Senior Risk Analyst

Informatica is the only Enterprise Cloud Data Management leader that accelerates data-driven digital transformation. Informatica enables companies to unleash the power of data to become more agile, realize new growth opportunities, lead to new inventions resulting in intelligent market disruptions. With over 7,000 customers worldwide, Informatica is the trusted leader in Enterprise Cloud Data Management.

Your Opportunity

The Sr. Risk Analyst will be a key member of the team responsible for identifying and managing security risks to Informatica. The Sr. Risk Analyst should ensure that Informatica’s systems, information and physical assets are adequately protected, while providing visibility to Management of the control status and top risks on an ongoing basis.

This individual will work closely with all the Business, IT and other verticals in Informatica located at Informatica offices throughout the globe. The Sr. Risk Analyst must possess initiative and drive and have broad relevant technical knowledge for a corporate and cloud based environment. Good management expertise and excellent written and verbal communication skills are also key attributes for the position

The Senior Risk Analyst will report to the Director, Information Security Risk Management.

Your Responsibilities:

·         Identify and manage information security risks to Informatica’s complex environment.

·         Assist in the enhancement of risk assessment process to align with alignment to control framework and regulatory requirement.

·         Conduct annual risk assessments throughout Informatica to assess risk management maturity of the organization.

·         Previous experience with a GRC solution.

·         Collaborate with Business and IT teams to ensure proper risk identification and mitigation of critical risks.

·         Work with internal teams to ensure the risks from 3rd parties are mitigated to acceptable levels.

·         Assist other information security activities as required.

·         Works effectively as part of a geographically distributed Information Security team.

Qualifications:

·         Minimum 5 years of experience in Information Security with experience in risk management.

·         Hands on experience on risk assessment methodologies, risk treatment, and mitigation activities.

·         Experience with working single handedly with multiple internal IT, Business teams and partners.

·         Knowledge of key information risk management and security related standards including OWASP, ISO 2700x series, FedRamp.

·         Strong understanding of application, network, operating system and core infrastructure security concepts.

·         Experience in assessing risks associated with a vendor relationship prior to the renewal of contract agreements.

·         Experience reporting top risks to the Senior Management.

·         Proactive and detail orientated team player.

·         Experienced in a dynamic, fast-paced environment with rapidly changing business needs.

·         Skilled at preparing risk reports for all levels within the company.

·         Additional certifications, i.e. CISA, CISM, CRISC or equivalent certification, a plus.