaining submission systems and access to align to evolving business needs.
  • Identify data quality gaps in current metrics and reporting, determine root causes, and recommend solutions to leadership.
• Stakeholder, Timeline and Documentation Management:
  • Engage with cross-functional teams to share governance requirements or obtain stakeholder requirements, establishing timelines, and logging commitments / dependencies for documented accountability and transparent stakeholder visibility.
  • Drive on-time delivery by monitoring progress and executing escalation processes as necessary.
  • Support development and maintenance of documentation, integrating data from multiple sources and formalizing for professional appearance and completeness.
• Support and Strengthen Governance
  
  Activities:
  • Support service management activities as part of governance routines (e.g., meeting minutes, tracking documents, service desk inquiries).
  • Continuously analyze the quality and maturity of data and reporting (KPIs) across governance domains and recommend improvements to leadership.
  • Leverage AI models to introduce new and improved mechanisms to drive operational effectiveness and efficiency.

• Minimum of 3-5 years in Cybersecurity or Risk Management roles.
• Experience managing metrics.
• Intermediate-level experience with Jira and Confluence.
• Ability to ensure data integrity and detail accuracy in deliverables.
• Track record of proactively identifying and driving resolution of issues.
• Experience delivering enterprise-level reporting and aggregate risk insights.
• Strong communication and stakeholder management skills.
• Exceptional relationship-building skills, with the ability to collaborate across diverse functions and levels of the organization.
• Strong analytical and problem-solving skills, with the ability to create scalable, repeatable processes that simplify risk management in IT operations.

• Experience in QA testing.
• Experience in design of documentation and products.
• Understanding of risk management frameworks and standards across the US or Canada (e.g., regulatory compliance, enterprise risk, internal controls, SOX, ITGC); expertise with UK and APAC regulators, considered beneficial.
• Industry framework knowledge, e.g., NIST.
• Industry-related certifications, e.g., CRISC.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
• Leaders who support your development through coaching and managing opportunities.
• Ability to make a difference and lasting impact.
• Work in a dynamic, collaborative, progressive, and high-performing team.
• Opportunities to do challenging work.

• Data Gathering Analysis
• Effectiveness Measurement
• Ethical Business
• Fraud Management
• Internal Controls Long Term Planning
• Process Management
• Results-Oriented
• Risk Management
• Strategic Thinking