Risk Analyst

The Information Security Governance & Risk Security Associate, supports the execution and ongoing operation of the enterprise Information Security Governance and Risk Management program. This role works under the direction of the Manager, Information Security Governance & Risk, and is responsible for performing day‑to‑day risk management, third‑party risk activities, policy maintenance, metrics tracking, and security awareness support. The Agent contributes to identifying, assessing, documenting, and monitoring information security risks while ensuring alignment with established policies, standards, and regulatory requirements.

ESSENTIAL FUNCTIONS

• Assist in performing third‑party risk assessments and reviews of vendors, partners, and suppliers in accordance with established processes.
• Assist with information security risk assessments by identifying risks, documenting control gaps, and supporting remediation tracking.
• Maintain and update the ...