- Data Security Governance - Define and build the risk management program using industry standards and guidelines. Perform security risk assessments of technology solutions and 3rd party providers to determine information security risks to the enterprise.
- Solution Focused - Collaborate closely with data and process owners, as well as IT project stakeholders, to gain a clear understanding of implemented solutions. Provide guidance on control requirements, risk mitigation actions, and the associated risk of non-compliance. Integrate automation into the risk register process to manage the lifecycle of risk issues.
- Process Ownership - Work closely with Project Delivery Management, Enterprise Architecture, Application and Security Architecture, Legal and Procurement teams to drive implementation of appropriate controls to comply with Kellanova policies and standards to reduce security risk to acceptable level. Provide overall oversight to global and regional IT Security Leads to ensure security risk assessments are performed consistently and timely.
- GRC Oversight - Serve as product owner of Kellanova' s GRC tool, development, and sustainment. Create training materials for the risk management program and conduct global training and awareness to promote the program.
- Risk Awareness - Keep up with product updates to ensure we take advantage of relevant product features and capabilities. Ensure policies and standards are created and maintained for the overall risk program. Identify areas of maturity for the overall risk program and create a roadmap to address key program challenges.
- High School Diploma or GED with related IT and IT Security work experience
- Direct experience in Cybersecurity risk management practices and programs, 3rd party risk assessments, Privacy by Design concepts, and conducting information security risk assessments or business impact assessments
- Experience with various IT governance, control frameworks, and standards such as NIST CSF, COBIT, ISO 2700x, SOC II and domestic and global security regulations / directives including GPDR, SOX, CSA, CCPA, etc.
- Analytical and troubleshooting skills, demonstrating an aptitude for conducting quantitative and qualitative analysis of large and complex data, problem-solving, negotiation and decision-making skills
- Extensive relevant experience in planning, administering, developing, or delivering solutions in GRC platforms (e.g. RSA Archer, OneTrust, or equivalent)
- Proactive problem-solving, negotiation and decision-making skills to influence management, as well as internal and external partners
- Experience using Scalable Agile Framework or Agile ways of working
IT Security Analyst, Senior - Chicago, United States - Kellanova
Description
We have an opening for you to grow with us as a Senior IT Security Analyst As part of Kellanova' s Global Cybersecurity team, you'll work as an individual contributor alongside a peer. You'll complete security risk evaluations while owning the Governance, Risk, and Compliance (GRC) tool. Use your security expertise to help Kellanova move our program maturity forward. This role can work remotely in most US locations with a preference for Chicago, IL or Battle Creek, MI areas.
Join our dynamic, progressive team of IT professionals in an environment where you can learn, grow, and create innovative technology solutions to help our business flourish. At the heart of the Kellanova Company is technology — a key enabler of how we market, sell, and manufacture our well-known and beloved brands to consumers around the globe.
A Taste of What You'll Be Doing
We're Looking for Someone With
What's Next
After you apply, your application will be reviewed by a real recruiter, so it may take us a few weeks to get back with you by email or phone. Visit our How We Hire page to get insights into our hiring process and more about what we offer.
Need assistance throughout the application or hiring process? Email .
If you join our team, you'll be rewarded for the difference you make. Our comprehensive benefits offer you the support you need through your life events, big or small. Visit our benefits page & be sure to ask your recruiter for more specific information.
Get to Know Us
At Kellanova, we are driven by our vision to be the world's best-performing snacks-led powerhouse, unleashing the full potential of our differentiated brands and our passionate people. Our portfolio of iconic, world-class brands include Pringles, Cheez-It, Pop-Tarts, MorningStar Farms, Special K, Krave, Zucaritas, Crunchy Nut, among others.
Kellanova's Culture of Best means we bring our best to all that we do in pursuit of our vision to be the world's best performing snacks-led powerhouse. Our culture celebrates boldness and empowers our people to challenge the status quo, achieve results, and win together.
Our focus on Equity, Diversity, and Inclusion (ED&I) enables us to build a culture of belonging where all employees have a place at the table and are inspired to share their passion, talents and ideas to work.
We're on a journey to be the best. You coming?
Kellanova is an Equal Opportunity Employer that strives to provide an inclusive work environment, a seat for everyone at the table, and embraces the diverse talent of its people. All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, disability, religion, national origin, gender, gender identity, gender expression, marital status, sexual orientation, age, protected veteran status, or any other characteristic protected by law. For more information regarding our efforts to advance Equity, Diversity & Inclusion, please visit our website here.